/RequestLimitBundle

This bundle provides a light way to restrict user access to some action for a specified time frame.

Primary LanguageTwigMIT LicenseMIT

SensioLabsInsight Build Status Scrutinizer Code Quality Maintainability

RequestLimitBundle

This bundle is a simple solution to restrict user access to some controller for a specified timeline.

This functionality could be used for different cases when you need to:

  • prevent flood - pushing users of irrelevant data;
  • prevent a user from accessing the certain endpoint very often, etc.

Installation

  1. Install package via:
    composer require nw/request-limit-bundle
  1. Register bundle :

In app/AppKernel.php prior to Symfony version 4.0:

public function registerBundles()
{
    $bundles = [
        // ... ,
        new NW\RequestLimitBundle\NWRequestLimitBundle()
    ];

    // ...
    return $bundles;
}

In config/bundles.php when Symfony version is 4.0 and higher

return [
    //... other bundles
    NW\RequestLimitBundle\NWRequestLimitBundle::class => ['all' => true]
];
  1. Configure the bundle according to the provider you would like to use. Out of the box, we provide the Memcached and MySQL providers. To see configuration options, see the docs below.

If you want to use other storage, you can implement your provider.

  1. Specify restriction_time in seconds:
nw_request_limit:
    #... options for provider configuration
    restriction_time: 5  # 5 seconds

Usage

In your action, add the following line to restrict access by some specific application user artifact (e.g., user id, user IP, etc.):

$artifact = 'e.g. get user id or IP here';
$this->get('nw.request_limit.restrictor')->blockBy($artifact);

These will restrict user access for a time frame specified in your configuration (5 seconds accordingly to).