Usage "function calls"
what are the cases that makes "function calls" to increase in the convex dashboard usage.
My usage "function calls" went too high about 25 million even though no one is using the convex app..
11 Replies
Thanks for posting in <#1088161997662724167>.
Reminder: If you have a Convex Pro account, use the Convex Dashboard to file support tickets.
- Provide context: What are you trying to achieve, what is the end-user interaction, what are you seeing? (full error message, command output, etc.)
- Use search.convex.dev to search Docs, Stack, and Discord all at once.
- Additionally, you can post your questions in the Convex Community's <#1228095053885476985> channel to receive a response from AI.
- Avoid tagging staff unless specifically instructed.
Thank you!
Function calls can be initiated from a client connected to your Convex instance or from scheduled functions, or cron jobs. Check the Schedules tab in the dashboard for your deployment to see what may be running on a schedule. There's a cron jobs section to check there as well.
I deleted the deployment, let me ask in a different way. Do http api call for public query or mutation increase function calls. Also, do http actions increase function calls ?
Every call to a query or mutation counts as a function call. I believe http actions are function calls too but need to confirm that
Confirmed, http action requests are also function calls.
okay, so let's say someone knows my deployment url, he can run a script that calls the deployment frequently and fill up my function calls capacity, and no way I can do a block for that specific origin/ip
This is old but I believe it's still the stance of the Convex team:
https://discord.com/channels/1019350475847499849/1203007687344914503/1203114033570644019
It sounds like you're effectively describing an attack to inflict pain (running up your function calls) by a user who gets no other value from calling your endpoints, which may fall under the category of things Convex handles for you.
Is that what's actually happening to you currently?
Or is that more of a hypothetical
yes at least that's what I think, I had to delete the deployment and create another. I'm asking just to set things differntly in a more secure way
If you have http actions, they're exposed to the internet and can be called by anyone with the address. If you believe a malicious actor burned through 25 million function calls on your previous deployment (I understand it's deleted now), I'd message support@convex.dev and ask them to have a look, they likely have logs.
so can they look at the logs even if its deleted ? I have the prev deployment url
I don't know for sure but it's worth a shot. Include the deployment url in your email.
alright
thanks for your help