Comments (3)
That's a good idea! I don't think I want to do it for the default store due to the additional overhead and complexity it adds, but I'd be happy for you to build a new store that implemented your strategy.
We have a guide for creating your own store at https://github.com/express-rate-limit/express-rate-limit/wiki/Creating-Your-Own-Store and then once you have it ready, I'd link to it from the Readme here.
from express-rate-limit.
Hey,
I am currently utilizing the Redis store. I was not aware this is handled at the store level?
I thought the express-rate-limiter
decided on the strategy (e.g. "Wait for this amount of time, then clear the counter.") and the Stores just exposed the API to do it.
Although it makes sense, for the reset-timers
to be handled on the Store level.
So to confirm: It is up to the Stores to determine how they will handle resets?
from express-rate-limit.
Yes, it is up to the stores. Most do a per-user window with the count being reset when the user's window expires, but the default one does a global window with all users getting reset at the same time so that it only needs a single timer running.
It's something I might look into changing eventually, but it'd be a big and likely breaking change, so I'm not sure it will ever happen.
from express-rate-limit.
Related Issues (20)
- ValidationError: The 'X-Forwarded-For' header is set but the Express HOT 2
- I found that this library occasionally works and occasionally doesn't work. HOT 3
- limit is not working , still need to set max HOT 5
- [Question] keyGenerator option HOT 4
- Get Remaining Rate-Limit HOT 3
- ERR_ERL_DOUBLE_COUNT with multiple rate limits HOT 2
- It blocks all IPs instead of blocking each IP HOT 7
- getKey is undefined in Redis Store HOT 9
- Passed options in RateLimitRequestHandler HOT 1
- Install a problem in express5 / express@next HOT 9
- Can't get the correct ip HOT 3
- Ratelimit headers empty while running on Bun v1.0.x HOT 1
- Don't know how to resetKey when user complete captcha HOT 6
- requestWasSuccessful usage doesn't support returning a Promise
- Can't use process.env variables HOT 3
- An option similar to `skip` but which is evaluated after the request has completed HOT 2
- Add Support for Persistent Storage (e.g., Redis) in express-rate-limit HOT 1
- Enhanced Rate Limiting with a retryAfter option and IP Blocking Features for Improved Flexibility HOT 2
- ERR_ERL_CREATED_IN_REQUEST_HANDLER HOT 5
- Allow rate limit configuration dynamic based on request comes in (Saas) HOT 22
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from express-rate-limit.