sjs/rack-attack
1
0
Fork 0
mirror of https://github.com/samsonjs/rack-attack.git synced 2026-04-27 15:07:41 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge pull request #354 from grzuy/redis_cache_store_pooled

Browse source 
Pooled RedisCacheStore as a backend store
This commit is contained in:
Gonzalo Rodriguez 2018-06-20 19:38:34 -03:00 committed by GitHub
commit 8969d16aca
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 51 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

17
lib/rack/attack/store_proxy/redis_cache_store_proxy.rb
View file

@ -8,13 +8,18 @@ module Rack
defined?(::ActiveSupport::Cache::RedisCacheStore) && store.is_a?(::ActiveSupport::Cache::RedisCacheStore) defined?(::ActiveSupport::Cache::RedisCacheStore) && store.is_a?(::ActiveSupport::Cache::RedisCacheStore)
end end
def increment(name, amount, options = {}) def increment(name, amount = 1, options = {})
# Redis doesn't check expiration on the INCRBY command. See https://redis.io/commands/expire # RedisCacheStore#increment ignores options[:expires_in].
count = redis.pipelined do #
redis.incrby(name, amount) # So in order to workaround this we use RedisCacheStore#write (which sets expiration) to initialize
redis.expire(name, options[:expires_in]) if options[:expires_in] # the counter. After that we continue using the original RedisCacheStore#increment.
if options[:expires_in] && !read(name)
write(name, amount, options)
1
else
super
end end
count.first
end end
def read(name, options = {}) def read(name, options = {})

40
spec/acceptance/stores/redis_cache_store_pooled_spec.rb Normal file
View file

@ -0,0 +1,40 @@
require_relative "../../spec_helper"
require_relative "../../support/cache_store_helper"
require "timecop"
if ActiveSupport.version >= Gem::Version.new("5.2.0")
describe "RedisCacheStore (pooled) as a cache backend" do
before do
Rack::Attack.cache.store = ActiveSupport::Cache::RedisCacheStore.new(pool_size: 2)
end
after do
Rack::Attack.cache.store.clear
end
it_works_for_cache_backed_features
it "doesn't leak keys" do
Rack::Attack.throttle("by ip", limit: 1, period: 1) do |request|
request.ip
end
key = nil
# Freeze time during these statement to be sure that the key used by rack attack is the same
# we pre-calculate in local variable `key`
Timecop.freeze do
key = "rack::attack:#{Time.now.to_i}:by ip:1.2.3.4"
get "/", {}, "REMOTE_ADDR" => "1.2.3.4"
end
assert Rack::Attack.cache.store.fetch(key)
sleep 2.1
assert_nil Rack::Attack.cache.store.fetch(key)
end
end
end