crexi-dev · widewise · Mar 8, 2023 · Jun 19, 2024
diff --git a/RateLimiter.Tests/RateLimitValidatorFactoryTests.cs b/RateLimiter.Tests/RateLimitValidatorFactoryTests.cs
@@ -0,0 +1,94 @@
+using System;
+using FluentAssertions;
+using Microsoft.Extensions.Options;
+using Moq;
+using NUnit.Framework;
+using RateLimiter.Models;
+using RateLimiter.Services;
+
+namespace RateLimiter.Tests;
+
+public class RateLimitValidatorFactoryTests
+{
+    private RateLimitValidatorFactory _factory;
+
+    [SetUp]
+    public void Init()
+    {
+        var settingsMock = new Mock<IOptions<RateLimitSettings>>();
+        settingsMock.Setup(x => x.Value).Returns(new RateLimitSettings
+        {
+            CommonRule = new RateLimitRule(),
+            Regions = new[]
+            {
+                new RateLimitRule
+                {
+                    RegionKey = "EU",
+                    Type = RateLimitRuleType.Timespan,
+                    WindowSizeInSeconds = 5
+                },
+                new RateLimitRule
+                {
+                    RegionKey = "EU-failed",
+                    Type = RateLimitRuleType.Timespan,
+                    WindowSizeInSeconds = null
+                },
+                new RateLimitRule
+                {
+                    RegionKey = "US",
+                    Type = RateLimitRuleType.RequestsPerTimespan,
+                    WindowSizeInSeconds = 5,
+                    PermitLimit = 5
+                },
+                new RateLimitRule
+                {
+                    RegionKey = "US-failed",
+                    Type = RateLimitRuleType.RequestsPerTimespan,
+                    WindowSizeInSeconds = null,
+                    PermitLimit = null
+                },
+            }
+        });
+        _factory = new RateLimitValidatorFactory(settingsMock.Object);
+    }
+
+    [Test]
+    public void EUCorrect_Create_ShouldReturnTimespanValidator()
+    {
+        //Act
+        var validator = _factory.Create("EU");
+
+        //Assert
+        validator.Should().BeOfType<TimespanRateValidator>();
+    }
+
+    [Test]
+    public void EUFailed_Create_ShouldThrowArgumentNullException()
+    {
+        //Act
+        var action = () => _factory.Create("EU-failed");
+
+        //Assert
+        action.Should().Throw<ArgumentNullException>();
+    }
+
+    [Test]
+    public void USCorrect_Create_ShouldReturnWindowLimitValidator()
+    {
+        //Act
+        var validator = _factory.Create("US");
+
+        //Assert
+        validator.Should().BeOfType<WindowLimitRateValidator>();
+    }
+
+    [Test]
+    public void USFailed_Create_ShouldThrowArgumentNullException()
+    {
+        //Act
+        var action = () => _factory.Create("US-failed");
+
+        //Assert
+        action.Should().Throw<ArgumentNullException>();
+    }
+}
diff --git a/RateLimiter.Tests/RateLimiter.Tests.csproj b/RateLimiter.Tests/RateLimiter.Tests.csproj
@@ -8,7 +8,9 @@
     <ProjectReference Include="..\RateLimiter\RateLimiter.csproj" />
   </ItemGroup>
   <ItemGroup>
+    <PackageReference Include="FluentAssertions" Version="6.12.0" />
     <PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.5.0" />
+    <PackageReference Include="Moq" Version="4.20.70" />
     <PackageReference Include="NUnit" Version="3.13.3" />
     <PackageReference Include="NUnit3TestAdapter" Version="4.4.2" />
   </ItemGroup>

diff --git a/RateLimiter.Tests/RateLimiterTest.cs b/RateLimiter.Tests/RateLimiterTest.cs
diff --git a/RateLimiter.Tests/TimespanRateValidatorTests.cs b/RateLimiter.Tests/TimespanRateValidatorTests.cs
@@ -0,0 +1,43 @@
+using System;
+using FluentAssertions;
+using NUnit.Framework;
+using RateLimiter.Models;
+using RateLimiter.Services;
+
+namespace RateLimiter.Tests;
+
+public class TimespanRateValidatorTests
+{
+    private TimespanRateValidator _validator;
+    [SetUp]
+    public void Init()
