discourse/spec/lib/rate_limiter_spec.rb

# frozen_string_literal: true

require 'rate_limiter'

describe RateLimiter do

  fab!(:user) { Fabricate(:user) }
  fab!(:admin) { Fabricate(:admin) }
  let(:rate_limiter) { RateLimiter.new(user, "peppermint-butler", 2, 60) }
  let(:apply_staff_rate_limiter) { RateLimiter.new(admin, "peppermint-servant", 5, 40, apply_limit_to_staff: true) }
  let(:staff_rate_limiter) { RateLimiter.new(user, "peppermind-servant", 5, 40, staff_limit: { max: 10, secs: 80 }) }
  let(:admin_staff_rate_limiter) { RateLimiter.new(admin, "peppermind-servant", 5, 40, staff_limit: { max: 10, secs: 80 }) }

  context 'disabled' do
    before do
      rate_limiter.performed!
      rate_limiter.performed!
    end

    it "should be disabled" do
      expect(RateLimiter.disabled?).to eq(true)
    end

    it "returns true for can_perform?" do
      expect(rate_limiter.can_perform?).to eq(true)
    end

    it "doesn't raise an error on performed!" do
      expect { rate_limiter.performed! }.not_to raise_error
    end

  end

  context 'enabled' do
    before do
      RateLimiter.enable
      rate_limiter.clear!
      staff_rate_limiter.clear!
      admin_staff_rate_limiter.clear!
    end

    context 'aggressive rate limiter' do

      it 'can operate correctly and totally stop limiting' do

        freeze_time

        # 2 requests every 30 seconds
        limiter = RateLimiter.new(nil, "test", 2, 30, global: true, aggressive: true)
        limiter.clear!

        limiter.performed!
        limiter.performed!
        freeze_time 29.seconds.from_now

        expect do
          limiter.performed!
        end.to raise_error(RateLimiter::LimitExceeded)

        expect do
          limiter.performed!
        end.to raise_error(RateLimiter::LimitExceeded)

        # in aggressive mode both these ^^^ count as an attempt
        freeze_time 29.seconds.from_now

        expect do
          limiter.performed!
        end.to raise_error(RateLimiter::LimitExceeded)

        expect do
          limiter.performed!
        end.to raise_error(RateLimiter::LimitExceeded)

        freeze_time 30.seconds.from_now

        expect { limiter.performed! }.not_to raise_error
        expect { limiter.performed! }.not_to raise_error

      end
    end

    context 'global rate limiter' do

      it 'can operate in global mode' do
        limiter = RateLimiter.new(nil, "test", 2, 30, global: true)
        limiter.clear!

        thrown = false

        limiter.performed!
        limiter.performed!
        begin
          limiter.performed!
        rescue RateLimiter::LimitExceeded => e
          expect(Integer === e.available_in).to eq(true)
          expect(e.available_in).to be > 28
          expect(e.available_in).to be < 32
          thrown = true
        end
        expect(thrown).to be(true)
      end

    end

    context 'handles readonly' do
      before do
        # random IP address in the ULA range that does not exist
        Discourse.redis.without_namespace.slaveof 'fdec:3f5d:d0b7:4c4b:472b:636a:4370:7ac5', '49999'
      end

      after do
        Discourse.redis.without_namespace.slaveof 'no', 'one'
      end

      it 'does not explode' do
        expect { rate_limiter.performed! }.not_to raise_error
      end
    end

    context 'never done' do
      it "should perform right away" do
        expect(rate_limiter.can_perform?).to eq(true)
      end

      it "performs without an error" do
        expect { rate_limiter.performed! }.not_to raise_error
      end
    end

    context "remaining" do
      it "updates correctly" do
        expect(rate_limiter.remaining).to eq(2)
        rate_limiter.performed!
        expect(rate_limiter.remaining).to eq(1)
        rate_limiter.performed!
        expect(rate_limiter.remaining).to eq(0)
      end
    end

    context 'max is less than or equal to zero' do

      it 'should raise the right error' do
        [-1, 0, nil].each do |max|
          expect do
            RateLimiter.new(user, "a", max, 60).performed!
          end.to raise_error(RateLimiter::LimitExceeded)
        end
      end
    end

    context "multiple calls" do
      before do
        freeze_time
        rate_limiter.performed!
        rate_limiter.performed!
      end

      it "returns false for can_perform when the limit has been hit" do
        expect(rate_limiter.can_perform?).to eq(false)
        expect(rate_limiter.remaining).to eq(0)
      end

