best practice on applying rate limits to websockets

[jcheese1]

naively, i thought of just using the Rate Limiting API and just doing this inside onMessage:

const { success } = await env.MY_RATE_LIMITER.limit({ key: userId })

but im wondering if I'm missing something here? Is there a best practice on this somewhere?

[jcheese1]

To be specific (and on why i want this), i have a one agent to many user type of situation, and want to apply rate limits on each user to hit that DO

[deathbyknowledge]

Hey @jcheese1, this is interesting. The rate limiter is fairly new and I wouldn't say we have best practices yet but let's see.

The snippet you provide should work as long as you propagate the rate limiting error accordingly (maybe you also want to include it in onConnect so you can reject connections from rate-limited users).

In case you have other DO instances that also use the rate-limiter, you might want to update the key to something like ${this.name}:${userId}, so the user rate limiting applies per-instance and not globally.

Let me know if that does it O7