This bundle provides simple rate limiting based on routes.
- Install bundle:
composer require fusonic/rate-limit-bundle
- Add RateLimitBundle to kernel:
Fusonic\RateLimitBundle\RateLimitBundle::class => ['prod' => true],- Add cache config
framework:
cache:
app: cache.adapter.array- Add rate limit config
fusonic_rate_limit:
cache_provider: "cache.app"
enabled: true
routes:
foo:
limit: 2
period: 3600The bundle makes use of Symfony's event system. Therefore some events exist under Fusonic/RateLimitBundle/Event:
- RateLimitAttemptsUpdatedEvent will be emitted when a request for a rate limited route is detected.
- RateLimitExceededEvent will be emitted when a route limit is exceeded.
- RateLimitResetAttemptsEvent can be used to reset the state for a specific route (e.g. after a successful login)
Create an event listener or subscriber:
<?php
namespace AppBundle\EventListener;
use Fusonic\RateLimitBundle\Event\RateLimitEvents;
use Fusonic\RateLimitBundle\Event\RateLimitExceededEvent;
use Symfony\Component\EventDispatcher\EventSubscriberInterface;
use Symfony\Component\HttpKernel\Exception\TooManyRequestsHttpException;
final class RateLimitSubscriber implements EventSubscriberInterface
{
public static function getSubscribedEvents(): array
{
return [
RateLimitEvents::ROUTE_LIMIT_EXCEEDED => 'onLimitExceeded',
];
}
public function onLimitExceeded(RateLimitExceededEvent $event): void
{
$config = $event->getRouteLimitConfig();
$message = 'You sent too many requests for this endpoint.';
throw new TooManyRequestsHttpException($config->getPeriod(), $message);
}
}And register it as service.
app.rate_limit_subscriber:
class: AppBundle\EventListener\RateLimitSubscriber
tags:
- { name: kernel.event_subscriber }
Run the the tests by executing:
vendor/bin/simple-phpunit