Hi, I wonder if there are any limits on websocket session duration, is there full protection for the L7, and are there any restrictions at all?
The best resource is this page:
WebSocket connections (both
wss://) are proxied by CF, so this is full DDOS protection. Note that they can only be used on supported ports.
See that page.
This is tricky. See this HN thread and the comment by
pencoyd. Simply make sure your client and server properly handle the
1001 status code and your client reconnects to the server when this is the disconnect reason.