Flask
Rate-limit decorator using client IP with Flask. Since Flask is synchronous, the async limiter runs via asyncio.run().
Request Flow
sequenceDiagram
participant C as Client
participant D as @rate_limit decorator
participant RL as RateLimiter
participant V as View Function
C->>D: HTTP Request
D->>RL: asyncio.run(allow(remote_addr))
alt allowed
RL-->>D: true
D->>V: call view
V-->>D: response
D-->>C: 200 OK
else denied
RL-->>D: false
D-->>C: 429 Rate limit exceeded
endCode
import asyncio
from functools import wraps
from flask import Flask, abort, jsonify, request
from rate_limiter import RateLimiter, TokenBucketStrategy
app = Flask(__name__)
limiter = RateLimiter(lambda: TokenBucketStrategy(capacity=10, rate=2))
def rate_limit(f):
@wraps(f)
def wrapper(*args, **kwargs):
key = request.remote_addr or "unknown"
if not asyncio.run(limiter.allow(key)):
abort(429, description="Rate limit exceeded")
return f(*args, **kwargs)
return wrapper
@app.get("/")
@rate_limit
def index():
return jsonify(message="Hello, World!")
if __name__ == "__main__":
app.run(port=8080)
Uses a decorator pattern instead of middleware — apply @rate_limit to individual routes for selective rate limiting.