limitd-redis
is client for limits on top of redis
using Token Buckets.
It's a fork from LimitDB.
- Installation
- Configure
- Overrides
- ERL (Elevated Rate Limits)
- Breaking changes from
Limitdb
- TAKE
- TAKEELEVATED
- PUT
- Overriding Configuration at Runtime
- Testing
- Author
- License
npm i limitd-redis
Create an instance of limitd-redis
as follows:
const Limitd = require('limitd-redis');
const limitd = new Limitd({
uri: 'localhost',
//or
nodes: [{
port: 7000,
host: 'localhost'
}],
buckets: {
ip: {
size: 10,
per_second: 5
}
},
prefix: 'test:',
username: 'username',
password: 'password'
});
uri
(string): Redis Connection String.nodes
(array): Redis Cluster Configuration.buckets
(object): Setup your bucket types.prefix
(string): Prefix keys in Redis.username
(string): Redis username. This is ignored if not in Cluster mode. Needs Redis >= v6.password
(string): Redis password.keepAlive
(number): TCP KeepAlive on the socket expressed in milliseconds. Set to a non-number value to disable keepAlive
size
(number): is the maximum content of the bucket. This is the maximum burst you allow.per_interval
(number): is the amount of tokens that the bucket receive on every interval.interval
(number): defines the interval in milliseconds.unlimited
(boolean = false): unlimited requests (skip take).skip_n_calls
(number): take will go to redis everyn
calls instead of going in every take.elevated_limits
(object): elevated limits configuration that kicks in when the bucket is empty. Please refer to the ERL section for more details.fixed_window
(boolean = false): refill at specified interval instead of granular.
You can also define your rates using per_second
, per_minute
, per_hour
, per_day
. So per_second: 1
is equivalent to per_interval: 1, interval: 1000
.
If you omit size
, limitdb assumes that size
is the value of per_interval
. So size: 10, per_second: 10
is the same than per_second: 10
.
If you don't specify a filling rate with per_interval
or any other per_x
, the bucket is fixed and you have to manually reset it using PUT
.
You can also define overrides
inside your type definitions as follows:
buckets = {
ip: {
size: 10,
per_second: 5,
overrides: {
'127.0.0.1': {
size: 100,
per_second: 50
}
}
}
}
In this case the specific bucket for 127.0.0.1
of type ip
will have a greater limit.
It is also possible to define overrides by regex:
overrides: {
'local-ips': {
match: /192\.168\./
size: 100,
per_second: 50
}
}
It's possible to configure expiration of overrides:
overrides: {
'54.32.12.31': {
size: 100,
per_second: 50,
until: new Date(2016, 4, 1)
}
}
We can also override the elevated_limits configuration:
buckets = {
ip: {
size: 10,
per_second: 5,
overrides: {
'awesome-key': {
elevated_limits: {
size: 200,
per_second: 200,
}
}
}
}
}
If elevated_limits is provided within the override and no size, per_interval, or unlimited is overridden, limitd-redis will copy them from the base bucket configuration. Thus, the configuration above after being processed will look like:
buckets = {
ip: {
size: 10,
per_second: 5,
overrides: {
'awesome-key': {
size: 10,
per_second: 5,
elevated_limits: {
size: 200,
per_second: 200,
}
}
}
}
}
Redis 6.2+ is required to use ERL.
ERL is a feature that allows you to define a different set of limits that kick in when the bucket is empty. The feature aims to provide a way to temporarily allow a higher rate of requests when the bucket is empty, for a limited period of time.
To be able to allow its use within limitd-redis, you need to:
- call the
takeElevated
method. - pass the
elevated_limits
parameter with the following properties:erl_is_active_key
: the identifier of the ERL activation for the bucket. This works similarly to thekey
you pass tolimitd.take
, which is the identifier of the bucket; however it's used to track the ERL activation for the bucket insteaderl_quota_key
: the identifier of the ERL quota bucket name.
- make sure that the bucket definition has ERL configured.
You can configure elevated limits inside your bucket definitions as follows:
buckets = {
ip: {
size: 10,
per_second: 5,
elevated_limits: { // Optional. ERL configuration if needed for the bucket. If not defined, the bucket will not use ERL.
size: 100, // Optional. New bucket size. already used tokens will be deducted from current bucket content upon ERL activation. Default: same as the original bucket.
per_second: 50, // Optional. New bucket refill rate. You can use all the other refill rate configurations defined above, such as per_minute, per_hour, per_interval etc. Default: same as the original bucket.
