dataforge/fn_registry
1
0
Fork 0
Code Issues Pull Requests 3 Actions Packages Projects Releases Wiki Activity
Files
a4077913ef9cdeeb8b4f1d0cef2ee8d2a7010bdf
fn_registry/functions/infra/rate_limit_middleware.md
T
egutierrez 47fac22230 chore: auto-commit (799 archivos) 
- .claude/CLAUDE.md
- .claude/commands/subagentes.md
- .claude/rules/INDEX.md
- .mcp.json
- bash/functions/cybersecurity/analyze_dns.md
- bash/functions/cybersecurity/audit_http_headers.md
- bash/functions/cybersecurity/audit_ssh_config.md
- bash/functions/cybersecurity/check_firewall.md
- bash/functions/cybersecurity/detect_suspicious_users.md
- bash/functions/cybersecurity/encrypt_file.md
- ...

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-14 00:28:20 +02:00

42 lines
1.8 KiB
Markdown
Raw Blame History

---
name: rate_limit_middleware
kind: function
lang: go
domain: infra
version: "1.0.0"
purity: impure
signature: "func RateLimitMiddleware(rl *RateLimiter) Middleware"
description: "Middleware HTTP que aplica rate limiting por IP del cliente. Extrae IP de X-Forwarded-For, X-Real-IP o RemoteAddr. Responde 429 con headers Retry-After y X-RateLimit-* cuando se supera el limite."
tags: [rate_limit, http, middleware, ip, server, infra, pendiente-usar]
uses_functions: [rate_limiter_by_key_go_infra]
uses_types: [RateLimiter_go_infra, Middleware_go_infra]
returns: [Middleware_go_infra]
returns_optional: false
error_type: "error_go_core"
imports: [net, net/http, strings]
params:
- name: rl
desc: "puntero al RateLimiter compartido entre todos los requests"
output: "Middleware que limita por IP del cliente y responde 429 cuando se excede"
tested: true
tests: ["permite request bajo el limite", "responde 429 cuando se excede el limite", "IPs distintas tienen buckets independientes", "X-Forwarded-For tiene prioridad sobre RemoteAddr", "responde con Retry-After header en 429"]
test_file_path: "functions/infra/rate_limit_middleware_test.go"
file_path: "functions/infra/rate_limit_middleware.go"
---
## Ejemplo
```go
rl := RateLimiterNew(10, 20)
chain := HTTPMiddlewareChain(
HTTPCORSMiddleware([]string{"*"}, []string{"GET", "POST"}),
RateLimitMiddleware(rl),
HTTPLoggerMiddleware(os.Stderr),
)
http.ListenAndServe(":8080", chain(mux))
```
## Notas
Funcion impura — el middleware producido muta el estado del limiter en cada request. Internamente delega en `RateLimiterByKey` con un keyFunc que extrae la IP segun cabeceras estandar de proxy. La extraccion de IP confia en X-Forwarded-For: para uso publico real habria que validar contra trusted proxies para evitar spoofing. Para entornos internos (deploy con Traefik/Nginx delante) es seguro.
Reference in New Issue View Git Blame Copy Permalink