fusonic/rate-limit-bundle

Simple rate limiting based on routes.

Installs: 13 490

Dependents: 0

Suggesters: 0

Security: 0

Stars: 0

Watchers: 6

Forks: 1

Open Issues: 1

Type:symfony-bundle

v4.0.0 2020-12-11 11:12 UTC

This package is auto-updated.

Last update: 2024-11-11 19:35:38 UTC


README

This bundle provides simple rate limiting based on routes.

Getting started

  1. Install bundle:
composer require fusonic/rate-limit-bundle
  1. Add RateLimitBundle to kernel:
    Fusonic\RateLimitBundle\RateLimitBundle::class => ['prod' => true],
  1. Add cache config
framework:
    cache:
        app: cache.adapter.array
  1. Add rate limit config
fusonic_rate_limit:
    cache_provider: "cache.app"
    enabled: true
    routes:
        foo:
            limit: 2
            period: 3600

How does it work

The bundle makes use of Symfony's event system. Therefore some events exist under Fusonic/RateLimitBundle/Event:

  • RateLimitAttemptsUpdatedEvent will be emitted when a request for a rate limited route is detected.
  • RateLimitExceededEvent will be emitted when a route limit is exceeded.
  • RateLimitResetAttemptsEvent can be used to reset the state for a specific route (e.g. after a successful login)

Example

Create an event listener or subscriber:

<?php

namespace AppBundle\EventListener;

use Fusonic\RateLimitBundle\Event\RateLimitEvents;
use Fusonic\RateLimitBundle\Event\RateLimitExceededEvent;
use Symfony\Component\EventDispatcher\EventSubscriberInterface;
use Symfony\Component\HttpKernel\Exception\TooManyRequestsHttpException;

final class RateLimitSubscriber implements EventSubscriberInterface
{
    public static function getSubscribedEvents(): array
    {
        return [
            RateLimitEvents::ROUTE_LIMIT_EXCEEDED => 'onLimitExceeded',
        ];
    }

    public function onLimitExceeded(RateLimitExceededEvent $event): void
    {
        $config = $event->getRouteLimitConfig();
        $message = 'You sent too many requests for this endpoint.';
        throw new TooManyRequestsHttpException($config->getPeriod(), $message);
    }
}

And register it as service.

    app.rate_limit_subscriber:
        class: AppBundle\EventListener\RateLimitSubscriber
        tags:
            - { name: kernel.event_subscriber }

Execute tests

Run the the tests by executing:

vendor/bin/simple-phpunit