}
}
}
ERL quota represents the number of ERL activations that can be performed in a calendar month for the given erl_quota_key
.
When ERL is triggered, it will keep activated for the erl_activation_period_seconds
defined in the bucket configuration.
The amount of minutes per month allowed in ERL mode is defined by: quota_per_calendar_month * erl_activation_period_seconds / 60
.
The overrides in ERL work the same way as for the regular bucket. Both size and per_interval are mandatory when specifying an override.
In order to comply with Redis clustering best practices when using multi-key operations,
we always add a hash tag to both erl_quota_key
and erl_is_active_key
, so all keys within the multi-key operation resolve to the same
hash slot.
In order to do this, we follow Redis' hash-tag rules on what to identify as a hash tag.
Basically, what constitutes a hashtag is text within curly braces. e.g. "{tag}".
Additionally, we added 2 extra rules:
- If either the
type
orkey
arguments provided within the call to the takeElevated method contain a hashtag, we use that one to hash-tag the ERL keys - If the previous rule is not met, we use the entire
type:key
as hashtag.
Examples:
Situation | Call | Identified Hashtag | main_key | erl_is_active_key | erl_quota_key |
---|---|---|---|---|---|
No hashtag provided | limitd.takeElevated('bucketName', 'some-key') |
bucketName:some-key |
bucketName:some-key |
ERLActiveKey:{bucketName:some-key} |
ERLQuotaKey:{bucketName:some-key} |
Single hashtag | limitd.takeElevated('bucketName', '{some-key}') |
some-key |
bucketName:{some-key} |
ERLActiveKey:{some-key} |
ERLQuotaKey:{some-key} |
Multiple hashtags | limitd.takeElevated('bucketName', '{some-key}{anotherkey}') |
some-key |
bucketName:{some-key}{anotherkey} |
ERLActiveKey:{some-key} |
ERLQuotaKey:{some-key} |
Curly brace within hashtag | limitd.takeElevated('bucketName', '{{some-key}') |
{some-key |
bucketName:{{some-key} |
ERLActiveKey:{{some-key} |
ERLQuotaKey:{{some-key} |
Empty hashtag | limitd.takeElevated('bucketName', '{}{some-key}') |
bucketName:{}{some-key} |
bucketName:{}{some-key} |
ERLActiveKey:{bucketName:{}{some-key}} |
ERLQuotaKey:{bucketName:{}{some-key}} |
To address the issue where overrides typically target keys without the hashtag, we sanitize the received key by removing the hashtag before looking for overrides. If any overrides are found, they will be applied accordingly.
- Elements will have a default TTL of a week unless specified otherwise.
limitd.take(type, key, { count, configOverride }, (err, result) => {
console.log(result);
});
limitd.take
takes the following arguments:
type
: the bucket type.key
: the identifier of the bucket.count
: the amount of tokens you need. This is optional and the default is 1.configOverride
: caller-provided bucket configuration for this operation
The result object has:
conformant
(boolean): true if the requested amount is conformant to the limit.remaining
(int): the amount of remaining tokens in the bucket.reset
(int / unix timestamp): unix timestamp of the date when the bucket will be full again.limit
(int): the size of the bucket.delta_reset_ms
(int): the time remaining until the bucket is full again, expressed in milliseconds from the current time.
This take operation allows the use of elevated rate limits if it corresponds.
limitd.takeElevated(type, key, { count, configOverride, elevated_limits }, (err, result) => {
console.log(result);
});
limitd.takeElevated
takes the following arguments:
type
: the bucket type.key
: the identifier of the bucket.count
: the amount of tokens you need. This is optional and the default is 1.configOverride
: caller-provided bucket configuration for this operationelevated_limits
: (object)erl_is_active_key
: (string) the identifier of the ERL activation for the bucket.erl_quota_key
: (string) the identifier of the ERL quota bucket name.erl_activation_period_seconds
: (int) the ERL activation period as defined in the bucket configuration used in the current request.quota_per_calendar_month
: (int) the amount of ERL activations that can be done in a calendar month. Each activation will remain active duringerl_activation_period_seconds
.
quota_per_calendar_month
is the only refill rate available for ERL quota buckets at the moment.
The quota bucket will be used to track the amount of ERL activations that can be done in a calendar month.