      it "raises an error the third time called" do
        expect { rate_limiter.performed! }.to raise_error do |error|
          expect(error).to be_a(RateLimiter::LimitExceeded)
          expect(error).to having_attributes(available_in: 60)
        end
      end

      it 'raises no error when the sliding window ended' do
        freeze_time 60.seconds.from_now
        expect { rate_limiter.performed! }.not_to raise_error
      end

      context "as an admin/moderator" do
        it "returns true for can_perform if the user is an admin" do
          user.admin = true
          expect(rate_limiter.can_perform?).to eq(true)
          expect(rate_limiter.remaining).to eq(2)
        end

        it "doesn't raise an error when an admin performs the task" do
          user.admin = true
          expect { rate_limiter.performed! }.not_to raise_error
        end

        it "returns true for can_perform if the user is a mod" do
          user.moderator = true
          expect(rate_limiter.can_perform?).to eq(true)
        end

        it "doesn't raise an error when a moderator performs the task" do
          user.moderator = true
          expect { rate_limiter.performed! }.not_to raise_error
        end

        it "applies max / secs to staff when apply_limit_to_staff flag is true" do
          5.times { apply_staff_rate_limiter.performed! }
          freeze_time 10.seconds.from_now
          expect { apply_staff_rate_limiter.performed! }.to raise_error do |error|
            expect(error).to be_a(RateLimiter::LimitExceeded)
            expect(error).to having_attributes(available_in: 30)
          end
        end

        it "applies staff_limit max when present for staff" do
          expect(admin_staff_rate_limiter.can_perform?).to eq(true)
          expect(admin_staff_rate_limiter.remaining).to eq(10)
        end

        it "applies staff_limit secs when present for staff" do
          10.times { admin_staff_rate_limiter.performed! }
          freeze_time 10.seconds.from_now
          expect { admin_staff_rate_limiter.performed! }.to raise_error do |error|
            expect(error).to be_a(RateLimiter::LimitExceeded)
            expect(error).to having_attributes(available_in: 70)
          end
        end

        it "applies standard max to non-staff users when staff_limit values are present" do
          expect(staff_rate_limiter.can_perform?).to eq(true)
          expect(staff_rate_limiter.remaining).to eq(5)
        end
      end

      context "rollback!" do
        before do
          rate_limiter.rollback!
        end

        it "returns true for can_perform since there is now room" do
          expect(rate_limiter.can_perform?).to eq(true)
        end

        it "raises no error now that there is room" do
          expect { rate_limiter.performed! }.not_to raise_error
        end
      end

    end
  end

end
DEV: use #frozen_string_literal: true on all spec This change both speeds up specs (less strings to allocate) and helps catch cases where methods in Discourse are mutating inputs. Overall we will be migrating everything to use #frozen_string_literal: true it will take a while, but this is the first and safest move in this direction 2019-04-29 20:27:42 -04:00			`# frozen_string_literal: true`

Initial release of Discourse 2013-02-05 14:16:51 -05:00			`require 'rate_limiter'`

			`describe RateLimiter do`

DEV: Prefabrication (test optimization) (#7414) * Introduced fab!, a helper that creates database state for a group It's almost identical to let_it_be, except: 1. It creates a new object for each test by default, 2. You can disable it using PREFABRICATION=0 2019-05-06 23:12:20 -04:00			`fab!(:user) { Fabricate(:user) }`
DEV: Don't allow users to immediately reinvite (#15722) - Limit bulk re-invite to 1 time per day - Move bulk invite by csv behind a site setting (hidden by default) - Bump invite expiry from 30 -> 90 days ## Updates to rate_limiter When limiting reinvites I found that staff are never limited in any way. So I updated the rate_limiter model to allow for a few things: - add an optional param of `staff_limit`, which (when included and passed values, and the user passes `.staff?`) will override the default `max` & `secs` values and apply them to the user. - in the case you do pass values to `staff_limit` but the user does not pass `staff?` the standard `max` & `secs` values will be applied to the user. This should give us enough flexibility to 1. continue to apply a strict rate limit to a standard user 2. but also apply a secondary (less strict) limit to staff 2022-02-03 14:07:40 -05:00			`fab!(:admin) { Fabricate(:admin) }`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`let(:rate_limiter) { RateLimiter.new(user, "peppermint-butler", 2, 60) }`
DEV: Don't allow users to immediately reinvite (#15722) - Limit bulk re-invite to 1 time per day - Move bulk invite by csv behind a site setting (hidden by default) - Bump invite expiry from 30 -> 90 days ## Updates to rate_limiter When limiting reinvites I found that staff are never limited in any way. So I updated the rate_limiter model to allow for a few things: - add an optional param of `staff_limit`, which (when included and passed values, and the user passes `.staff?`) will override the default `max` & `secs` values and apply them to the user. - in the case you do pass values to `staff_limit` but the user does not pass `staff?` the standard `max` & `secs` values will be applied to the user. This should give us enough flexibility to 1. continue to apply a strict rate limit to a standard user 2. but also apply a secondary (less strict) limit to staff 2022-02-03 14:07:40 -05:00			`let(:apply_staff_rate_limiter) { RateLimiter.new(admin, "peppermint-servant", 5, 40, apply_limit_to_staff: true) }`
			`let(:staff_rate_limiter) { RateLimiter.new(user, "peppermind-servant", 5, 40, staff_limit: { max: 10, secs: 80 }) }`
			`let(:admin_staff_rate_limiter) { RateLimiter.new(admin, "peppermind-servant", 5, 40, staff_limit: { max: 10, secs: 80 }) }`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
			`context 'disabled' do`
			`before do`
			`rate_limiter.performed!`
remove trailing whitespaces :heart: 2013-02-25 11:42:20 -05:00			`rate_limiter.performed!`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