+    {
+        _validator = new TimespanRateValidator(TimeSpan.FromSeconds(5));
+    }
+
+    [Test]
+    public void LastVisitLessTimespan_Validate_ShouldReturnTrue()
+    {
+        //Arrange
+        var lastVisit = DateTime.UtcNow.AddSeconds(-10);
+
+        //Act
+        var result = _validator.Validate(new ClientData { LastVisit = lastVisit });
+
+        //Assert
+        result.Result.Should().BeTrue();
+    }
+
+    [Test]
+    public void LastVisitGreaterTimespan_Validate_ShouldReturnFalse()
+    {
+        //Arrange
+        var lastVisit = DateTime.UtcNow.AddSeconds(-3);
+
+        //Act
+        var result = _validator.Validate(new ClientData { LastVisit = lastVisit });
+
+        //Assert
+        result.Result.Should().BeFalse();
+    }
+}
diff --git a/RateLimiter.Tests/WindowLimitRateValidatorTests.cs b/RateLimiter.Tests/WindowLimitRateValidatorTests.cs
@@ -0,0 +1,58 @@
+using System;
+using FluentAssertions;
+using NUnit.Framework;
+using RateLimiter.Models;
+using RateLimiter.Services;
+
+namespace RateLimiter.Tests;
+
+public class WindowLimitRateValidatorTests
+{
+    private WindowLimitRateValidator _validator;
+    [SetUp]
+    public void Init()
+    {
+        _validator = new WindowLimitRateValidator(TimeSpan.FromSeconds(5), 5);
+    }
+
+    [Test]
+    public void LastVisitLessTimespanAndVisitCountsLessLimit_Validate_ShouldReturnTrue()
+    {
+        //Arrange
+        var lastVisit = DateTime.UtcNow.AddSeconds(-10);
+
+        //Act
+        var result = _validator.Validate(new ClientData { LastVisit = lastVisit, VisitCounts = 4});
+
+        //Assert
+        result.Result.Should().BeTrue();
+    }
+
+    [Test]
+    public void LastVisitGreaterTimespanAndVisitCountsLessLimit_Validate_ShouldReturnTrue()
+    {
+        //Arrange
+        var lastVisit = DateTime.UtcNow.AddSeconds(-3);
+
+        //Act
+        var result = _validator.Validate(new ClientData { LastVisit = lastVisit, VisitCounts = 4});
+
+        //Assert
+        result.Result.Should().BeTrue();
+        result.VisitCounts.Should().Be(5);
+    }
+
+    [Test]
+    public void LastVisitGreaterTimespanAndVisitCountsEqualsLimit_Validate_ShouldReturnTrue()
+    {
+        //Arrange
+        var lastVisit = DateTime.UtcNow.AddSeconds(-3);
+
+        //Act
+        var result = _validator.Validate(new ClientData { LastVisit = lastVisit, VisitCounts = 5});
+
+        //Assert
+        result.Result.Should().BeFalse();
+        result.VisitCounts.Should().Be(5);
+    }
+}
diff --git a/RateLimiter/Extensions/ServiceCollectionExtensions.cs b/RateLimiter/Extensions/ServiceCollectionExtensions.cs
@@ -0,0 +1,25 @@
+using System.Diagnostics.CodeAnalysis;
+using Microsoft.AspNetCore.Builder;
+using Microsoft.Extensions.Configuration;
+using Microsoft.Extensions.DependencyInjection;
+using RateLimiter.Models;
+using RateLimiter.Services;
+
+namespace RateLimiter.Extensions;
+
+[ExcludeFromCodeCoverage]
+public static class ServiceCollectionExtensions
+{
+    public static IServiceCollection AddRateLimit(this IServiceCollection services, IConfiguration configuration)
+    {
+        services.Configure<RateLimitSettings>(configuration.GetSection(RateLimitSettings.Section));
+        services.AddTransient<IRateLimitValidatorFactory, RateLimitValidatorFactory>();
+
+        return services;
+    }
+
+    public static IApplicationBuilder UseRateLimit(this IApplicationBuilder builder)
+    {
+        return builder.UseMiddleware<RateLimitingMiddleware>();
+    }
+}
diff --git a/RateLimiter/Models/ClientData.cs b/RateLimiter/Models/ClientData.cs
@@ -0,0 +1,15 @@
+using System;
+
+namespace RateLimiter.Models;
+
+public struct ClientData
+{
+    public DateTime LastVisit { get; set; }
+    public int VisitCounts { get; set; }
+
+    public static ClientData Empty => new()
+    {
+        LastVisit = DateTime.UtcNow,
+        VisitCounts = 0
