Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/eddiejibson/limitrr
Light NodeJS rate limiting and response delaying using Redis - including Express middleware.
https://github.com/eddiejibson/limitrr
authorization brute-force discriminator expiry express-middleware expressjs force ip light limiting maximum nodejs promise protection rate rate-limiter redis security security-tools
Last synced: 6 days ago
JSON representation
Light NodeJS rate limiting and response delaying using Redis - including Express middleware.
- Host: GitHub
- URL: https://github.com/eddiejibson/limitrr
- Owner: eddiejibson
- License: mit
- Created: 2018-11-03T19:46:47.000Z (about 6 years ago)
- Default Branch: master
- Last Pushed: 2023-01-23T21:56:50.000Z (almost 2 years ago)
- Last Synced: 2024-12-06T22:45:47.918Z (about 2 months ago)
- Topics: authorization, brute-force, discriminator, expiry, express-middleware, expressjs, force, ip, light, limiting, maximum, nodejs, promise, protection, rate, rate-limiter, redis, security, security-tools
- Language: JavaScript
- Homepage: https://limitrr.js.org
- Size: 701 KB
- Stars: 203
- Watchers: 2
- Forks: 9
- Open Issues: 11
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
NodeJS rate limiting and response delaying using Redis - includes Express middleware.
Official Documentation (limitrr.js.org)
Limitrr assists with the rate-limiting and "delaying of responses" for various routes within your NodeJS application. Unlike other similar packages, this utility allows the user to limit not only by the number of requests but also the number of completed actions (e.g allowing a certain amount of accounts to be successfully created within a timespan) and have such restricted with custom options. As well as this, custom discriminators are possible - you no longer have to limit by just the user's IP. Limitrr can also delay responses after a certain amount of requests have been made - you don't have to just rate-limit potentially malicious requests, you can delay them instead or as well as. Included also within this package are various middleware functions for Express. However, the core functions work perfectly fine if you're not using such a package and chose to do something else, instead.
I've effectively released a similiar limitrr library, but in PHP. Check it out [here](http://github.com/eddiejibson/limitrr-php)
If you appreciate this project, please 🌟 it on GitHub.
**Pull Requests are welcomed**
## Roadmap
- [x] Create multiple route limits (separate expiry times e.t.c) without having to initialize the Limitrr class multiple times
- [x] Return headers to user with rate limiting details - how many requests/actions remain before restrictions are put in place, how long before the values expire and how many requests/actions are allowed per that route.
- [x] Unit Tests
- [x] Pass parameters into functions via an object
- [x] Ability to slow down responses after a certain amount of requests
- [x] Extend options further to allow things like IP exclusion (asides from just local).## Documentation
**Access the documentation here:** [https://limitrr.js.org](https://limitrr.js.org)
## Contributors
This project exists thanks to all the people who contribute.
## License
[![FOSSA Status](https://app.fossa.io/api/projects/git%2Bgithub.com%2Feddiejibson%2Flimitrr.svg?type=large)](https://app.fossa.io/projects/git%2Bgithub.com%2Feddiejibson%2Flimitrr?ref=badge_large)