Revert "Revert "PERF: improve speed of rate limiter"" This reverts commit 2373d85239b7c19a04aab74155360d7dd572a1eb. 2017-12-04 05:23:11 -05:00			`it "should be disabled" do`
			`expect(RateLimiter.disabled?).to eq(true)`
			`end`

Initial release of Discourse 2013-02-05 14:16:51 -05:00			`it "returns true for can_perform?" do`
few components with rspec3 syntax 2015-01-09 11:34:37 -05:00			`expect(rate_limiter.can_perform?).to eq(true)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it "doesn't raise an error on performed!" do`
few components with rspec3 syntax 2015-01-09 11:34:37 -05:00			`expect { rate_limiter.performed! }.not_to raise_error`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`end`

			`context 'enabled' do`
			`before do`
Revert "Revert "PERF: improve speed of rate limiter"" This reverts commit 2373d85239b7c19a04aab74155360d7dd572a1eb. 2017-12-04 05:23:11 -05:00			`RateLimiter.enable`
remove trailing whitespaces :heart: 2013-02-25 11:42:20 -05:00			`rate_limiter.clear!`
DEV: Don't allow users to immediately reinvite (#15722) - Limit bulk re-invite to 1 time per day - Move bulk invite by csv behind a site setting (hidden by default) - Bump invite expiry from 30 -> 90 days ## Updates to rate_limiter When limiting reinvites I found that staff are never limited in any way. So I updated the rate_limiter model to allow for a few things: - add an optional param of `staff_limit`, which (when included and passed values, and the user passes `.staff?`) will override the default `max` & `secs` values and apply them to the user. - in the case you do pass values to `staff_limit` but the user does not pass `staff?` the standard `max` & `secs` values will be applied to the user. This should give us enough flexibility to 1. continue to apply a strict rate limit to a standard user 2. but also apply a secondary (less strict) limit to staff 2022-02-03 14:07:40 -05:00			`staff_rate_limiter.clear!`
			`admin_staff_rate_limiter.clear!`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

PERF: introduce aggressive rate limiting for anonymous (#11129) Previous to this change our anonymous rate limits acted as a throttle. New implementation means we now also consider rate limited requests towards the limit. This means that if an anonymous user is hammering the server it will not be able to get any requests through until it subsides with traffic. 2020-11-05 00:36:17 -05:00			`context 'aggressive rate limiter' do`

			`it 'can operate correctly and totally stop limiting' do`

			`freeze_time`

			`# 2 requests every 30 seconds`
			`limiter = RateLimiter.new(nil, "test", 2, 30, global: true, aggressive: true)`
			`limiter.clear!`

			`limiter.performed!`
			`limiter.performed!`
			`freeze_time 29.seconds.from_now`

			`expect do`
			`limiter.performed!`
			`end.to raise_error(RateLimiter::LimitExceeded)`

			`expect do`
			`limiter.performed!`
			`end.to raise_error(RateLimiter::LimitExceeded)`

			`# in aggressive mode both these ^^^ count as an attempt`
			`freeze_time 29.seconds.from_now`

			`expect do`
			`limiter.performed!`
			`end.to raise_error(RateLimiter::LimitExceeded)`

			`expect do`
			`limiter.performed!`
			`end.to raise_error(RateLimiter::LimitExceeded)`

FIX: sliding window end time in rate limiter (#11691) If the sliding window size is N seconds, then a moment at the Nth second should be considered as the moment outside of the sliding window. Otherwise, if the sliding window is already full, at the Nth second, a new call wouldn't be allowed, but a time to wait before the next call would be equal to zero, which is confusing. In other words, the end of the time range shouldn't be included in the sliding window. Let's say we start at the second 0, and the sliding window size is 10 seconds. In the current version of rate limiter, this sliding window will be considered as a time range [0, 10] (including the end of the range), which actually is 11 seconds in length. After this fix, the time range will be considered as [0, 10) (excluding the end of the range), which is exactly 10 seconds in length. 2021-01-12 13:26:43 -05:00			`freeze_time 30.seconds.from_now`
PERF: introduce aggressive rate limiting for anonymous (#11129) Previous to this change our anonymous rate limits acted as a throttle. New implementation means we now also consider rate limited requests towards the limit. This means that if an anonymous user is hammering the server it will not be able to get any requests through until it subsides with traffic. 2020-11-05 00:36:17 -05:00
FIX: sliding window end time in rate limiter (#11691) If the sliding window size is N seconds, then a moment at the Nth second should be considered as the moment outside of the sliding window. Otherwise, if the sliding window is already full, at the Nth second, a new call wouldn't be allowed, but a time to wait before the next call would be equal to zero, which is confusing. In other words, the end of the time range shouldn't be included in the sliding window. Let's say we start at the second 0, and the sliding window size is 10 seconds. In the current version of rate limiter, this sliding window will be considered as a time range [0, 10] (including the end of the range), which actually is 11 seconds in length. After this fix, the time range will be considered as [0, 10) (excluding the end of the range), which is exactly 10 seconds in length. 2021-01-12 13:26:43 -05:00			`expect { limiter.performed! }.not_to raise_error`
			`expect { limiter.performed! }.not_to raise_error`
PERF: introduce aggressive rate limiting for anonymous (#11129) Previous to this change our anonymous rate limits acted as a throttle. New implementation means we now also consider rate limited requests towards the limit. This means that if an anonymous user is hammering the server it will not be able to get any requests through until it subsides with traffic. 2020-11-05 00:36:17 -05:00
			`end`
			`end`

Revert "Revert "PERF: improve speed of rate limiter"" This reverts commit 2373d85239b7c19a04aab74155360d7dd572a1eb. 2017-12-04 05:23:11 -05:00			`context 'global rate limiter' do`

			`it 'can operate in global mode' do`
FIX: regression around rate limiter 2017-12-04 05:44:16 -05:00			`limiter = RateLimiter.new(nil, "test", 2, 30, global: true)`
Revert "Revert "PERF: improve speed of rate limiter"" This reverts commit 2373d85239b7c19a04aab74155360d7dd572a1eb. 2017-12-04 05:23:11 -05:00			`limiter.clear!`

FIX: regression around rate limiter 2017-12-04 05:44:16 -05:00			`thrown = false`

Revert "Revert "PERF: improve speed of rate limiter"" This reverts commit 2373d85239b7c19a04aab74155360d7dd572a1eb. 2017-12-04 05:23:11 -05:00			`limiter.performed!`
			`limiter.performed!`
FIX: regression around rate limiter 2017-12-04 05:44:16 -05:00			`begin`
			`limiter.performed!`
			`rescue RateLimiter::LimitExceeded => e`
correct spec on Ruby 2.3 2017-12-04 15:04:41 -05:00			`expect(Integer === e.available_in).to eq(true)`
FIX: regression around rate limiter 2017-12-04 05:44:16 -05:00			`expect(e.available_in).to be > 28`
			`expect(e.available_in).to be < 32`
			`thrown = true`
			`end`
			`expect(thrown).to be(true)`
Revert "Revert "PERF: improve speed of rate limiter"" This reverts commit 2373d85239b7c19a04aab74155360d7dd572a1eb. 2017-12-04 05:23:11 -05:00			`end`

			`end`

			`context 'handles readonly' do`
			`before do`
FIX: 99999 is not a valid TCP port Future versions of redis will validate this port number causing the tests relying on this to fail with: ``` Redis::CommandError: ERR Invalid master port ``` Also change from an IPv4 address that might feasibly be in use to an IPv6 random ULA address that almost certainly won't be. 2022-06-21 12:29:36 -04:00			`# random IP address in the ULA range that does not exist`
			`Discourse.redis.without_namespace.slaveof 'fdec:3f5d:d0b7:4c4b:472b:636a:4370:7ac5', '49999'`
Revert "Revert "PERF: improve speed of rate limiter"" This reverts commit 2373d85239b7c19a04aab74155360d7dd572a1eb. 2017-12-04 05:23:11 -05:00			`end`

			`after do`
DEV: s/\$redis/Discourse\.redis (#8431) This commit also adds a rubocop rule to prevent global variables. 2019-12-03 04:05:53 -05:00			`Discourse.redis.without_namespace.slaveof 'no', 'one'`
Revert "Revert "PERF: improve speed of rate limiter"" This reverts commit 2373d85239b7c19a04aab74155360d7dd572a1eb. 2017-12-04 05:23:11 -05:00			`end`

			`it 'does not explode' do`
			`expect { rate_limiter.performed! }.not_to raise_error`
			`end`
			`end`

Initial release of Discourse 2013-02-05 14:16:51 -05:00			`context 'never done' do`
			`it "should perform right away" do`
few components with rspec3 syntax 2015-01-09 11:34:37 -05:00			`expect(rate_limiter.can_perform?).to eq(true)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it "performs without an error" do`
few components with rspec3 syntax 2015-01-09 11:34:37 -05:00			`expect { rate_limiter.performed! }.not_to raise_error`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`
			`end`

FEATURE: Warn a user when they have few likes remaining 2016-03-18 11:17:51 -04:00			`context "remaining" do`
			`it "updates correctly" do`
			`expect(rate_limiter.remaining).to eq(2)`
			`rate_limiter.performed!`
			`expect(rate_limiter.remaining).to eq(1)`
			`rate_limiter.performed!`
			`expect(rate_limiter.remaining).to eq(0)`
			`end`
			`end`

FIX: `RateLimiter` max of zero or less should raise rate limit exceeded. 2018-03-01 00:12:31 -05:00			`context 'max is less than or equal to zero' do`

			`it 'should raise the right error' do`
Add guard for `nil` in our `RateLimiter`. 2018-03-01 00:20:42 -05:00			`[-1, 0, nil].each do \|max\|`
FIX: `RateLimiter` max of zero or less should raise rate limit exceeded. 2018-03-01 00:12:31 -05:00			`expect do`
			`RateLimiter.new(user, "a", max, 60).performed!`
			`end.to raise_error(RateLimiter::LimitExceeded)`
			`end`
			`end`
			`end`

Initial release of Discourse 2013-02-05 14:16:51 -05:00			`context "multiple calls" do`
			`before do`
FIX: sliding window end time in rate limiter (#11691) If the sliding window size is N seconds, then a moment at the Nth second should be considered as the moment outside of the sliding window. Otherwise, if the sliding window is already full, at the Nth second, a new call wouldn't be allowed, but a time to wait before the next call would be equal to zero, which is confusing. In other words, the end of the time range shouldn't be included in the sliding window. Let's say we start at the second 0, and the sliding window size is 10 seconds. In the current version of rate limiter, this sliding window will be considered as a time range [0, 10] (including the end of the range), which actually is 11 seconds in length. After this fix, the time range will be considered as [0, 10) (excluding the end of the range), which is exactly 10 seconds in length. 2021-01-12 13:26:43 -05:00			`freeze_time`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`rate_limiter.performed!`
			`rate_limiter.performed!`
			`end`

			`it "returns false for can_perform when the limit has been hit" do`
few components with rspec3 syntax 2015-01-09 11:34:37 -05:00			`expect(rate_limiter.can_perform?).to eq(false)`
FEATURE: Warn a user when they have few likes remaining 2016-03-18 11:17:51 -04:00			`expect(rate_limiter.remaining).to eq(0)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it "raises an error the third time called" do`
FIX: sliding window end time in rate limiter (#11691) If the sliding window size is N seconds, then a moment at the Nth second should be considered as the moment outside of the sliding window. Otherwise, if the sliding window is already full, at the Nth second, a new call wouldn't be allowed, but a time to wait before the next call would be equal to zero, which is confusing. In other words, the end of the time range shouldn't be included in the sliding window. Let's say we start at the second 0, and the sliding window size is 10 seconds. In the current version of rate limiter, this sliding window will be considered as a time range [0, 10] (including the end of the range), which actually is 11 seconds in length. After this fix, the time range will be considered as [0, 10) (excluding the end of the range), which is exactly 10 seconds in length. 2021-01-12 13:26:43 -05:00			`expect { rate_limiter.performed! }.to raise_error do \|error\|`
			`expect(error).to be_a(RateLimiter::LimitExceeded)`
			`expect(error).to having_attributes(available_in: 60)`
			`end`
			`end`

