Production-ready rate limiting library for Python with multiple algorithms, backends, and framework integrations
Project description
Ratelink
Production-ready rate limiting for Python - Multiple algorithms, backends, and framework integrations with full observability.
Features
- 6 Algorithms: Token Bucket, Leaky Bucket, Fixed Window, Sliding Window, Sliding Window Log, GCRA
- 6+ Backends: Memory, Redis, PostgreSQL, DynamoDB, MongoDB, Multi-Region
- 4 Framework Integrations: FastAPI, Flask, Django, aiohttp
- Full Observability: Prometheus, StatsD, audit logging, distributed tracing
- Complete Testing Suite: Mocks, time machine, fixtures, load testing
- Advanced Features: Priority limits, quota pooling, adaptive limits, hierarchical limits
- Production Ready: Type-safe, tested (>90% coverage), documented
Quick Start
Installation
pip install ratelink
Basic Usage
from ratelink import RateLimiter
# Create a rate limiter
limiter = RateLimiter(
algorithm="token_bucket",
limit=100, # 100 requests
window=60, # per 60 seconds
)
# Check if request is allowed
allowed, state = limiter.check("user:123")
if allowed:
# Process request
print(f"✅ Allowed! {state['remaining']} remaining")
else:
# Reject request
print(f"❌ Rate limited! Retry after {state['retry_after']}s")
With FastAPI
from fastapi import FastAPI
from ratelink import RateLimiter
from ratelink.integration.fastapi import FastAPIRateLimitMiddleware
app = FastAPI()
limiter = RateLimiter(algorithm="token_bucket", limit=100, window=60)
app.add_middleware(
FastAPIRateLimitMiddleware,
limiter=limiter
)
@app.get("/api/data")
async def get_data():
return {"data": [...]}
Requests automatically include rate limit headers:
X-RateLimit-Limit: 100
X-RateLimit-Remaining: 99
X-RateLimit-Reset: 59
With Redis (Distributed)
import redis
from ratelink import RateLimiter
from ratelink.backends.redis import RedisBackend
client = redis.Redis(host='localhost', port=6379)
backend = RedisBackend(client=client)
limiter = RateLimiter(
algorithm="sliding_window",
limit=1000,
window=3600,
backend=backend
)
Comparison
| Feature | Ratelink | slowapi | flask-limiter | Other libs |
|---|---|---|---|---|
| Algorithms | 6 | 1 | 1-2 | 1 |
| Backends | 6+ | Memory | Memory/Redis | Memory |
| Frameworks | 4+ | FastAPI | Flask | Varies |
| Observability | Full suite | None | Basic | None |
| Testing Tools | Complete | None | None | None |
| Advanced Features | ✅ | ❌ | ❌ | ❌ |
| Type Safety | 100% | Partial | No | Varies |
| Coverage | >90% | ~60% | ~70% | Varies |
Algorithms
| Algorithm | Best For | Pros | Cons |
|---|---|---|---|
| Token Bucket | General purpose, API rate limiting | Allows bursts, smooth | Requires token tracking |
| Leaky Bucket | Traffic shaping, steady flow | Smooth output | No bursts |
| Fixed Window | Simple counting, analytics | Simple, fast | Boundary issues |
| Sliding Window | Distributed systems | No boundary issues | More complex |
| Sliding Window Log | Precision timing | Exact tracking | Higher memory |
| GCRA | Telecom, strict timing | Standards compliant | Complex |
Backends
| Backend | Best For | Latency | Distributed |
|---|---|---|---|
| Memory | Development, single server | <1μs | ❌ |
| Redis | Production, distributed | ~1ms | ✅ |
| PostgreSQL | Existing Postgres stack | ~2-5ms | ✅ |
| DynamoDB | AWS, serverless | ~10-50ms | ✅ |
| MongoDB | Existing Mongo stack | ~2-10ms | ✅ |
| Multi-Region | Global apps | Varies | ✅ |
Framework Support
FastAPI
from ratelink.integration.fastapi import FastAPIRateLimitMiddleware, rate_limit
Flask
from ratelink.integration.flask import FlaskRateLimiter
Django
from ratelink.integration.django import DjangoRateLimitMiddleware
aiohttp
from ratelink.integration.aiohttp import aiohttp_rate_limit_middleware
Observability
Prometheus Metrics
from ratelink.observability.metrics import MetricsCollector
from ratelink.integrations.prometheus import PrometheusExporter
metrics = PrometheusExporter()
limiter = RateLimiter(..., metrics_collector=metrics)
# Expose metrics endpoint
@app.get("/metrics")
