Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/xooniverse/shelf_limiter
A powerful and highly customizable rate limiter for shelf library, allowing you to easily manage and control request rates in your Dart server. π
https://github.com/xooniverse/shelf_limiter
api dart dart-shelf middleware package rate-limiter server shelf
Last synced: about 1 month ago
JSON representation
A powerful and highly customizable rate limiter for shelf library, allowing you to easily manage and control request rates in your Dart server. π
- Host: GitHub
- URL: https://github.com/xooniverse/shelf_limiter
- Owner: xooniverse
- License: bsd-2-clause
- Created: 2024-09-15T04:39:06.000Z (4 months ago)
- Default Branch: main
- Last Pushed: 2024-09-15T17:10:12.000Z (4 months ago)
- Last Synced: 2024-10-20T06:53:36.498Z (2 months ago)
- Topics: api, dart, dart-shelf, middleware, package, rate-limiter, server, shelf
- Language: Dart
- Homepage: https://pub.dev/packages/shelf_limiter
- Size: 47.9 KB
- Stars: 0
- Watchers: 0
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Funding: .github/FUNDING.yml
- License: LICENSE
Awesome Lists containing this project
README
# `shelf_limiter`
---
`shelf_limiter` is a powerful and highly customizable middleware package for the [Shelf](https://pub.dev/packages/shelf) library in Dart that enables efficient rate limiting. Protect your API from abuse and ensure fair usage with ease.
## π Features
| **Feature** | **Description** |
|---------------------------------|------------------|
| **π§ Customizable Rate Limits** | Effortlessly set the maximum number of requests and time window to suit your needs. Define global limits or different limits for specific endpoints to control how often clients can access your API. |
| **π Custom Headers** | Add and manage custom headers in your responses to enhance control and transparency. |
| **π Custom Responses** | Looking for more control? Youβve got it! Customize and send your own response when the API limit is exceeded. |
| **π Easy Integration** | Integrate seamlessly into your existing Shelf pipeline with minimal setup. Quickly apply rate limiting and focus on building the features that matter most without worrying about complex configurations. |
| **π Endpoint-Specific Limits** | Set different rate limits for different endpoints. Use wildcard patterns (e.g., `/api/v1/*`) to apply rate limits to multiple routes, allowing you to protect high-traffic routes with stricter limits while allowing more leniency on less critical parts of your API. |
## Installation
Add `shelf_limiter` to your `pubspec.yaml` file:
```yaml
dependencies:
shelf_limiter:
```
Then run:
```sh
dart pub get
```
Or simply run:
```sh
dart pub add shelf_limiter
```
## Usage
### π§ Basic Usage
Implement rate limiting in your Shelf application quickly and effectively. Hereβs a straightforward example using the `shelfLimiter` middleware:
```dart
import 'package:shelf/shelf.dart';
import 'package:shelf/shelf_io.dart' as io;
import 'package:shelf_limiter/shelf_limiter.dart';
void main() async {
final limiter = shelfLimiter(
RateLimiterOptions(
maxRequests: 5,
windowSize: const Duration(minutes: 1),
),
);
final handler =
const Pipeline().addMiddleware(limiter).addHandler(_echoRequest);
var server = await io.serve(handler, 'localhost', 8080);
print('Server listening on port ${server.port}');
}
Response _echoRequest(Request request) => Response.ok('Request received');
```
In this example, any client is limited to 5 requests per minute. If a client exceeds this limit, they will receive a `429 Too Many Requests` response.
