Mirror
/
tildes
mirror of https://gitlab.com/tildes/tildes.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
559 Commits
1 Branch
0 Tags
3.3 MiB
Tree: 67d93eeabf
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '67d93eeabf'
${ noResults }
tildes/tildes/tests/test_ratelimit.py

246 lines
7.4 KiB
Raw Normal View History

Add license and copyright info to all source files This follows the REUSE practices to add license and copyright info to all source files: https://reuse.software/practices/2.0/ In addition, LICENSE.md was switched to a plaintext LICENSE file, to support the tag-value header as recommended. Note that files that are closer to configuration than code did not have headers added. This includes all Salt files, Alembic files, and Python files such as most __init__.py files that only import other files, since those are similar to header files which are not considered copyrightable.
6 years ago
Initial open-source release
6 years ago
Apply isort to make import styles consistent This adds settings into pyproject.toml for the isort tool to match up with the styles I've generally been using, and then applies it to the whole project (by running "isort -rc"). Most of these changes are very minor, but it's good to fix the few inconsistencies that were around.
5 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Re-wrap comments with new max line-length Black won't re-wrap comments because it has no way to determine when that's a "safe" thing to do (that might break deliberate line-breaks). So this is a quick pass through to re-wrap most multi-line comments and docstrings to the new max line-length of 88.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
Apply Black code formatter This commit contains only changes that were made automatically by Black (except for some minor fixes to string un-wrapping and two format-disabling blocks in the user and group schemas). Some manual cleanup/adjustments will probably need to be made in a follow-up commit, but this one contains the result of running Black on the codebase without significant further manual tweaking.
6 years ago
Initial open-source release
6 years ago
  1. # Copyright (c) 2018 Tildes contributors <code@tildes.net>
  2. # SPDX-License-Identifier: AGPL-3.0-or-later
  4. from datetime import timedelta
  5. from itertools import permutations
  6. from random import randint
  8. from pytest import raises
  10. from tildes.lib.ratelimit import (
  11. RATE_LIMITED_ACTIONS,
  12. RateLimitedAction,
  13. RateLimitError,
  14. RateLimitResult,
  15. )
  18. def test_all_rate_limited_action_names_unique():
  19. """Ensure all the RATE_LIMITED_ACTIONS defined have unique names."""
  20. seen_names = set()
  22. for action in RATE_LIMITED_ACTIONS.values():
  23. assert action.name not in seen_names
  24. seen_names.add(action.name)
  27. def test_action_with_all_types_disabled():
  28. """Ensure RateLimitedAction can't have both by_user and by_ip disabled."""
  29. with raises(ValueError):
  30. RateLimitedAction("test", timedelta(hours=1), 5, by_user=False, by_ip=False)
  33. def test_check_by_user_id_disabled():
  34. """Ensure non-by_user RateLimitedAction can't be checked by user_id."""
  35. action = RateLimitedAction("test", timedelta(hours=1), 5, by_user=False)
  37. with raises(RateLimitError):
  38. action.check_for_user_id(1)
  41. def test_check_by_ip_disabled():
  42. """Ensure non-by_ip RateLimitedAction can't be checked by ip."""
  43. action = RateLimitedAction("test", timedelta(hours=1), 5, by_ip=False)
  45. with raises(RateLimitError):
  46. action.check_for_ip("123.123.123.123")
  49. def test_simple_rate_limiting_by_user_id(redis):
  50. """Ensure simple rate-limiting by user_id is working."""
  51. limit = 5
  52. user_id = 1
  54. # define an action with max_burst equal to the full limit
  55. action = RateLimitedAction(
  56. "testaction", timedelta(hours=1), limit, max_burst=limit, redis=redis
  57. )
  59. # run the action the full number of times, should all be allowed
  60. for _ in range(limit):
  61. result = action.check_for_user_id(user_id)
  62. assert result.is_allowed
  64. # try one more time, should be rejected
  65. result = action.check_for_user_id(user_id)
  66. assert not result.is_allowed
  69. def test_different_user_ids_limited_separately(redis):
  70. """Ensure one user being rate-limited doesn't affect a different one."""
  71. limit = 5
  72. user_id = 1
  74. action = RateLimitedAction("test", timedelta(hours=1), limit, redis=redis)
  76. # check the action for the first user_id until it's blocked
  77. result = action.check_for_user_id(user_id)
  78. while result.is_allowed:
  79. result = action.check_for_user_id(user_id)
  81. # it should still be allowed for a different user_id
  82. assert action.check_for_user_id(user_id + 1)
  85. def test_max_burst_defaults_to_half(redis):
  86. """Ensure that unspecified max_burst on a RateLimitedAction allows half."""
  87. limit = 10
  88. user_id = 1
  90. action = RateLimitedAction("test", timedelta(days=1), limit, redis=redis)
  92. # see how many times we can do the action until it gets blocked
  93. count = 0
  94. while True:
  95. result = action.check_for_user_id(user_id)
  96. if result.is_allowed:
  97. count += 1
  98. else:
  99. break
  101. assert count == limit // 2
  104. def test_time_until_retry(redis):
  105. """Ensure an unbursted limit's time_until_retry is the expected value."""
