feat(rate_limiter): implemented rate limiter for apis

Author: prinzpiuz

go.mod

@@ -7,6 +7,14 @@ require (
 	github.com/mattn/go-sqlite3 v1.14.22
 )
 
+require (
+	github.com/didip/tollbooth v4.0.2+incompatible // indirect
+	github.com/didip/tollbooth/v8 v8.0.1 // indirect
+	github.com/go-pkgz/expirable-cache/v3 v3.0.0 // indirect
+	github.com/patrickmn/go-cache v2.1.0+incompatible // indirect
+	golang.org/x/time v0.9.0 // indirect
+)
+
 require (
 	github.com/charmbracelet/x/ansi v0.1.4 // indirect
 	github.com/felixge/httpsnoop v1.0.3 // indirect

go.sum

@@ -4,8 +4,14 @@ github.com/charmbracelet/lipgloss v0.12.1 h1:/gmzszl+pedQpjCOH+wFkZr/N90Snz40J/N
 github.com/charmbracelet/lipgloss v0.12.1/go.mod h1:V2CiwIuhx9S1S1ZlADfOj9HmxeMAORuz5izHb0zGbB8=
 github.com/charmbracelet/x/ansi v0.1.4 h1:IEU3D6+dWwPSgZ6HBH+v6oUuZ/nVawMiWj5831KfiLM=
 github.com/charmbracelet/x/ansi v0.1.4/go.mod h1:dk73KoMTT5AX5BsX0KrqhsTqAnhZZoCBjs7dGWp4Ktw=
+github.com/didip/tollbooth v4.0.2+incompatible h1:fVSa33JzSz0hoh2NxpwZtksAzAgd7zjmGO20HCZtF4M=
+github.com/didip/tollbooth v4.0.2+incompatible/go.mod h1:A9b0665CE6l1KmzpDws2++elm/CsuWBMa5Jv4WY0PEY=
+github.com/didip/tollbooth/v8 v8.0.1 h1:VAAapTo1t4Bn6bbpcHjuovwoa9u3JH++wgjbpWv+rB8=
+github.com/didip/tollbooth/v8 v8.0.1/go.mod h1:oEd9l+ep373d7DmvKLc0a5gasPOev2mTewi6KPQBGJ4=
 github.com/felixge/httpsnoop v1.0.3 h1:s/nj+GCswXYzN5v2DpNMuMQYe+0DDwt5WVCU6CWBdXk=
 github.com/felixge/httpsnoop v1.0.3/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
+github.com/go-pkgz/expirable-cache/v3 v3.0.0 h1:u3/gcu3sabLYiTCevoRKv+WzjIn5oo7P8XtiXBeRDLw=
+github.com/go-pkgz/expirable-cache/v3 v3.0.0/go.mod h1:2OQiDyEGQalYecLWmXprm3maPXeVb5/6/X7yRPYTzec=
 github.com/golang-migrate/migrate v3.5.4+incompatible h1:R7OzwvCJTCgwapPCiX6DyBiu2czIUMDCB118gFTKTUA=
 github.com/golang-migrate/migrate v3.5.4+incompatible/go.mod h1:IsVUlFN5puWOmXrqjgGUfIRIbU7mr8oNBE2tyERd9Wk=
 github.com/gorilla/handlers v1.5.2 h1:cLTUSsNkgcwhgRqvCNmdbRWG0A3N4F+M2nWKdScwyEE=
@@ -22,6 +28,8 @@ github.com/mattn/go-sqlite3 v1.14.22 h1:2gZY6PC6kBnID23Tichd1K+Z0oS6nE/XwU+Vz/5o
 github.com/mattn/go-sqlite3 v1.14.22/go.mod h1:Uh1q+B4BYcTPb+yiD3kU8Ct7aC0hY9fxUwlHK0RXw+Y=
 github.com/muesli/termenv v0.15.2 h1:GohcuySI0QmI3wN8Ok9PtKGkgkFIk7y6Vpb5PvrY+Wo=
 github.com/muesli/termenv v0.15.2/go.mod h1:Epx+iuz8sNs7mNKhxzH4fWXGNpZwUaJKRS1noLXviQ8=
+github.com/patrickmn/go-cache v2.1.0+incompatible h1:HRMgzkcYKYpi3C8ajMPV8OFXaaRUnok+kx1WdO15EQc=
+github.com/patrickmn/go-cache v2.1.0+incompatible/go.mod h1:3Qf8kWWT7OJRJbdiICTKqZju1ZixQ/KpMGzzAfe6+WQ=
 github.com/rivo/uniseg v0.2.0/go.mod h1:J6wj4VEh+S6ZtnVlnTBMWIodfgj8LQOQFoIToxlJtxc=
 github.com/rivo/uniseg v0.4.7 h1:WUdvkW8uEhrYfLC4ZzdpI2ztxP1I582+49Oc5Mq64VQ=
 github.com/rivo/uniseg v0.4.7/go.mod h1:FN3SvrM+Zdj16jyLfmOkMNblXMcoc8DfTHruCPUcx88=
@@ -30,3 +38,5 @@ github.com/rs/cors v1.11.1/go.mod h1:XyqrcTp5zjWr1wsJ8PIRZssZ8b/WMcMf71DJnit4EMU
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.19.0 h1:q5f1RH2jigJ1MoAWp2KTp3gm5zAGFUTarQZ5U386+4o=
 golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/time v0.9.0 h1:EsRrnYcQiGH+5FfbgvV4AP7qEZstoyrHB0DzarOQ4ZY=
+golang.org/x/time v0.9.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=

