Skip to content

add IP-based rate limiting to Cloudflare Worker #37

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Sep 7, 2025
Merged

add IP-based rate limiting to Cloudflare Worker #37

merged 2 commits into from
Sep 7, 2025

Conversation

hemanth5055
Copy link
Contributor

Description:
This PR introduces IP-based rate limiting to the Cloudflare Worker handling /v1/translate and /v1/explain routes. The main goal is to protect the Gemini API from abuse and prevent excessive requests that could exhaust our quota.

Changes Made:

  • Implemented checkRateLimit function using Cloudflare KV to track request counts per IP.
  • Set a limit of 10 requests per minute per IP, returning a 429 Too Many Requests error if exceeded.
  • Updated fetch handler to integrate the rate limiting check before processing requests.
  • Added JSON parse safety and TTL management for KV storage.
  • Retained existing functionality for /v1/translate and /v1/explain routes.
  • Added a new test route /test-rate-limit to verify rate limiting logic

Benefits:

  • Prevents API abuse and uncontrolled usage.
  • Protects the Gemini API quota and reduces potential costs.
  • Improves overall security and stability of the service.

Screenshots:

Screenshot 2025-09-05 at 10 44 58 PM

@dineshsutihar
Copy link
Collaborator

It looks good from a quick glance. Let me pull it down to my system and verify everything, and then we should be good to merge.

Copilot
Copilot AI reviewed Sep 6, 2025
View reviewed changes
Copy link
Contributor

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR adds IP-based rate limiting to protect the Cloudflare Worker's /v1/translate and /v1/explain routes from abuse. The implementation sets a limit of 10 requests per minute per IP address using Cloudflare KV storage.

  • Introduces a checkRateLimit function that tracks request counts per IP using KV storage
  • Integrates rate limiting into the main request handler with 429 responses for exceeded limits
  • Adds KV namespace configuration and a test endpoint for verification

Reviewed Changes

Copilot reviewed 2 out of 3 changed files in this pull request and generated 4 comments.

File Description
backend/wrangler.jsonc Adds KV namespace binding for rate limiting storage
backend/src/index.ts Implements rate limiting logic and integrates it into the request handler

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

@dineshsutihar @Copilot
Update backend/src/index.ts
3c879c0 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
dineshsutihar
dineshsutihar approved these changes Sep 7, 2025
View reviewed changes
Copy link
Collaborator

@dineshsutihar dineshsutihar left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, Good Work @hemanth5055

@dineshsutihar dineshsutihar merged commit fabe5ca into StructZ:develop Sep 7, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@dineshsutihar dineshsutihar dineshsutihar approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@hemanth5055 @dineshsutihar