+    };
+}
diff --git a/RateLimiter/Models/RateLimitRule.cs b/RateLimiter/Models/RateLimitRule.cs
@@ -0,0 +1,9 @@
+namespace RateLimiter.Models;
+
+public class RateLimitRule
+{
+    public string? RegionKey { get; set; }
+    public RateLimitRuleType Type { get; set; }
+    public int? PermitLimit  { get; set; }
+    public int? WindowSizeInSeconds { get; set; }
+}
diff --git a/RateLimiter/Models/RateLimitRuleType.cs b/RateLimiter/Models/RateLimitRuleType.cs
@@ -0,0 +1,7 @@
+namespace RateLimiter.Models;
+
+public enum RateLimitRuleType
+{
+    RequestsPerTimespan,
+    Timespan
+}
diff --git a/RateLimiter/Models/RateLimitSettings.cs b/RateLimiter/Models/RateLimitSettings.cs
@@ -0,0 +1,10 @@
+using System.Collections.Generic;
+
+namespace RateLimiter.Models;
+
+public class RateLimitSettings
+{
+    public static string Section => nameof(RateLimitSettings);
+    public RateLimitRule CommonRule { get; set; } = null!;
+    public RateLimitRule[] Regions { get; set; } = null!;
+}
diff --git a/RateLimiter/Models/RateLimitValidationResult.cs b/RateLimiter/Models/RateLimitValidationResult.cs
@@ -0,0 +1,5 @@
+namespace RateLimiter.Models;
+
+public record RateLimitValidationResult(
+    bool Result,
+    int? VisitCounts = null);
diff --git a/RateLimiter/RateLimiter.csproj b/RateLimiter/RateLimiter.csproj
@@ -4,4 +4,10 @@
     <LangVersion>latest</LangVersion>
     <Nullable>enable</Nullable>
   </PropertyGroup>
+  <ItemGroup>
+    <PackageReference Include="Microsoft.AspNetCore.Http" Version="2.2.2" />
+    <PackageReference Include="Microsoft.Extensions.Configuration" Version="8.0.0" />
+    <PackageReference Include="Microsoft.Extensions.Logging" Version="8.0.0" />
+    <PackageReference Include="Microsoft.Extensions.Options.ConfigurationExtensions" Version="8.0.0" />
+  </ItemGroup>
 </Project>  
diff --git a/RateLimiter/RateLimitingMiddleware.cs b/RateLimiter/RateLimitingMiddleware.cs
@@ -0,0 +1,52 @@
+using System.Collections.Concurrent;
+using System.Linq;
+using System.Security.Claims;
+using System.Threading.Tasks;
+using Microsoft.AspNetCore.Http;
+using RateLimiter.Models;
+using RateLimiter.Services;
+
+namespace RateLimiter;
+
+public class RateLimitingMiddleware
+{
+    private static readonly ConcurrentDictionary<string, ClientData> Clients =  new();
+    private static readonly object SyncLock = new();
+    private readonly RequestDelegate _next;
+    public RateLimitingMiddleware(RequestDelegate next)
+    {
+        _next = next;
+    }
+
+    public async Task Invoke(HttpContext context, IRateLimitValidatorFactory rateLimitValidatorFactory)
+    {
+        var clientId = context.Connection.RemoteIpAddress.ToString();
+        var regionKey = GetRegionKey(context.User);
+        lock (SyncLock)
+        {
+            var clientData = Clients.GetOrAdd(clientId, ClientData.Empty);
+            var validator = rateLimitValidatorFactory.Create(regionKey);
+            var result = validator.Validate(clientData);
+            if (!result.Result)
+            {
+                context.Response.StatusCode = StatusCodes.Status429TooManyRequests;
+                return;
+            }
+
+            if (result.VisitCounts.HasValue)
+            {
+                clientData.VisitCounts = result.VisitCounts.Value;
+            }
+
+            Clients[clientId] = clientData;
+        }
+
+        await _next(context);
+    }
+
+    private static string? GetRegionKey(ClaimsPrincipal user)
+    {
+        var regionKeyClaim = user.Claims.FirstOrDefault(c => c.Type == "RegionKey");
+        return regionKeyClaim?.Value;
+    }
+}
diff --git a/RateLimiter/Services/IRateLimitValidator.cs b/RateLimiter/Services/IRateLimitValidator.cs
@@ -0,0 +1,8 @@
+using RateLimiter.Models;
+
+namespace RateLimiter.Services;
+
+public interface IRateLimitValidator
+{
+    RateLimitValidationResult Validate(ClientData data);
+}