The subtle art of API Rate Limiting

Sdílet
Vložit
  • čas přidán 23. 07. 2024
  • Based on our blog post of the same title (zuplo.com/blog/2023/05/02/sub...) this is Zuplo's hot take on what really matters when it comes to protecting your API with rate-limiting. You'll find no discussion of algorithms like token bucket vs sliding window here - instead, we get into the real nitty-gritty of what is really important for your API's protection and customer experience. What did we miss?
    === Chapters ===
    00:00 Intro
    00:30 Background
    02:24 The three pillars of an API program
    03:44 1/ Canonical Rate-Limiting Implementation
    06:20 2/ Public or private quotas / thresholds
    08:33 3/ How should rate limits be applied?
    14:30 4/ Rate limiting and distributed systems
    19:40 5/ Rate limiting latency
    20:50 6/ Latency/Accuracy tradeoff
    23:47 7/ Observability
    25:50 8/ How do I know what rate limits to set?
    27:45 Conclusion
    === Links ===
    Open Source Rate Limiter examples:
    * flask-limiter.readthedocs.io/...
    * www.npmjs.com/package/express...
    * github.com/mailgun/gubernator
    API Keys Best Practices
    * Video: • API Key Authentication...
    * Article: zuplo.com/blog/2022/12/01/api...
    Other useful resources for API developers
    * zuplo.com/blog/2023/04/24/use...
  • Věda a technologie

Komentáře • 11

  • @soumyagupta4910
    @soumyagupta4910 Před rokem +1

    This is such a great explainer on the current approaches and what a dev should think about when implementing rate limiting. Thanks for making this!

    • @Zuplo
      @Zuplo  Před rokem

      Thanks - glad you found it valuable!

  • @mohanyash741
    @mohanyash741 Před 8 měsíci +1

    Just got into backend development and I must say after watching like 10 videos on just rate limiting algorithms this is probably the most realistic and helpful resource I found.

  • @logantcooper6
    @logantcooper6 Před 9 měsíci

    Excellent video!

    • @Zuplo
      @Zuplo  Před 9 měsíci

      Thanks Logan!

  • @speedwakemobile
    @speedwakemobile Před 8 měsíci

    Just watched - very good content and I'll save your blog post. I'm getting ready to advise a client on Edge API - worth it or not?

    • @Zuplo
      @Zuplo  Před 8 měsíci

      We feel strongly about it - czcams.com/video/ShNxubyucS0/video.html

  • @mityukov
    @mityukov Před 8 měsíci

    A question: how do you call outgoing rate limiting? I mean, my code is communicating with an external API that enforces some limits, and I need to make sure not to obuse it (otherwise they might block my IP). I am looking for some patterns on how to do it properly, but if I google "rate limiting", I always land on "how to protect your app from incoming request" 😅

    • @Zuplo
      @Zuplo  Před 7 měsíci

      You would want to search for “debouncing and throttling” instead.

    • @mityukov
      @mityukov Před 7 měsíci

      @@Zuplo denouncing and throttling, as I understand it, would drop excessive requests. I need something to delay (but still execute) them just the necessary amount of time to meet the limits. Furthermore, its separate php-fpm processes that should share the same "bucket"..

Další v pořadí
Automatické přehrávání
What is Rate Limiting / API Throttling? | System Design Concepts16:11What is Rate Limiting / API Throttling? | System Design Concepts
What is Rate Limiting / API Throttling? | System Design ConceptsBe A Better Dev
zhlédnutí 63K
What is an API Gateway?15:02What is an API Gateway?
What is an API Gateway?Gaurav Sen
zhlédnutí 53K
How To Make an IP Address Rate Limiter in ASP.NET Core8:11How To Make an IP Address Rate Limiter in ASP.NET Core
How To Make an IP Address Rate Limiter in ASP.NET CoreMilan Jovanović
zhlédnutí 9K
Lost dog reunited with owner in heartwarming story #shorts00:18Lost dog reunited with owner in heartwarming story #shorts
Lost dog reunited with owner in heartwarming story #shortsFabiosa Best Lifehacks
zhlédnutí 52M
ELITE Powerlifter ANATOLY Use FAKE WEIGHTS in GYM PRANK #anatoly #fitness #gym00:57ELITE Powerlifter ANATOLY Use FAKE WEIGHTS in GYM PRANK #anatoly #fitness #gym
ELITE Powerlifter ANATOLY Use FAKE WEIGHTS in GYM PRANK #anatoly #fitness #gymANATOLY
zhlédnutí 33M
EURO 2024 Byl NEJNUDNĚJŠÍ Turnaj ve FOTBALE…00:30EURO 2024 Byl NEJNUDNĚJŠÍ Turnaj ve FOTBALE…
EURO 2024 Byl NEJNUDNĚJŠÍ Turnaj ve FOTBALE…Horis
zhlédnutí 112K
SIUUUUU 😳 At 39 years old, Cristiano Ronaldo 🇵🇹 still makes football look easy 🔥00:10SIUUUUU 😳 At 39 years old, Cristiano Ronaldo 🇵🇹 still makes football look easy 🔥
SIUUUUU 😳 At 39 years old, Cristiano Ronaldo 🇵🇹 still makes football look easy 🔥beIN SPORTS USA
zhlédnutí 32M
Protect Your API With Rate Limiting | Full Guide (2024)41:40Protect Your API With Rate Limiting | Full Guide (2024)
Protect Your API With Rate Limiting | Full Guide (2024)Josh tried upstash
zhlédnutí 12K
The Man Who Solved the $1 Million Math Problem...Then Disappeared10:45The Man Who Solved the $1 Million Math Problem...Then Disappeared
The Man Who Solved the $1 Million Math Problem...Then DisappearedNewsthink
zhlédnutí 81K
Top 7 Ways to 10x Your API Performance6:05Top 7 Ways to 10x Your API Performance
Top 7 Ways to 10x Your API PerformanceByteByteGo
zhlédnutí 317K
Design A Scalable Rate Limiter | System Design24:32Design A Scalable Rate Limiter | System Design
Design A Scalable Rate Limiter | System DesignCode with Irtiza
zhlédnutí 10K
Build an API Proxy Server - Hide Your API Keys, Rate Limiting & Caching32:20Build an API Proxy Server - Hide Your API Keys, Rate Limiting & Caching
Build an API Proxy Server - Hide Your API Keys, Rate Limiting & CachingTraversy Media
zhlédnutí 218K
Protect Kubernetes APIs with Rate Limiting17:35Protect Kubernetes APIs with Rate Limiting
Protect Kubernetes APIs with Rate LimitingNGINX
zhlédnutí 4,1K
Web API Rate Limiting - Why it's so IMPORTANT for your APIs7:55Web API Rate Limiting - Why it's so IMPORTANT for your APIs
Web API Rate Limiting - Why it's so IMPORTANT for your APIsAmbient Coder
zhlédnutí 9K
How To Implement Rate Limiting In .NET + BONUS: Rate Limiter Algorithms 1019:42How To Implement Rate Limiting In .NET + BONUS: Rate Limiter Algorithms 101
How To Implement Rate Limiting In .NET + BONUS: Rate Limiter Algorithms 101Milan Jovanović
zhlédnutí 12K
80 Year Olds Share Advice for Younger Self12:2280 Year Olds Share Advice for Younger Self
80 Year Olds Share Advice for Younger SelfSprouht
zhlédnutí 1,3M
Battery low 🔋 🪫00:10Battery low 🔋 🪫
Battery low 🔋 🪫dednahype
zhlédnutí 12M
Cheapest gaming phone? 🤭 #miniphone #smartphone #iphone #fy00:19Cheapest gaming phone? 🤭 #miniphone #smartphone #iphone #fy
Cheapest gaming phone? 🤭 #miniphone #smartphone #iphone #fyPockify™
zhlédnutí 4,2M
How NVIDIA just beat every other tech company09:20How NVIDIA just beat every other tech company
How NVIDIA just beat every other tech companyMrwhosetheboss
zhlédnutí 1,3M
Privacy on iPhone | Flock | Apple01:49Privacy on iPhone | Flock | Apple
Privacy on iPhone | Flock | AppleApple
zhlédnutí 4,9M
Он придумал гениальную идею, как исправить разбитый экран! 🤯 | Credit : gertieinar (TT)00:20Он придумал гениальную идею, как исправить разбитый экран! 🤯 | Credit : gertieinar (TT)
Он придумал гениальную идею, как исправить разбитый экран! 🤯 | Credit : gertieinar (TT)Enderestories
zhlédnutí 8M
Nvidia Has A Very Unique Problem #funfact01:00Nvidia Has A Very Unique Problem #funfact
Nvidia Has A Very Unique Problem #funfactDoug Sharpe
zhlédnutí 2,5M
First Time PC Builder Screws Up Again01:01First Time PC Builder Screws Up Again
First Time PC Builder Screws Up AgainZach's Tech Turf
zhlédnutí 640K
Voice of Alexa Confuses Alexa😂00:21Voice of Alexa Confuses Alexa😂
Voice of Alexa Confuses Alexa😂Relaxed
zhlédnutí 22M