### π οΈ Enhance Your API with Custom Headers
Add extra details to your responses with custom headers using `shelfLimiter`:
```dart
import 'dart:convert';
import 'package:shelf/shelf.dart';
import 'package:shelf/shelf_io.dart' as io;
import 'package:shelf_limiter/shelf_limiter.dart';
void main() async {
final options = RateLimiterOptions(
headers: {
'X-Custom-Header': 'Rate limited',
},
);
final limiter = shelfLimiter(
RateLimiterOptions(
maxRequests: 5,
windowSize: const Duration(minutes: 1),
headers: options.headers,
),
);
final handler =
const Pipeline().addMiddleware(limiter).addHandler(_echoRequest);
var server = await io.serve(handler, 'localhost', 8080);
print('Server listening on port ${server.port}');
}
Response _echoRequest(Request request) => Response.ok('Request received');
```
### π‘ Customize Rate Limit Exceeded Responses
Provide meaningful feedback by customizing the response when the rate limit is exceeded:
```dart
import 'dart:convert';
import 'package:shelf/shelf.dart';
import 'package:shelf/shelf_io.dart' as io;
import 'package:shelf_limiter/shelf_limiter.dart';
void main() async {
final options = RateLimiterOptions(
headers: {
'X-Custom-Header': 'Rate limited',
},
onRateLimitExceeded: (request) async {
return Response(
429,
body: jsonEncode({
'status': false,
'message': "Uh, hm! Wait a minute, that's a lot of requests.",
}),
headers: {
'Content-Type': 'application/json',
},
);
},
);
final limiter = shelfLimiter(
RateLimiterOptions(
maxRequests: 5,
windowSize: const Duration(minutes: 1),
headers: options.headers,
onRateLimitExceeded: options.onRateLimitExceeded,
),
);
final handler =
const Pipeline().addMiddleware(limiter).addHandler(_echoRequest);
var server = await io.serve(handler, 'localhost', 8080);
print('Server listening on port ${server.port}');
}
Response _echoRequest(Request request) => Response.ok('Request received');
```
## π Advanced Usage with Endpoint-Specific Limits
When you want to fine-tune your rate limiting strategy and avoid a one-size-fits-all approach, `shelfLimiterByEndpoint` is your best friend. This middleware allows you to set unique rate limits for different endpoints, giving you the power to tailor restrictions based on the needs of each route. Think of it as customizing speed limits for different roads in your neighborhoodβsome streets are just busier than others!
### Example - Custom Limits for Different Routes:
Here's how you can make your API as efficient as a well-oiled machine with `shelfLimiterByEndpoint`:
```dart
import 'package:shelf/shelf.dart';
import 'package:shelf/shelf_io.dart' as io;
import 'package:shelf_limiter/shelf_limiter.dart';
void main() async {
final limiter = shelfLimiterByEndpoint(
endpointLimits: {
'/auth': RateLimiterOptions(
maxRequests: 5,
windowSize: const Duration(minutes: 1),
),
'/data': RateLimiterOptions(
maxRequests: 20,
windowSize: const Duration(minutes: 1),
),
'/api/v1/*': RateLimiterOptions( // Wildcard path matching
maxRequests: 15,
windowSize: const Duration(minutes: 2),
),
},
defaultOptions: RateLimiterOptions(
maxRequests: 100,
windowSize: const Duration(minutes: 1),
),
);
final handler =
const Pipeline().addMiddleware(limiter).addHandler(_echoRequest);
var server = await io.serve(handler, 'localhost', 8080);
print('Server listening on port ${server.port}');
}
Response _echoRequest(Request request) => Response.ok('Request received');
```
In this advanced example, the `/auth` endpoint has a rate limit of 5 requests per minute, the `/data` endpoint allows up to 20 requests, and all other endpoints following the `/api/v1/*` pattern are limited to 15 requests per 2 minutes. Any endpoint not explicitly listed follows the default limit of 100 requests per minute.
## βοΈ Configuration
### Rate Limiter Options
- **`maxRequests`**: Maximum number of requests allowed within the specified window size.
- **`windowSize`**: Duration of the time window for rate limiting.
- **`headers`**: Custom headers to include in responses.
- **`onRateLimitExceeded`**: Callback function to define custom behavior when the rate limit is exceeded.
## π§π»βπ» Contributing
We welcome contributions! Check out our [GitHub repository](https://github.com/xooniverse/shelf_limiter) to get started. Feel free to open issues, submit pull requests, or ask questions.
## β€οΈ Support Us
If `shelf_limiter` has been useful to you, consider supporting further development:
- [Buy Me a Coffee](https://buymeacoffee.com/heysreelal) β
- [PayPal](https://paypal.me/sreelalts) πΈ
# Thank you!