  106. user_id = 1
  107. period = timedelta(seconds=60)
  108. limit = 2
  110. # create an action with no burst allowed, which will force the actions to be spaced
  111. # "evenly" across the limit
  112. action = RateLimitedAction(
  113. "test", period=period, limit=limit, max_burst=1, redis=redis
  114. )
  116. # first usage should be fine
  117. result = action.check_for_user_id(user_id)
  118. assert result.is_allowed
  120. # second should fail, and require a wait of (period / limit) - 1 sec
  121. result = action.check_for_user_id(user_id)
  122. assert not result.is_allowed
  123. assert result.time_until_retry == (period / limit) - timedelta(seconds=1)
  126. def test_remaining_limit(redis):
  127. """Ensure a limit's "remaining limit" decreases as expected."""
  128. user_id = 1
  129. limit = 10
  131. # create an action allowing the full limit as a burst
  132. action = RateLimitedAction(
  133. "test", timedelta(days=1), limit, max_burst=limit, redis=redis
  134. )
  136. for count in range(1, limit + 1):
  137. result = action.check_for_user_id(user_id)
  138. assert result.remaining_limit == limit - count
  141. def test_simple_rate_limiting_by_ip(redis):
  142. """Ensure simple rate-limiting by IP address is working."""
  143. limit = 5
  144. ip = "123.123.123.123"
  146. # define an action with max_burst equal to the full limit
  147. action = RateLimitedAction(
  148. "testaction", timedelta(hours=1), limit, max_burst=limit, redis=redis
  149. )
  151. # run the action the full number of times, should all be allowed
  152. for _ in range(limit):
  153. result = action.check_for_ip(ip)
  154. assert result.is_allowed
  156. # try one more time, should be rejected
  157. result = action.check_for_ip(ip)
  158. assert not result.is_allowed
  161. def test_check_for_ip_invalid_address():
  162. """Ensure RateLimitedAction.check_for_ip can't take an invalid IP."""
  163. ip = "123.456.789.123"
  165. action = RateLimitedAction("testaction", timedelta(hours=1), 10)
  167. with raises(ValueError):
  168. action.check_for_ip(ip)
  171. def test_reset_for_ip_invalid_address():
  172. """Ensure RateLimitedAction.reset_for_ip can't take an invalid IP."""
  173. ip = "123.456.789.123"
  175. action = RateLimitedAction("testaction", timedelta(hours=1), 10)
  177. with raises(ValueError):
  178. action.reset_for_ip(ip)
  181. def test_merged_results_single():
  182. """Ensure "merging" a single result just returns the same one."""
  183. result = RateLimitResult(
  184. is_allowed=True,
  185. total_limit=50,
  186. remaining_limit=22,
  187. time_until_max=timedelta(seconds=256),
  188. )
  190. assert RateLimitResult.merged_result([result]) == result
  193. def test_merged_results():
  194. """Ensure merging RateLimitResults gives the expected result."""
  195. results = [
  196. RateLimitResult(
  197. is_allowed=True,
  198. total_limit=20,
  199. remaining_limit=15,
  200. time_until_max=timedelta(seconds=90),
  201. ),
  202. RateLimitResult(
  203. is_allowed=False,
  204. total_limit=10,
  205. remaining_limit=0,
  206. time_until_max=timedelta(seconds=30),
  207. time_until_retry=timedelta(seconds=10),
  208. ),
  209. RateLimitResult(
  210. is_allowed=True,
  211. total_limit=30,
  212. remaining_limit=20,
  213. time_until_max=timedelta(seconds=60),
  214. ),
  215. ]
  217. expected_merged_result = RateLimitResult(
  218. is_allowed=False,
  219. total_limit=10,
  220. remaining_limit=0,
  221. time_until_max=timedelta(seconds=90),
  222. time_until_retry=timedelta(seconds=10),
  223. )
  225. # try merging all permutations to ensure ordering isn't a factor
  226. for permutation in permutations(results):
  227. merged_result = RateLimitResult.merged_result(permutation)
  228. assert merged_result == expected_merged_result
  231. def test_merged_all_allowed():
  232. """Ensure a merged result from all allowed results is also allowed."""
  234. def random_allowed_result():
  235. """Return a RateLimitResult with is_allowed=True, otherwise random."""
  236. return RateLimitResult(
  237. is_allowed=True,
  238. total_limit=randint(1, 100),
  239. remaining_limit=randint(1, 100),
  240. time_until_max=timedelta(randint(1, 100)),
  241. )
  243. # try merging a few different sets of different sizes
  244. for num_results in range(2, 6):
  245. results = [random_allowed_result() for _ in range(num_results)]
  246. assert RateLimitResult.merged_result(results).is_allowed