src/server/handlers/clap_counter.go

@@ -111,6 +111,7 @@ func GetClaps(w http.ResponseWriter, r *http.Request) {
 	if clapCounter.Page == "" {
 		err := decode_request(r, w, &clapCounter)
 		if err != nil {
+			log.Printf("Error decoding request: %v", err)
 			return
 		}
 	}
@@ -123,9 +124,9 @@ func GetClaps(w http.ResponseWriter, r *http.Request) {
 	if continue_counting {
 		likes := get_likes(r, clapCounter)
 		switch r.Method {
-		case "GET":
+		case http.MethodGet:
 			clapCounter.SetClapCounter(clapCounter.URL, ClapCount, likes.Count, true)
-		case "POST":
+		case http.MethodPost:
 			content_type_err := check_for_request_content_type(w, r)
 			if content_type_err != nil {
 				return
@@ -152,6 +153,7 @@ func GetClaps(w http.ResponseWriter, r *http.Request) {
 		http.Error(w, err.Error(), http.StatusInternalServerError)
 		return
 	}
+	w.Header().Set("Content-Type", "application/json")
 	_, err = w.Write(jsonData)
 	if err != nil {
 		log.Printf("Error writing response: %v", err)

src/server/handlers/tests/clap_counter_test.go

@@ -0,0 +1,115 @@
+package handlers_test
+
+// import (
+// 	"BloTils/src/server/handlers"
+// 	"encoding/json"
+// 	"net/http"
+// 	"net/http/httptest"
+// 	"strings"
+// 	"testing"
+// )
+
+// func TestGetClaps(t *testing.T) {
+// 	tests := []struct {
+// 		name           string
+// 		method         string
+// 		url            string
+// 		referer        string
+// 		contentType    string
+// 		expectedStatus int
+// 		expectedCount  int
+// 		expectedOK     bool
+// 	}{
+// 		{
+// 			name:           "GET request success",
+// 			method:         "GET",
+// 			url:            "/claps",
+// 			referer:        "http://example.com/page",
+// 			contentType:    "application/json",
+// 			expectedStatus: http.StatusOK,
+// 			expectedCount:  0,
+// 			expectedOK:     true,
+// 		},
+// 		{
+// 			name:           "POST request invalid content type",
+// 			method:         "POST",
+// 			url:            "/claps",
+// 			referer:        "http://example.com/page",
+// 			contentType:    "text/plain",
+// 			expectedStatus: http.StatusUnsupportedMediaType,
+// 			expectedCount:  0,
+// 			expectedOK:     false,
+// 		},
+// 		{
+// 			name:           "Invalid HTTP method",
+// 			method:         "PUT",
+// 			url:            "/claps",
+// 			referer:        "http://example.com/page",
+// 			contentType:    "application/json",
+// 			expectedStatus: http.StatusMethodNotAllowed,
+// 			expectedCount:  0,
+// 			expectedOK:     false,
+// 		},
+// 		{
+// 			name:           "Missing referer",
+// 			method:         "GET",
+// 			url:            "/claps",
+// 			referer:        "",
+// 			contentType:    "application/json",
+// 			expectedStatus: http.StatusForbidden,
+// 			expectedCount:  0,
+// 			expectedOK:     false,
+// 		},
+// 	}
+
+// 	for _, tt := range tests {
+// 		t.Run(tt.name, func(t *testing.T) {
+// 			req := httptest.NewRequest(tt.method, tt.url, nil)
+// 			req.Header.Set("Content-Type", tt.contentType)
+// 			req.Header.Set("Referer", tt.referer)
