Version: Next

Rate Limiter

Think of a rate limiter like a traffic light for your application. It controls how often something can happen - like how many times a user can click a button or make an API request. This prevents your system from being overwhelmed.

Basic Usage

The simplest way to use rate limiting is with the default settings:

import { ratelimit } from 'commandkit/ratelimit';

// Check if this user can make another request
const allowed = await ratelimit('user:123');
if (allowed) {
  // Process the request
  console.log('Request processed successfully');
} else {
  // User has made too many requests
  console.log('Please wait before making another request');
}

Custom Configuration

Sometimes you need different limits for different situations. You can create a custom rate limiter with specific settings:

import { createRateLimiter } from 'commandkit/ratelimit';

// Create a stricter rate limiter for API endpoints
const apiLimiter = createRateLimiter({
  maxRequests: 5, // Allow 5 requests
  interval: 30000, // Per 30 seconds
});

const allowed = await apiLimiter.limit('api:endpoint');

Advanced Usage

Checking Remaining Requests

You can check how many requests a user has left and when the limit resets:

import { getRemainingRequests, getResetTime } from 'commandkit/ratelimit';

const remaining = await getRemainingRequests('user:123');
const resetTime = await getResetTime('user:123');

console.log(`${remaining} requests remaining`);
console.log(`Limit resets in ${Math.round(resetTime / 1000)} seconds`);

Manual Reset

In some cases, you might want to reset a user's rate limit (like after they upgrade their account):

import { resetRateLimit } from 'commandkit/ratelimit';

// Give the user a fresh start
await resetRateLimit('user:123');

Using External Storage

By default, rate limiters store data in memory. If you're running multiple servers, you'll want to use external storage like Redis so all servers can share the same rate limit information:

import { RateLimiter, RateLimitStorage } from 'commandkit/ratelimit';
import { RedisRateLimitStorage } from '@commandkit/redis';
import { Redis } from 'ioredis';

// Create Redis client
const redis = new Redis();

// Use Redis-based rate limit storage
const limiter = new RateLimiter(10, 60000, new RedisRateLimitStorage(redis));

You can also use the convenience function:

import { createRateLimiter } from 'commandkit/ratelimit';
import { RedisRateLimitStorage } from '@commandkit/redis';

const limiter = createRateLimiter({
  maxRequests: 10,
  interval: 60000,
  storage: new RedisRateLimitStorage(redis),
});

Default Settings

Max Requests: 10 requests
Time Window: 60 seconds (1 minute)
Storage: In-memory (works for single-server applications)

Common Use Cases

API Rate Limiting: Prevent users from making too many API calls
User Action Throttling: Limit how often users can click buttons or submit forms
Resource Access Control: Control access to expensive operations
Spam Prevention: Stop automated bots from overwhelming your system

Tips for Beginners

Start Simple: Use the default ratelimit() function for basic needs
Choose Good Keys: Use descriptive keys like user:123 or api:endpoint to make debugging easier
Set Reasonable Limits: Don't make limits too strict or too loose - find the right balance
Handle Rejection: Always check if the rate limit allows the action before proceeding
Consider Your Users: Think about legitimate use cases when setting limits

Basic Usage​

Custom Configuration​

Advanced Usage​

Checking Remaining Requests​

Manual Reset​

Using External Storage​

Default Settings​

Common Use Cases​

Tips for Beginners​