DEV Community

TutsCoder
TutsCoder

Posted on • Originally published at tutscoder.com

How to implement rate limiting in nodejs

In this tutorial, we will implement rate limiting in order to prevent the same IP from making too many requests to our API and that will then help us prevent attacks, like denial of services or brute force attacks.

So, here we will implememnt rate limiter as global middlware, so basically the rate limiter will count the number of

requests comming from one IP and then,when thre are too many requets, block these requetsts.

npm install express-rate-limit
const rateLimit = require('express-rate-limit')
// Middleware

const limiter = rateLimit({
windowMs: 15 * 60 * 1000, // 15 minutes
max: 100, // Limit each IP to 100 requests per window (here, per 15 minutes)
standardHeaders: true, // Return rate limit info in the RateLimit-* headers
legacyHeaders: false, // Disable the X-RateLimit-* headers
message: "Too many requests from this IP, please try again after in an hour",
});

// Apply the rate limiting middleware to all requests

app.use("/api", limiter);

Too many requests from this IP, please try again after in an hour

Image of Timescale

🚀 pgai Vectorizer: SQLAlchemy and LiteLLM Make Vector Search Simple

We built pgai Vectorizer to simplify embedding management for AI applications—without needing a separate database or complex infrastructure. Since launch, developers have created over 3,000 vectorizers on Timescale Cloud, with many more self-hosted.

Read full post →

Top comments (0)

Image of Docusign

🛠️ Bring your solution into Docusign. Reach over 1.6M customers.

Docusign is now extensible. Overcome challenges with disconnected products and inaccessible data by bringing your solutions into Docusign and publishing to 1.6M customers in the App Center.

Learn more