def metrics_endpoint():
return Response(metrics.render(), media_type="text/plain")
Audit Logging
from ratelink.observability.logging import AuditLogger
logger = AuditLogger(sink=open("audit.log", "a"), json=True)
limiter = RateLimiter(..., audit_logger=logger)
Testing
from ratelink.testing import MockRateLimiter, TimeMachine, assert_allowed
# Mock for unit tests
limiter = MockRateLimiter(mode='always_allow')
# Time control for deterministic tests
tm = TimeMachine()
tm.freeze()
tm.advance(60) # Advance 60 seconds instantly
# High-level assertions
assert_allowed(limiter, 'user:123', times=5)
Documentation
- Getting Started - Installation and basic usage
- API Reference - Complete API documentation
- Guides - How-to guides and best practices
- Examples - Real-world examples
- Benchmarks - Performance comparisons
Advanced Features
Priority-Based Rate Limiting
from ratelink.advanced.priority import PriorityRateLimiter
limiter = PriorityRateLimiter(limits={
"critical": {"limit": 1000, "window": 60},
"normal": {"limit": 100, "window": 60},
"low": {"limit": 10, "window": 60},
})
Quota Pooling
from ratelink.advanced.quota import QuotaPool
pool = QuotaPool(total_quota=10000, window=3600)
pool.allocate("user:123", quota=100)
Adaptive Limits
from ratelink.advanced.adaptive import AdaptiveRateLimiter
limiter = AdaptiveRateLimiter(
base_limit=100,
adjust_on_error_rate=True,
max_limit=500,
min_limit=10
)
Installation Options
# Basic
pip install ratelink
# With Redis
pip install ratelink[redis]
# With all backends
pip install ratelink[backends]
# With web frameworks
pip install ratelink[frameworks]
# With observability
pip install ratelink[observability]
# Everything
pip install ratelink[all]
🔧 Configuration
Environment Variables
RATELINK_ALGORITHM=token_bucket
RATELINK_LIMIT=100
RATELINK_WINDOW=60
RATELINK_BACKEND=redis
REDIS_URL=redis://localhost:6379
YAML Configuration
rate_limiting:
algorithm: token_bucket
limit: 100
window: 60
backend:
type: redis
url: redis://localhost:6379
Real-World Examples
Check out examples/ for complete, runnable applications:
- SaaS Tiers - Free/Pro/Enterprise rate limits
- API Gateway - Multi-tenant API gateway
- Webhook Processor - Per-customer webhook limits
- IoT Ingestion - Device rate limiting
- Real-time Apps - WebSocket rate limiting
Contributing
We welcome contributions! See CONTRIBUTING.md for guidelines.
Development Setup
# Clone the repo
git clone https://github.com/your-org/ratelink.git
cd ratelink
# Create virtual environment
python -m venv venv
source venv/bin/activate # On Windows: venv\Scripts\activate
# Install with dev dependencies
pip install -e ".[dev,all]"
# Run tests
pytest
# Run linting
black .
flake8
mypy ratelink
License
MIT License - see LICENSE file for details.
Star History
If you find Ratelink useful, please consider giving it a star on GitHub!
Acknowledgments
Built with inspiration from:
With improvements in architecture, features, and production-readiness.
Made with ❤️ for the Python community
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
ratelink-1.0.1.tar.gz
(59.0 kB
view details)
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
ratelink-1.0.1-py3-none-any.whl
(67.2 kB
view details)
File details
Details for the file ratelink-1.0.1.tar.gz.
File metadata
- Download URL: ratelink-1.0.1.tar.gz
- Upload date:
- Size: 59.0 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
6e63f5976e472662bf92146708b5b4778fef195417e37b0eec0300456e0504b7
|
|
| MD5 |
c0d2d3e24df559d77b2d9739a43b647d
|
|
| BLAKE2b-256 |
10015c5c3c0291803bf8432eccaee4236e35ffb8717247c1c3a7f5d82a27bd30
|
File details
Details for the file ratelink-1.0.1-py3-none-any.whl.
File metadata
- Download URL: ratelink-1.0.1-py3-none-any.whl
- Upload date:
- Size: 67.2 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
a12d7eb2a795bab439a437f2037b35acf146fdf7b83c31b375867148a025bdec
|
|
| MD5 |
6935d2f7f382f01842103899e2293adf
|
|
| BLAKE2b-256 |
2cb4bddb7d111265d85092adf9715804b1512b753ff38d3f5314be3945c7a260
|