+
+// 			w := httptest.NewRecorder()
+// 			handlers.GetClaps(w, req)
+
+// 			if w.Code != tt.expectedStatus {
+// 				t.Errorf("expected status %d, got %d", tt.expectedStatus, w.Code)
+// 			}
+
+// 			if w.Code == http.StatusOK {
+// 				var response handlers.ClapCounter
+// 				err := json.NewDecoder(w.Body).Decode(&response)
+// 				if err != nil {
+// 					t.Fatalf("failed to decode response: %v", err)
+// 				}
+
+// 				if response.Count != tt.expectedCount {
+// 					t.Errorf("expected count %d, got %d", tt.expectedCount, response.Count)
+// 				}
+
+// 			}
+// 		})
+// 	}
+// }
+
+// func TestGetClapsWithBody(t *testing.T) {
+// 	body := strings.NewReader(`{"URL": "http://example.com", "Page": "/test"}`)
+// 	req := httptest.NewRequest(http.MethodPost, "/claps", body)
+// 	req.Header.Set("Content-Type", "application/json")
+
+// 	w := httptest.NewRecorder()
+// 	handlers.GetClaps(w, req)
+
+// 	if w.Code != http.StatusOK {
+// 		t.Errorf("expected status 200, got %d", w.Code)
+// 	}
+
+// 	var response handlers.ClapCounter
+// 	err := json.NewDecoder(w.Body).Decode(&response)
+// 	if err != nil {
+// 		t.Fatalf("failed to decode response: %v", err)
+// 	}
+
+// 	if response.URL != "http://example.com" {
+// 		t.Errorf("expected URL http://example.com, got %s", response.URL)
+// 	}
+// }

src/server/routes/routes.go

@@ -6,7 +6,10 @@ import (
 	local_handlers "BloTils/src/server/handlers"
 	"net/http"
 	"os"
+	"time"
 
+	"github.com/didip/tollbooth/v8"
+	"github.com/didip/tollbooth/v8/limiter"
 	"github.com/gorilla/handlers"
 )
 
@@ -21,11 +24,26 @@ func setRoutes(server *server.Server, path string, handler http.HandlerFunc, met
 // It calls setRoutes to add each route, specifying the path, handler function,
 // and HTTP methods allowed.
 func RegisterRoutes(server *server.Server) {
+	lmt := init_rate_limiter()
 	setRoutes(server, "/", local_handlers.IndexPage, http.MethodGet)
 	setRoutes(server, "/clap_counter", local_handlers.ClapCounterPage, http.MethodGet)
 	// API routes
 	setRoutes(server, "/api/v1/ping", local_handlers.Ping, http.MethodGet)
-	setRoutes(server, "/api/v1/count_like", local_handlers.GetClaps, http.MethodGet, http.MethodPost)
+	setRoutes(server, "/api/v1/count_like", tollbooth.LimitFuncHandler(lmt, local_handlers.GetClaps).ServeHTTP, http.MethodGet, http.MethodPost)
+}
+
+// init_rate_limiter creates a new rate limiter with a limit of 1 request per hour.
+// It sets the IP lookup method to use the RemoteAddr field, and configures the
+// error message and content type to be returned when the limit is reached.
+func init_rate_limiter() *limiter.Limiter {
+	var lmt = tollbooth.NewLimiter(1, &limiter.ExpirableOptions{DefaultExpirationTTL: time.Hour})
+	lmt.SetIPLookup(limiter.IPLookup{
+		Name:           "RemoteAddr",
+		IndexFromRight: 0,
+	})
+	lmt.SetMessage("You have reached maximum request limit.")
+	lmt.SetMessageContentType("application/json")
+	return lmt
 }
 
 // ServeStaticFiles registers a file server handler on the provided server to serve