Giters

funkybob / django-rated

A rate limiting decorator for Django

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

django-rated

Downloads Version Build Status

A rate limiting decorators for Django

Introduction

rated allows you to limit request rates a single client may attempt on views in 'realms' of your site.

You control which views are in which 'realm' by naming the realm when you decorate the view.

rated will keep track of how many requests, and when, a client has made and, if they've exceeded their limit, will return a configurable response -- 429 - Too many requests by default.

Installing

Decorate your views:

# Add this to the "default" realm
@rate_limit
def some_view(request):
    ...
# Add this to a custom realm
@rate_limit('myrealm')
def myview(request):

Configuring

Next, configure your realms.

This is done by defining them in the RATED_REALMS setting. This is a dict where the keys are realm names, and the values are dicts of configs.

A realm config may contain any of the following keys. Any omitted fall back to the defaults from the settings below.

allowed:  A list of IPs to exclude from rate limiting.
duration:   Time after which any requests are forgotten
limit:      Number of requests before limiting is applied.
code:       HTTP Status code to use when limiting is applied.
message:    Response content to return when limiting is applied.

If you're planning to put all limited views into the one realm, you don't need to define RATED_REALMS - the defaults will be used instead.

Assign Realms

There are three ways to apply rate limits. Either decorate the view directly, add a realm with the same url pattern name, or map the url pattern name to a realm.

You can add mark a view as in the default realm simply:

from rated.decorators import rate_limit

@rate_limit
def myview(...)

To add it to a specific realm:

@rated_realm(realm='other')
def myview(...)

Settings

RATED_DEFAULT_LIMIT:

Limit of how many requests an individual client is permitted per hour.
Default: 100

RATED_RESPONSE_CODE:

HTTP Status code to return when a request is limited.
Default: 429

RATED_RESPONSE_MESSAGE:

Content to include in response when a request is limited.
Default: ''

RATED_REALMS:

A dict of config dicts.
The keys are realm names.
The values are dicts containing overrides for:
- 'limit'
- 'timeout'
- 'allowed'
- 'code'
- 'message'

Default: {}

RATED_REDIS:

Redis config settings.
These will be passed directly to create a `redis.ConnectionPool` instance.

RATED_DEFAULT_ALLOWED:

A list of IPs which are exempt from rate limiting.

About

A rate limiting decorator for Django

License:Other

Languages

Language:Python 100.0%