From cc5f0c59aec894b04c51cc08fe4a0b71555ef0de Mon Sep 17 00:00:00 2001
From: JohnDoe6345789 <john.doe6345789@gmail.com>
Date: Thu, 25 Dec 2025 22:25:48 +0000
Subject: [PATCH] docs: secure,layer,implementation (1 files)

---
 docs/implementation/SECURE_DATABASE_LAYER.md | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/docs/implementation/SECURE_DATABASE_LAYER.md b/docs/implementation/SECURE_DATABASE_LAYER.md
index 23ea25ace..c1496bf4b 100644
--- a/docs/implementation/SECURE_DATABASE_LAYER.md
+++ b/docs/implementation/SECURE_DATABASE_LAYER.md
@@ -298,6 +298,14 @@ The rate limit map automatically cleans old entries:
 - Prevents memory bloat
 - O(n) cleanup per request (minimal overhead)
 
+### Rate Limit Configuration
+
+Rate limit thresholds are loaded from `SystemConfig` when secure queries execute:
+- `rate_limit_window_ms` (default: `60000`)
+- `rate_limit_max_requests` (default: `100`)
+
+If a key is missing or invalid, env overrides (`MB_RATE_LIMIT_WINDOW_MS`, `MB_RATE_LIMIT_MAX_REQUESTS`) are used, then defaults.
+
 ### Audit Log Rotation
 
 Audit logs are capped at 10,000 entries: