export interface IRateLimiterRes { msBeforeNext?: number; remainingPoints?: number; consumedPoints?: number; isFirstInDuration?: boolean; } export class RateLimiterRes { constructor( remainingPoints?: number, msBeforeNext?: number, consumedPoints?: number, isFirstInDuration?: boolean ); readonly msBeforeNext: number; readonly remainingPoints: number; readonly consumedPoints: number; readonly isFirstInDuration: boolean; toString(): string; toJSON(): { remainingPoints: number; msBeforeNext: number; consumedPoints: number; isFirstInDuration: boolean; }; } export class RateLimiterCompatibleAbstract { readonly keyPrefix: string; blockDuration: number; execEvenly: boolean; consume( key: string | number, pointsToConsume?: number, options?: { [key: string]: any } ): Promise; penalty( key: string | number, points?: number, options?: { [key: string]: any } ): Promise; reward( key: string | number, points?: number, options?: { [key: string]: any } ): Promise; get( key: string | number, options?: { [key: string]: any } ): Promise; set( key: string | number, points: number, secDuration: number, options?: { [key: string]: any } ): Promise; block( key: string | number, secDuration: number, options?: { [key: string]: any } ): Promise; delete( key: string | number, options?: { [key: string]: any } ): Promise; } export type RateLimiterLike = RateLimiterAbstract | RateLimiterCompatibleAbstract; export class RateLimiterAbstract { constructor(opts: IRateLimiterOptions); /** * Maximum number of points can be consumed over duration. Limiter compares this number with * number of consumed points by key to decide if an operation should be rejected or resolved. */ points: number; /** * Number of seconds before consumed points are reset. * Keys never expire, if duration is 0. */ duration: number; /** * duration in milliseconds */ get msDuration(): number; /** * If positive number and consumed more than points in current duration, block for blockDuration * seconds. */ blockDuration: number; /** * blockDuration in milliseconds */ get msBlockDuration(): number; /** * Delay action to be executed evenly over duration First action in duration is executed without * delay. All next allowed actions in current duration are delayed by formula * msBeforeDurationEnd / (remainingPoints + 2) with minimum delay of duration * 1000 / points. * It allows to cut off load peaks similar way to Leaky Bucket. * * Note: it isn't recommended to use it for long duration and few points, as it may delay action * for too long with default execEvenlyMinDelayMs. */ execEvenly: boolean; /** * Sets minimum delay in milliseconds, when action is delayed with execEvenly */ execEvenlyMinDelayMs: number; /** * If you need to create several limiters for different purpose. * Set to empty string '', if keys should be stored without prefix. */ keyPrefix: string; /** * Returns internal key prefixed with keyPrefix option as it is saved in store. */ getKey(key: string | number): string; /** * Returns internal key without the keyPrefix. */ parseKey(rlKey: string): string; /** * @param key is usually IP address or some unique client id * @param pointsToConsume number of points consumed. default: 1 * @param options is object with additional settings: * - customDuration expire in seconds for this operation only overwrites limiter's duration. It doesn't work, if key already created. * @returns Returns Promise, which: * - `resolved` with `RateLimiterRes` when point(s) is consumed, so action can be done * - `rejected` only for store and database limiters if insuranceLimiter isn't setup: when some error happened, where reject reason `rejRes` is Error object * - `rejected` only for RateLimiterCluster if insuranceLimiter isn't setup: when timeoutMs exceeded, where reject reason `rejRes` is Error object * - `rejected` when there is no points to be consumed, where reject reason `rejRes` is `RateLimiterRes` object * - `rejected` when key is blocked (if block strategy is set up), where reject reason `rejRes` is `RateLimiterRes` object */ consume( key: string | number, pointsToConsume?: number, options?: { [key: string]: any } ): Promise; /** * Fine key by points number of points for one duration. * * Note: Depending on time penalty may go to next durations * * @returns Returns Promise, which: * - `resolved` with RateLimiterRes * - `rejected` only for database limiters if insuranceLimiter isn't setup: when some error happened, where reject reason `rejRes` is Error object * - `rejected` only for RateLimiterCluster if insuranceLimiter isn't setup: when timeoutMs exceeded, where reject reason `rejRes` is Error object */ penalty( key: string | number, points?: number, options?: { [key: string]: any } ): Promise; /** * Reward key by points number of points for one duration. * Note: Depending on time reward may go to next durations * @returns Promise, which: * - `resolved` with RateLimiterRes * - `rejected` only for database limiters if insuranceLimiter isn't setup: when some error happened, where reject reason `rejRes` is Error object * - `rejected` only for RateLimiterCluster if insuranceLimiter isn't setup: when timeoutMs exceeded, where reject reason `rejRes` is Error object */ reward( key: string | number, points?: number, options?: { [key: string]: any } ): Promise; /** * Get RateLimiterRes in current duration. It always returns RateLimiterRes.isFirstInDuration=false. * @param key is usually IP address or some unique client id * @param options * @returns Promise, which: * - `resolved` with RateLimiterRes if key is set * - `resolved` with null if key is NOT set or expired * - `rejected` only for database limiters if insuranceLimiter isn't setup: when some error happened, where reject reason `rejRes` is Error object * - `rejected` only for RateLimiterCluster if insuranceLimiter isn't setup: when timeoutMs exceeded, where reject reason `rejRes` is Error object */ get( key: string | number, options?: { [key: string]: any } ): Promise; /** * Set points to key for secDuration seconds. * Store it forever, if secDuration is 0. * @param key * @param points * @param secDuration * @param options * @returns Promise, which: * - `resolved` with RateLimiterRes * - `rejected` only for database limiters if insuranceLimiter isn't setup: when some error happened, where reject reason `rejRes` is Error object * - `rejected` only for RateLimiterCluster if insuranceLimiter isn't setup: when timeoutMs exceeded, where reject reason `rejRes` is Error object */ set( key: string | number, points: number, secDuration: number, options?: { [key: string]: any } ): Promise; /** * Block key by setting consumed points to points + 1 for secDuration seconds. * * It force updates expire, if there is already key. * * Blocked key never expires, if secDuration is 0. * @returns Promise, which: * - `resolved` with RateLimiterRes * - `rejected` only for database limiters if insuranceLimiter isn't setup: when some error happened, where reject reason `rejRes` is Error object * - `rejected` only for RateLimiterCluster if insuranceLimiter isn't setup: when timeoutMs exceeded, where reject reason `rejRes` is Error object */ block( key: string | number, secDuration: number, options?: { [key: string]: any } ): Promise; /** * Delete all data related to key. * * For example, previously blocked key is not blocked after delete as there is no data anymore. * @returns Promise, which: * - `resolved` with boolean, true if data is removed by key, false if there is no such key. * - `rejected` only for database limiters if insuranceLimiter isn't setup: when some error happened, where reject reason `rejRes` is Error object * - `rejected` only for RateLimiterCluster if insuranceLimiter isn't setup: when timeoutMs exceeded, where reject reason `rejRes` is Error object */ delete( key: string | number, options?: { [key: string]: any } ): Promise; } export class RateLimiterInsuredAbstract extends RateLimiterAbstract { constructor(opts: IRateLimiterOptions); } export class RateLimiterStoreAbstract extends RateLimiterInsuredAbstract { constructor(opts: IRateLimiterStoreOptions); /** * Cleanup keys blocked in current process memory */ deleteInMemoryBlockedAll(): void; } interface IRateLimiterOptions { keyPrefix?: string; points: number; duration: number; execEvenly?: boolean; execEvenlyMinDelayMs?: number; blockDuration?: number; insuranceLimiter?: RateLimiterLike; } interface IRateLimiterClusterOptions extends IRateLimiterOptions { timeoutMs?: number; } interface IRateLimiterStoreOptions extends IRateLimiterOptions { storeClient: any; storeType?: string; inMemoryBlockOnConsumed?: number; inMemoryBlockDuration?: number; insuranceLimiter?: RateLimiterLike; dbName?: string; tableName?: string; tableCreated?: boolean; } interface IRateLimiterStoreNoAutoExpiryOptions extends IRateLimiterStoreOptions { clearExpiredByTimeout?: boolean; } interface IRateLimiterStoreNoAutoExpiryOptionsAndSchema extends IRateLimiterStoreNoAutoExpiryOptions { schema: any; } interface IRateLimiterMongoOptions extends IRateLimiterStoreOptions { indexKeyPrefix?: { [key: string]: any; }; disableIndexesCreation?: boolean; } interface IRateLimiterPostgresOptions extends IRateLimiterStoreNoAutoExpiryOptions { schemaName?: string; } interface IRateLimiterRedisOptions extends IRateLimiterStoreOptions { rejectIfRedisNotReady?: boolean; useRedisPackage?: boolean; useRedis3AndLowerPackage?: boolean; customIncrTtlLuaScript?: string; } interface IRateLimiterValkeyOptions extends IRateLimiterStoreOptions { customIncrTtlLuaScript?: string; } interface ICallbackReady { (error?: Error): void; } interface IRLWrapperBlackAndWhiteOptions { limiter: RateLimiterLike; blackList?: string[] | number[]; whiteList?: string[] | number[]; isBlackListed?(key: any): boolean; isWhiteListed?(key: any): boolean; runActionAnyway?: boolean; } export class RateLimiterMemory extends RateLimiterAbstract { constructor(opts: IRateLimiterOptions); } export class RateLimiterCluster extends RateLimiterAbstract { constructor(opts: IRateLimiterClusterOptions); } export class RateLimiterClusterMaster { constructor(); } export class RateLimiterClusterMasterPM2 { constructor(pm2: any); } export class RateLimiterRedis extends RateLimiterStoreAbstract { constructor(opts: IRateLimiterRedisOptions); } export class RateLimiterRedisNonAtomic extends RateLimiterStoreAbstract { constructor(opts: IRateLimiterRedisOptions); } export class RateLimiterValkey extends RateLimiterStoreAbstract { constructor(opts: IRateLimiterValkeyOptions); } export interface IRateLimiterMongoFunctionOptions { attrs: { [key: string]: any }; } export class RateLimiterMongo extends RateLimiterStoreAbstract { constructor(opts: IRateLimiterMongoOptions); indexKeyPrefix(): Object; indexKeyPrefix(obj?: Object): void; createIndexes(): Promise; consume( key: string | number, pointsToConsume?: number, options?: IRateLimiterMongoFunctionOptions ): Promise; penalty( key: string | number, points?: number, options?: IRateLimiterMongoFunctionOptions ): Promise; reward( key: string | number, points?: number, options?: IRateLimiterMongoFunctionOptions ): Promise; block( key: string | number, secDuration: number, options?: IRateLimiterMongoFunctionOptions ): Promise; get( key: string | number, options?: IRateLimiterMongoFunctionOptions ): Promise; set( key: string | number, points: number, secDuration: number, options?: IRateLimiterMongoFunctionOptions ): Promise; delete( key: string | number, options?: IRateLimiterMongoFunctionOptions ): Promise; } export class RateLimiterMySQL extends RateLimiterStoreAbstract { constructor(opts: IRateLimiterStoreNoAutoExpiryOptions, cb?: ICallbackReady); } export class RateLimiterPostgres extends RateLimiterStoreAbstract { constructor(opts: IRateLimiterPostgresOptions, cb?: ICallbackReady); } export class RateLimiterSQLite extends RateLimiterStoreAbstract { constructor(opts: IRateLimiterStoreNoAutoExpiryOptions, cb?: ICallbackReady); } export class RateLimiterPrisma extends RateLimiterStoreAbstract { constructor(opts: IRateLimiterStoreNoAutoExpiryOptions, cb?: ICallbackReady); } export class RateLimiterDrizzle extends RateLimiterStoreAbstract { constructor(opts: IRateLimiterStoreNoAutoExpiryOptionsAndSchema, cb?: ICallbackReady); } export class RateLimiterDrizzleNonAtomic extends RateLimiterStoreAbstract { constructor(opts: IRateLimiterStoreNoAutoExpiryOptionsAndSchema, cb?: ICallbackReady); } export class RateLimiterMemcache extends RateLimiterStoreAbstract { } export class RateLimiterUnion { constructor(...limiters: RateLimiterLike[]); consume(key: string | number, points?: number): Promise>; } export class RLWrapperBlackAndWhite extends RateLimiterCompatibleAbstract { constructor(opts: IRLWrapperBlackAndWhiteOptions); limiter: RateLimiterLike; blackList: string[] | number[]; whiteList: string[] | number[]; isBlackListed: (key: any) => boolean; isWhiteListed: (key: any) => boolean; runActionAnyway: boolean; } interface IRLWrapperTimeoutsOptions extends Omit { limiter: RateLimiterLike; timeoutMs?: number; } export class RLWrapperTimeouts extends RateLimiterInsuredAbstract { constructor(opts: IRLWrapperTimeoutsOptions); } interface IRateLimiterQueueOpts { maxQueueSize?: number; } export class RateLimiterQueue { constructor( limiterFlexible: RateLimiterLike | BurstyRateLimiter, opts?: IRateLimiterQueueOpts ); getTokensRemaining(key?: string | number): Promise; removeTokens(tokens: number, key?: string | number): Promise; } export class BurstyRateLimiter { constructor( rateLimiter: RateLimiterLike, burstLimiter: RateLimiterLike ); consume( key: string | number, pointsToConsume?: number, options?: IRateLimiterMongoFunctionOptions ): Promise; } interface IRateLimiterDynamoOptions extends IRateLimiterStoreOptions { dynamoTableOpts?: { readCapacityUnits: number; writeCapacityUnits: number; }; ttlSet?: boolean; } export class RateLimiterDynamo extends RateLimiterStoreAbstract { constructor(opts: IRateLimiterDynamoOptions, cb?: ICallbackReady); } /** * Options for RateLimiterValkeyGlide */ interface IRateLimiterValkeyGlideOptions extends IRateLimiterStoreOptions { /** * Valkey Glide client instance (GlideClient or GlideClusterClient) */ storeClient: any; // GlideClient | GlideClusterClient; /** * Whether to reject requests if Valkey is not ready * @default false */ rejectIfValkeyNotReady?: boolean; /** * Custom Lua script for rate limiting logic. * Must accept parameters: * - KEYS[1]: The key being rate limited * - ARGV[1]: Points to consume (as string, use tonumber() to convert) * - ARGV[2]: Duration in seconds (as string, use tonumber() to convert) * * Must return an array with exactly two elements: * - [0]: Consumed points (number) * - [1]: TTL in milliseconds (number) */ customFunction?: string; /** * Custom name for the function library, defaults to 'ratelimiter'. * The name is used to identify the library of the Lua function. * A custom name should be used only if you want to use different * libraries for different rate limiters. * @default 'ratelimiter' */ customFunctionLibName?: string; } /** * Rate limiter that uses Valkey Glide client for storage */ export class RateLimiterValkeyGlide extends RateLimiterStoreAbstract { /** * Creates a new instance of RateLimiterValkeyGlide * * @param opts Configuration options * * @example * ```typescript * // Basic usage * const rateLimiter = new RateLimiterValkeyGlide({ * storeClient: glideClient, * points: 5, * duration: 1 * }); * * // With custom Lua function * const customScript = `local key = KEYS[1] * local pointsToConsume = tonumber(ARGV[1]) or 0 * local secDuration = tonumber(ARGV[2]) or 0 * * -- Custom implementation * -- ... * * -- Must return exactly two values: [consumed_points, ttl_in_ms] * return {consumed, ttl}`; * * const rateLimiter = new RateLimiterValkeyGlide({ * storeClient: glideClient, * points: 5, * customFunction: customScript * }); * * // With insurance limiter * const rateLimiter = new RateLimiterValkeyGlide({ * storeClient: primaryGlideClient, * points: 5, * duration: 2, * insuranceLimiter: new RateLimiterMemory({ * points: 5, * duration: 2 * }) * }); * ``` */ constructor(opts: IRateLimiterValkeyGlideOptions); /** * Close the rate limiter and release resources * Note: The method won't close the Valkey client, as it may be shared with other instances. * * @returns Promise that resolves when the rate limiter is closed */ close(): Promise; } /** * Etcd Rate Limiter class. * * The option "storeClient" needs to be set to an instance of class "EtcdClient". */ export class RateLimiterEtcd extends RateLimiterEtcdNonAtomic { constructor(opts: IRateLimiterStoreOptions); } /** * Non-Atomic Etcd Rate Limiter class. * * The option "storeClient" needs to be set to an instance of class "EtcdClient". */ export class RateLimiterEtcdNonAtomic extends RateLimiterStoreAbstract { constructor(opts: IRateLimiterStoreOptions); } export class RateLimiterQueueError extends Error { constructor(message?: string, extra?: string); readonly name: string; readonly message: string; readonly extra: string; } export class RateLimiterEtcdTransactionFailedError extends Error { constructor(message?: string); readonly name: string; readonly message: string; }