Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket

@acpr/rate-limit-postgresql

Package Overview
Dependencies
Maintainers
1
Versions
10
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@acpr/rate-limit-postgresql

A PostgreSQL store for the `express-rate-limit` middleware

  • 1.1.1
  • Source
  • npm
  • Socket score

Version published
Weekly downloads
753
decreased by-22.29%
Maintainers
1
Weekly downloads
 
Created
Source

rate-limit-postgresql

Contributor Covenant

A PostgreSQL store for the express-rate-limit middleware.

Installation

From the npm registry:

# Using npm
> npm install --save @acpr/rate-limit-postgresql
# Using yarn or pnpm
> yarn/pnpm add @acpr/rate-limit-postgresql

Usage

Functional examples for using rate-limit-postgresql are found in the following repository

let rateLimit = require('express-rate-limit')
let postgresStores = require('@acpr/rate-limit-postgresql')

let limiter = new RateLimit({
	store: new postgresStores.PostgresStore(
		{
			user: 'postgres',
			password: 'postgres',
			host: 'localhost',
			database: 'rate-limit',
			port: 5432,
		},
		'aggregated_store',
	),
	windowMs: 15 * 60 * 1000, // 15 minutes
	max: 3, // Limit each IP to 3 requests per `window` (here, per 15 minutes)
	message:
		'Too many accounts created from this IP, please try again after 15 minutes',
	standardHeaders: 'draft-7', // Set `RateLimit` and `RateLimit-Policy`` headers
	legacyHeaders: false,
})

//  apply to all requests
app.use(limiter)

Importing

This library is provided in ESM as well as CJS forms, and works with both Javascript and Typescript projects.

This package requires you to use Node 16 or above.

Import it in a CommonJS project (type: commonjs or no type field in package.json) as follows:

let postgresStores = require('@acpr/rate-limit-postgresql')

Import it in a ESM project (type: module in package.json) as follows:

import postgresStores from '@acpr/rate-limit-postgresql'

Configuration

Types of Postgres Stores

There are two different types of Postgres Stores:

  1. PostgresStoreAggregatedIP (with the default PostgresStore constructor)- which aggregates the IP count in the table, as shown in the following table
keysession_idcount
192.168.1.113
192.168.2.111
  1. PostgresStoreIndividualIP - which stores the IP of each request in a separate row (as shown in the following table) and performs the aggregation at a separate step
idkeysession_idevent_time
1192.168.1.112023-09-13T07:40:09+00:00
2192.168.1.112023-09-13T07:40:10+00:00
3192.168.1.112023-09-13T07:40:11+00:00
4192.168.2.112023-09-13T07:40:11+00:00

Note: The database uses UUID as a data type for IDs, the tables contain integers as IDs to keep illustration simple.

Constructor

Both types of store take the same input in their constructor

  • config - The database configuration as specified in the node-postgres configuration.
  • prefix - The unique name of the session (persisted in the database). Used by the double-count check to avoid false-positives when a key is counted twice, but with different prefixes.

Installation

Project license is specified in the license file. Third party licenses are located in the third_party_licenses folder

Keywords

FAQs

Package last updated on 18 Sep 2023

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

Packages

npm

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc