Skip to content

adding readme #4

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
dakshing merged 1 commit into from
Dec 20, 2025
Merged

adding readme #4

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
75 changes: 75 additions & 0 deletions java/rate-limiter/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,75 @@
# Distributed Rate Limiter Service

A high-performance, distributed middleware service designed to protect downstream services (like url-shortener) from abuse and traffic spikes.

It implements a **Inter-changeable Strategy Pattern**, allowing you to hot-swap rate-limiting algorithms (Token Bucket, Sliding Window, etc.) without changing the core application logic. The logic is executed in **Redis** using **Lua scripts** to ensure atomicity across distributed nodes.



## Key Features
* **Atomic Operations:** All logic is pushed to **Redis Lua Scripts**. This eliminates "Check-Then-Act" race conditions common in distributed systems.
* **Pluggable Algorithms:** Supports multiple strategies via a Factory pattern:
* **Token Bucket:** Allows traffic bursts while maintaining an average rate.
* **Leaking Bucket:** Smooths out traffic to a constant flow.
* **Sliding Window Counter:** A memory-efficient approximation of the sliding window.
* **Sliding Window Log:** Logs timestamps to get accurate counts.
* **Fixed Window:** Simple counter (reset at fixed intervals).
* **Resilience:** Implements a **Fail-Open** Circuit Breaker. If Redis goes down, traffic is allowed to preserve user experience.
* **Observability:** Fully instrumented with **Micrometer** and **Prometheus** (RED Method).

---

## Tech Stack

* **Language:** Java 21 (Temurin)
* **Server:** Netty server
* **Storage:** Redis (Lettuce Driver)
* **Scripting:** Lua (Server-side scripting)
* **Metrics:** Prometheus, Grafana
---

## Architecture

```mermaid
%%{init: {'theme': 'neutral'} }%%
graph TD
User[Client]

subgraph "Rate Limiter"
Server[Netty Server]
Handler[Rate Limiter Handler]
Strategy[Strategy Interface]

Server --> Handler
Handler --> Strategy
end

subgraph "Infrastructure"
Redis[(Redis Cache)]
Lua[Lua Script]
end

User -- "Request user=alice" --> Server
Strategy -- "EVALSHA (Atomic)" --> Redis
Redis -- "Executes" --> Lua
Lua -- "1 (Allow) / 0 (Deny)" --> Strategy
Strategy -- "200 OK / 429 Too Many Requests" --> User
```
## Supported Algorithms
The service is designed to be algorithm-agnostic. The currently active algorithm is loaded at startup via RateLimiterFactory.

| Algorithm | Best For | Pros | Cons |
|:----------------------------|:------------------|:----------------------------------------|:------------------------------------------|
| **Token Bucket** | API Rate Limiting | Allows short bursts; memory efficient | Complex to tune refill rates |
| **Leaking Bucket** | Packet Shaping | Enforces constant outflow rate | Bursts can cause queue drops |
| **Fixed Window** | Basic Protection | Simple; low CPU usage | "Edge case" spikes (2x limit at boundary) |
| **Sliding Window Log** | Precision | 100% accurate rolling window | Expensive RAM (stores every timestamp) |
| **Sliding Window Counter** | Balanced | Good approximation; low RAM | Slightly less precise than logs |

## Observability
This service automatically reports metrics to the central DSL Observability stack.
- Metric Name: `ratelimiter.requests`
- Tags: result=`allowed`, result=`blocked`
- Latency: `ratelimiter.check.duration`

Access the Grafana Dashboard at http://localhost:3000 to visualize the Block Rate.