hapi-limiter
Advanced tools
Rate limiting plugin for Hapi, inspired by hapi-ratelimit, but using hapi's builtin server cache interface.
npm install hapi-limiter
server.register(require('hapi-limiter'), function(err) {
Hoek.assert(!err, 'uh oh!');
});
server.route({
path: '/foo',
method: 'get',
handler: function(request, reply) {
reply('remaining requests: ', request.plugins[hapi-limiter].remaining);
},
config:{
plugins: {
'hapi-limiter': {
enable: true
}
}
}
});
These settings are global, and applicable values are applied as defaults to each rate limted route
| Setting | Description | Default |
|---|---|---|
| ttl | Length of time that a limit should be enforced for, specified in miliseconds | 1000 * 60 * 15 |
| limit | Maximum allowed API calls per period specified by ttl | 15 |
| cacheClient | A Hapi CacheClient, or similarly functioning interface. | undefined |
| cache | A Hapi Catbox policy | default ttl and segment, using default server cache |
| generateKeyFunc | A function with the signature function(request) {} that returns the caching key | returns method + api path + ip address |
| Setting | Description | Default |
|---|---|---|
| enable | boolean or truthy value, indicating if route is to be rate limited | undefined |
| ttl | Length of time that a limit should be enforced for, specified in miliseconds | 1000 * 60 * 15 |
| limit | Maximum allowed API calls per period specified by ttl | 15 |
FAQs
Rate limiting plugin for Hapi
We found that hapi-limiter demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
An advanced npm supply chain attack is leveraging Ethereum smart contracts for decentralized, persistent malware control, evading traditional defenses.
Security News
Research
Attackers are impersonating Sindre Sorhus on npm with a fake 'chalk-node' package containing a malicious backdoor to compromise developers' projects.
Security News
The npm package for the LottieFiles Player web component was hit with a supply chain attack after a software engineer's npmjs credentials were compromised.