UNPKG

ratelimit.js

Version:

A NodeJS library for efficient rate limiting using sliding windows stored in Redis.

ratelimit.io

dudleycarr/ratelimit.js

97 lines (78 loc) 2.62 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
async = require 'async' express = require 'express' redis = require 'redis' should = require 'should' sinon = require 'sinon' supertest = require 'supertest' {RateLimit, ExpressMiddleware} = require '../src' describe 'Express Middleware', -> beforeEach -> @sandbox = sinon.sandbox.create() # Set up rate limiter instance, mock, and middleware instance @redisClient = redis.createClient() @ratelimit = new RateLimit @redisClient, [ {interval: 1, limit: 1} ] @ratelimitMock = @sandbox.mock @ratelimit @middleware = new ExpressMiddleware @ratelimit # Set up express and supertest for use throughout tests @app = express() middleware = @middleware.middleware (req, res, next) -> res.status(429).end() @app.get '/', middleware, (req, res, next) -> res.status(200).end() @request = => supertest @app afterEach (done) -> @sandbox.restore() @ratelimit.keys (err, keys = []) => return done err if err if keys.length @redisClient.del keys..., done else done() describe 'getIdentifiers', -> it 'should extract an IP from an express-style request', -> @middleware.getIdentifiers(ip: '127.0.0.1') .should.eql ['127.0.0.1'] describe '.middleware', -> it 'should track a request IP', (done) -> @ratelimitMock.expects('incr') .withArgs(['127.0.0.1']) .once() .yields() @request().get('/').expect(200).end (err) => @ratelimitMock.verify() done err it 'should allow the first request and limit the second', (done) -> async.series [ (done) => @request().get('/').expect(200).end done (done) => @request().get('/').expect(429).end done ], done it 'should ignore a redis-level error', (done) -> @middleware.options.ignoreRedisErrors = true @ratelimitMock .expects('incr') .withArgs(['127.0.0.1']) .once() .yields new Error() @request().get('/').expect(200).end (err) => @ratelimitMock.verify() done err it 'should support custom request weights', (done) -> weight = (req) -> 10 @ratelimitMock .expects('incr') .withArgs(['127.0.0.1'], 10) .once() .yields() weighted = @middleware.middleware {weight}, (req, res, next) -> res.status(429).end() @app.get '/weight', weighted, (req, res, next) -> res.status(200).end() @request().get('/weight').expect(200).end (err) => @ratelimitMock.verify() done err