koa-ratelimiter
Advanced tools
Rate limiter middleware for koa.
$ npm install koa-ratelimiter
The library exports 3 things:
ratelimiter adapter and which a function with options to build the middlewareredisRateLimit: an helper function returning a middleware initialized with a redisAdaptermemoryRateLimit: an helper function returning a middleware initialized with a memoryAdapterdb redis connection instancemax max requests within duration [2500]duration of limit in milliseconds [3600000]id id to compare requests [ip]var ratelimiter = require('koa-ratelimiter').redisRateLimit;
var redis = require('redis');
var koa = require('koa');
var app = koa();
// apply rate limit
app.use(ratelimiter({
db: redis.createClient(),
duration: 60000,
max: 100,
id: function (context) {
return context.ip;
}
}));
// response middleware
app.use(function *(){
this.body = 'Stuff!';
});
app.listen(3000);
console.log('listening on port 3000');
This mode uses the memoryAdapter of node-ratelimiter. It should only be used in development.
max max requests within duration [2500]duration of limit in milliseconds [3600000]id id to compare requests [ip]var ratelimiter = require('koa-ratelimiter').memoryRateLimit;
var koa = require('koa');
var app = koa();
// apply rate limit
app.use(ratelimiter({
duration: 60000,
max: 100,
id: function (context) {
return context.ip;
}
}));
// response middleware
app.use(function *(){
this.body = 'Stuff!';
});
app.listen(3000);
console.log('listening on port 3000');
This mode uses the nullAdapter of node-ratelimiter. It should only be used for testing purposes.
var ratelimiter = require('koa-ratelimiter').nullRateLimit;
var koa = require('koa');
var app = koa();
// apply rate limit
app.use(ratelimiter({}));
// response middleware
app.use(function *(){
this.body = 'Stuff!';
});
app.listen(3000);
console.log('listening on port 3000');
To learn more about what a custom adapter should be, please refer to the ratelimiter documentation
max max requests within duration [2500]duration of limit in milliseconds [3600000]id id to compare requests [ip]var ratelimiter = require('koa-ratelimiter');
var koa = require('koa');
var app = koa();
var myCustomAdapter = require('./myCustomAdapter');
// apply rate limit
app.use(ratelimiter(myCustomAdapter)({
duration: 60000,
max: 100,
id: function (context) {
return context.ip;
}
}));
// response middleware
app.use(function *(){
this.body = 'Stuff!';
});
app.listen(3000);
console.log('listening on port 3000');
Example 200 with header fields:
HTTP/1.1 200 OK
X-Powered-By: koa
X-RateLimit-Limit: 100
X-RateLimit-Remaining: 99
X-RateLimit-Reset: 1384377793
Content-Type: text/plain; charset=utf-8
Content-Length: 6
Date: Wed, 13 Nov 2013 21:22:13 GMT
Connection: keep-alive
Stuff!
Example 429 response:
HTTP/1.1 429 Too Many Requests
X-Powered-By: koa
X-RateLimit-Limit: 100
X-RateLimit-Remaining: 0
X-RateLimit-Reset: 1384377716
Content-Type: text/plain; charset=utf-8
Content-Length: 39
Retry-After: 7
Date: Wed, 13 Nov 2013 21:21:48 GMT
Connection: keep-alive
Rate limit exceeded, retry in 8 seconds
MIT
FAQs
Rate limiter middleware for koa
We found that koa-ratelimiter demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.