diff --git a/Gemfile b/Gemfile
index 25a0636e2a..17523af0ed 100644
--- a/Gemfile
+++ b/Gemfile
@@ -30,7 +30,7 @@ gem 'jbuilder', '~> 2.5'
 gem 'active-fedora', '>= 11.1.4'
 
 #added by ubiquitypress
-gem 'chosen-rails'
+gem 'chosen-rails', '~> 1.8.7'
 
 # Use Capistrano for deployment
 # gem 'capistrano-rails', group: :development
@@ -82,7 +82,7 @@ gem 'blacklight_oai_provider', '~> 6.0'
 gem 'hyrax', '2.0.2'
 gem 'rsolr', '~> 2.0'
 
-gem 'devise'
+gem 'devise', '~> 4.3.0'
 gem 'devise-guests', '~> 0.3'
 gem 'devise-i18n'
 gem 'devise_invitable', '~> 1.6'
@@ -110,7 +110,7 @@ group :aws do
   gem 'active_elastic_job', '~> 2.0'
 end
 
-gem 'sidekiq'
+gem 'sidekiq', '~> 5.0.3'
 #added by ubiquitypress
 gem "sidekiq-cron", "~> 1.0.4"
 
@@ -123,4 +123,5 @@ gem 'mini_magick', '~> 4.8.0'
 gem 'httparty', '~> 0.16.3'
 #aded by ubiquitypress for caching
 # Will install several other gems like redis-rack, redis-actionpack, redis-activesupport, redis-store, redis-store
-gem 'redis-rails'
+gem 'redis-rails', '~> 5.0.2'
+gem "rack-attack", '~> 6.2.1'
diff --git a/Gemfile.lock b/Gemfile.lock
index d64c8d9d36..24d86528b2 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -596,6 +596,8 @@ GEM
       rdf
     raabro (1.1.6)
     rack (2.0.3)
+    rack-attack (6.2.1)
+      rack (>= 1.0, < 3)
     rack-protection (2.0.0)
       rack
     rack-test (0.7.0)
@@ -917,13 +919,13 @@ DEPENDENCIES
   byebug
   capybara
   carrierwave-aws
-  chosen-rails
+  chosen-rails (~> 1.8.7)
   chromedriver-helper
   coffee-rails (~> 4.2)
   config (~> 1.5, >= 1.5.1)
   coveralls
   database_cleaner
-  devise
+  devise (~> 4.3.0)
   devise-guests (~> 0.3)
   devise-i18n
   devise_invitable (~> 1.6)
@@ -944,9 +946,10 @@ DEPENDENCIES
   mods (~> 2.1)
   pg
   puma (~> 3.7)
+  rack-attack (~> 6.2.1)
   rails (~> 5.1.1)
   rails-controller-testing
-  redis-rails
+  redis-rails (~> 5.0.2)
   riiif (~> 1.1)
   rolify
   rsolr (~> 2.0)
@@ -959,7 +962,7 @@ DEPENDENCIES
   secure_headers
   selenium-webdriver
   sentry-raven
-  sidekiq
+  sidekiq (~> 5.0.3)
   sidekiq-cron (~> 1.0.4)
   simplecov
   solr_wrapper (~> 2.0)
diff --git a/config/application.rb b/config/application.rb
index af8eb9d38f..95c6f708e9 100644
--- a/config/application.rb
+++ b/config/application.rb
@@ -17,6 +17,9 @@ class Application < Rails::Application
     # configuring Nginx on Elastic Beanstalk is a pain.
     config.middleware.use Rack::Deflater
 
+    #added by ubiquitypress
+    config.middleware.use Rack::Attack
+
     # The locale is set by a query parameter, so if it's not found render 404
     config.action_dispatch.rescue_responses.merge!(
       "I18n::InvalidLocale" => :not_found
diff --git a/config/initializers/rack_attack.rb b/config/initializers/rack_attack.rb
new file mode 100644
index 0000000000..2d87deee41
--- /dev/null
+++ b/config/initializers/rack_attack.rb
@@ -0,0 +1,20 @@
+
+class Rack::Attack
+
+  redis_client = Redis::Store.new(:host => ENV['REDIS_CACHE_HOST'],
+      :port => ENV['REDIS_CACHE_PORT'], :namespace => "hyku-rack-attack-cache", :db => 1)
+
+  Rack::Attack.cache.store = redis_client
+
+  safelist("safe_host") do |request|
+    request.env['HTTP_X_UBIQUITY_VALIDATION'] == ENV['UBIQUITY_VALIDATION']
+ end
+
+ blocklist("block_api_access") do |request|
+    # Requests are blocked if the return value is truthy
+    if request.path.include?'api/v1'
+      request.env['HTTP_X_UBIQUITY_VALIDATION'] != ENV['UBIQUITY_VALIDATION']
+    end
+  end
+
+end
diff --git a/config/initializers/redis.rb b/config/initializers/redis.rb
index 1796c7448b..0a06cfd121 100644
--- a/config/initializers/redis.rb
+++ b/config/initializers/redis.rb
@@ -1,14 +1,14 @@
 if Rails.env == 'production'
 
- $redis_cache = Redis::Store.new(
-           :host => ENV['REDIS_CACHE_HOST'],
-           :port => ENV['REDIS_CACHE_PORT'],
-           :namespace => "hyku-cache",
-           :db => 0
-         )
-
- $redis = Redis.new(
-                   :host => ENV['REDIS_HOST'],
-                   :port => ENV['REDIS_PORT']
-                 )
+ $redis_cache = Redis::Store.new(:host => ENV['REDIS_CACHE_HOST'],
+           :port => ENV['REDIS_CACHE_PORT'], :namespace => "hyku-cache", :db => 0)
+
+$redis_rack_attack_cache = Redis::Store.new(:host => ENV['REDIS_CACHE_HOST'],
+    :port => ENV['REDIS_CACHE_PORT'], :namespace => "hyku-rack-attack-cache", :db => 1)
+
+ $redis = Redis.new(:host => ENV['REDIS_HOST'],  :port => ENV['REDIS_PORT'] )
 end
+
+
+$rack_attack_cache = Redis::Store.new(:host => ENV['REDIS_CACHE_HOST'],
+      :port => ENV['REDIS_CACHE_PORT'], :namespace => "hyku-rack-attack-cache", :db => 1)