If the quota bucket is empty, the ERL activation will not be possible.
The quota bucket will be refilled at the beginning of every calendar month.
For instance, if you want to allow a user to activate ERL for a bucket only 5 times in a month, you can define a quota bucket with quota_per_calendar_month: 5
.
That means that the user can activate ERL for the bucket 5 times in a month, and after that, the ERL activation will not be possible until the start of the next month.
The total minutes allowed for ERL activation in a calendar month is calculated as follows: quota_per_calendar_month * erl_activation_period_seconds / 60
.
The result object has:
conformant
(boolean): true if the requested amount is conformant to the limit.remaining
(int): the amount of remaining tokens in the bucket.reset
(int / unix timestamp): unix timestamp of the date when the bucket will be full again.limit
(int): the size of the bucket.delta_reset_ms
(int): the time remaining until the bucket is full again, expressed in milliseconds from the current time.elevated_limits
(object)triggered
(boolean): true if ERL was triggered in the current request.activated
(boolean): true if ERL is activated. Not necessarily triggered in this call.quota_remaining
(int): [Only valid if triggered=true] Iftriggered=true
, this value contains the remaining quota count for the givenerl_quota_key
. Otherwise, it will return -1, which is not valid to be interpreted as a quota count.quota_allocated
: (int): amount of quota allocated in the bucket configuration. This value is defined in the bucket configuration and is the same asquota_per_calendar_month
.erl_activation_period_seconds
: (int): the ERL activation period as defined in the bucket configuration used in the current request.
Example of interpretation:
if erl_triggered // quota left in the quotaKey bucket
if !erl_triggered // ERL wasn't triggered in this call, so we haven't identified the remaining quota.
By default, the bucket uses the sliding window algorithm to refill tokens. For example, if the bucket is set to 100 tokens per second, it refills 1 token every 10 milliseconds (1000ms / 100 tokens per second).
With the fixed window algorithm, the bucket refills at the specified interval. For instance, if set to 100 tokens per second, it refills 100 tokens every second.
To use the fixed window algorithm on Take
or TakeElevated
, set the fixed_window
property in the bucket configuration to true
(default is false
). This will refill the bucket at the specified interval
Additionally, you can use the fixed_window
flag in the configOverride parameter. This acts as a feature flag for safe deployment, but it cannot activate the fixed window algorithm if the bucket configuration is set to false.
Both the bucket configuration and the configOverride parameter must be set to true to activate the fixed window algorithm. If the configOverride parameter is not provided, it defaults to true, and the activation depends on the bucket configuration.
The following table describes how the fixed window bucket configuration and the fixed window param interact to activate the fixed window algorithm.
fixed_window bucket config | fixed_window param | Fixed Window Enabled |
---|---|---|
true | true | Yes |
true | false | No |
true | not provided | Yes |
false | true | No |
false | false | No |
false | not provided | No |
not provided | true | No |
not provided | false | No |
not provided | not provided | No |
You can manually reset a fill a bucket using PUT:
limitd.put(type, key, [count], (err, result) => {
console.log(result);
});
limitd.put
takes the following arguments:
type
: the bucket type.key
: the identifier of the bucket.count
: the amount of tokens you want to put in the bucket. This is optional and the default is the size of the bucket.configOverride
: caller-provided bucket configuration for this operation
Since the method of storing overrides for buckets in memory does not scale to a large number, limitd-redis provides a way for callers to pass in configuration from an external data store. The shape of this configOverride
parameter (available on take
, put
, get
, and wait
) is exactly the same as Buckets
above ^.
An example configuration override call might look like this:
const configOverride = {
size: 45,
per_hour: 15
}
// take one
limitd.take(type, key, { configOverride }, (err, result) => {
console.log(result);
});
// take multiple
limitd.take(type, key, { count: 3, configOverride }, (err, result) => {
console.log(result);
});
Config overrides follow the same rules as Bucket configuration elements with respect to default size when not provided and ttl.
We can also override the configuration for ERL buckets at runtime. The shape of this configOverride
parameter is the same as Buckets
above.
An example configuration override call for ERL might look like this:
const configOverride = {
size: 45,
per_hour: 15,
elevated_limits: {
size: 100,
per_hour: 50,
}
}
- Setup tests:
make test-setup
- Run tests:
make test
- Teardown tests:
make test-teardown
This project is licensed under the MIT license. See the LICENSE file for more info.