			`it 'raises no error when the sliding window ended' do`
			`freeze_time 60.seconds.from_now`
			`expect { rate_limiter.performed! }.not_to raise_error`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`context "as an admin/moderator" do`
			`it "returns true for can_perform if the user is an admin" do`
			`user.admin = true`
few components with rspec3 syntax 2015-01-09 11:34:37 -05:00			`expect(rate_limiter.can_perform?).to eq(true)`
FEATURE: Warn a user when they have few likes remaining 2016-03-18 11:17:51 -04:00			`expect(rate_limiter.remaining).to eq(2)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it "doesn't raise an error when an admin performs the task" do`
			`user.admin = true`
few components with rspec3 syntax 2015-01-09 11:34:37 -05:00			`expect { rate_limiter.performed! }.not_to raise_error`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it "returns true for can_perform if the user is a mod" do`
pull moderator into own column, rename trust levels 2013-03-20 00:05:19 -04:00			`user.moderator = true`
few components with rspec3 syntax 2015-01-09 11:34:37 -05:00			`expect(rate_limiter.can_perform?).to eq(true)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it "doesn't raise an error when a moderator performs the task" do`
pull moderator into own column, rename trust levels 2013-03-20 00:05:19 -04:00			`user.moderator = true`
few components with rspec3 syntax 2015-01-09 11:34:37 -05:00			`expect { rate_limiter.performed! }.not_to raise_error`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`
DEV: Don't allow users to immediately reinvite (#15722) - Limit bulk re-invite to 1 time per day - Move bulk invite by csv behind a site setting (hidden by default) - Bump invite expiry from 30 -> 90 days ## Updates to rate_limiter When limiting reinvites I found that staff are never limited in any way. So I updated the rate_limiter model to allow for a few things: - add an optional param of `staff_limit`, which (when included and passed values, and the user passes `.staff?`) will override the default `max` & `secs` values and apply them to the user. - in the case you do pass values to `staff_limit` but the user does not pass `staff?` the standard `max` & `secs` values will be applied to the user. This should give us enough flexibility to 1. continue to apply a strict rate limit to a standard user 2. but also apply a secondary (less strict) limit to staff 2022-02-03 14:07:40 -05:00
			`it "applies max / secs to staff when apply_limit_to_staff flag is true" do`
			`5.times { apply_staff_rate_limiter.performed! }`
			`freeze_time 10.seconds.from_now`
			`expect { apply_staff_rate_limiter.performed! }.to raise_error do \|error\|`
			`expect(error).to be_a(RateLimiter::LimitExceeded)`
			`expect(error).to having_attributes(available_in: 30)`
			`end`
			`end`

			`it "applies staff_limit max when present for staff" do`
			`expect(admin_staff_rate_limiter.can_perform?).to eq(true)`
			`expect(admin_staff_rate_limiter.remaining).to eq(10)`
			`end`

			`it "applies staff_limit secs when present for staff" do`
			`10.times { admin_staff_rate_limiter.performed! }`
			`freeze_time 10.seconds.from_now`
			`expect { admin_staff_rate_limiter.performed! }.to raise_error do \|error\|`
			`expect(error).to be_a(RateLimiter::LimitExceeded)`
			`expect(error).to having_attributes(available_in: 70)`
			`end`
			`end`

			`it "applies standard max to non-staff users when staff_limit values are present" do`
			`expect(staff_rate_limiter.can_perform?).to eq(true)`
			`expect(staff_rate_limiter.remaining).to eq(5)`
			`end`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`context "rollback!" do`
			`before do`
			`rate_limiter.rollback!`
			`end`

			`it "returns true for can_perform since there is now room" do`
few components with rspec3 syntax 2015-01-09 11:34:37 -05:00			`expect(rate_limiter.can_perform?).to eq(true)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`it "raises no error now that there is room" do`
few components with rspec3 syntax 2015-01-09 11:34:37 -05:00			`expect { rate_limiter.performed! }.not_to raise_error`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`
			`end`

remove trailing whitespaces :heart: 2013-02-25 11:42:20 -05:00			`end`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`end`