neo-todo-api/backend/tests/test_rate_limits.py

from quart_rate_limiter import (
    QUART_RATE_LIMITER_EXEMPT_ATTRIBUTE,
    QUART_RATE_LIMITER_LIMITS_ATTRIBUTE,
)

from backend.run import app

IGNORED_ENDPOINTS = {"static", "openapi", "redoc_ui", "swagger_ui"}


# Check if all api routes are rate limited
async def test_routes_have_rate_limits() -> None:
    for rule in app.url_map.iter_rules():
        endpoint = rule.endpoint

        exempt = getattr(
            app.view_functions[endpoint],
            QUART_RATE_LIMITER_EXEMPT_ATTRIBUTE,
            False,
        )

        if not exempt and endpoint not in IGNORED_ENDPOINTS:
            rate_limits = getattr(
                app.view_functions[endpoint],
                QUART_RATE_LIMITER_LIMITS_ATTRIBUTE,
                [],
            )

            assert rate_limits != []
Feat(API): Added rate-limiting and json error handling 2022-11-19 15:13:38 -05:00			`from quart_rate_limiter import (`
			`QUART_RATE_LIMITER_EXEMPT_ATTRIBUTE,`
			`QUART_RATE_LIMITER_LIMITS_ATTRIBUTE,`
			`)`

			`from backend.run import app`

Feat(API): Request/Response schema validation 2022-12-10 18:46:51 -05:00			`IGNORED_ENDPOINTS = {"static", "openapi", "redoc_ui", "swagger_ui"}`
Feat(API): Added rate-limiting and json error handling 2022-11-19 15:13:38 -05:00

			`# Check if all api routes are rate limited`
			`async def test_routes_have_rate_limits() -> None:`
			`for rule in app.url_map.iter_rules():`
			`endpoint = rule.endpoint`

			`exempt = getattr(`
			`app.view_functions[endpoint],`
			`QUART_RATE_LIMITER_EXEMPT_ATTRIBUTE,`
			`False,`
			`)`

			`if not exempt and endpoint not in IGNORED_ENDPOINTS:`
			`rate_limits = getattr(`
			`app.view_functions[endpoint],`
			`QUART_RATE_LIMITER_LIMITS_ATTRIBUTE,`
			`[],`
			`)`

			`assert rate_limits != []`