Token bucket per client IP; bursts above the rate are queued, then rejected with 429.
IP access
If non-empty, only these sources may connect (default-deny).
These sources are always blocked (deny wins over allow).
Basic auth and SSO are OR'd — if either is enabled, a request
is allowed when it passes either one. Leave both off for a
public host.
Basic authentication
Current: none.
Passwords are stored hashed and never shown here. Leave blank to keep
the current users; entering any lines replaces the whole list.
Single sign-on (SSO)