RateLimitBundle
This bundle provides simple rate limiting based on routes., (*1)
Getting started
- Install bundle:
composer require fusonic/rate-limit-bundle
- Add RateLimitBundle to kernel:
Fusonic\RateLimitBundle\RateLimitBundle::class => ['prod' => true],
- Add cache config
framework:
cache:
app: cache.adapter.array
- Add rate limit config
fusonic_rate_limit:
cache_provider: "cache.app"
enabled: true
routes:
foo:
limit: 2
period: 3600
How does it work
The bundle makes use of Symfony's event system. Therefore some events exist under Fusonic/RateLimitBundle/Event:
- RateLimitAttemptsUpdatedEvent will be emitted when a request for a rate limited route is detected.
- RateLimitExceededEvent will be emitted when a route limit is exceeded.
- RateLimitResetAttemptsEvent can be used to reset the state for a specific route (e.g. after a successful login), (*2)
Example
Create an event listener or subscriber:, (*3)
<?php
namespace AppBundle\EventListener;
use Fusonic\RateLimitBundle\Event\RateLimitEvents;
use Fusonic\RateLimitBundle\Event\RateLimitExceededEvent;
use Symfony\Component\EventDispatcher\EventSubscriberInterface;
use Symfony\Component\HttpKernel\Exception\TooManyRequestsHttpException;
final class RateLimitSubscriber implements EventSubscriberInterface
{
public static function getSubscribedEvents(): array
{
return [
RateLimitEvents::ROUTE_LIMIT_EXCEEDED => 'onLimitExceeded',
];
}
public function onLimitExceeded(RateLimitExceededEvent $event): void
{
$config = $event->getRouteLimitConfig();
$message = 'You sent too many requests for this endpoint.';
throw new TooManyRequestsHttpException($config->getPeriod(), $message);
}
}
And register it as service., (*4)
app.rate_limit_subscriber:
class: AppBundle\EventListener\RateLimitSubscriber
tags:
- { name: kernel.event_subscriber }
Execute tests
Run the the tests by executing:, (*5)
vendor/bin/simple-phpunit
Wallogit.com
