From 19dc66b5155e3b9be0ee544d3d3917efafd886c7 Mon Sep 17 00:00:00 2001 From: Ben White Date: Thu, 2 May 2024 11:07:30 +0200 Subject: [PATCH 1/3] Add rate limit info to events --- src/__tests__/posthog-core.test.ts | 35 +++++++++++++++++++++++++++++- src/__tests__/rate-limiter.test.ts | 20 ++++++++--------- src/posthog-core.ts | 18 ++++++++++----- src/rate-limiter.ts | 12 +++++++--- 4 files changed, 66 insertions(+), 19 deletions(-) diff --git a/src/__tests__/posthog-core.test.ts b/src/__tests__/posthog-core.test.ts index 6a6bc9bc3..09026e447 100644 --- a/src/__tests__/posthog-core.test.ts +++ b/src/__tests__/posthog-core.test.ts @@ -7,7 +7,7 @@ describe('posthog core', () => { const properties = { event: 'prop', } - const setup = (config: Partial) => { + const setup = (config: Partial = {}) => { const onCapture = jest.fn() const posthog = _posthog.init('testtoken', { ...config, _onCapture: onCapture }, uuidv7())! posthog.debug() @@ -31,5 +31,38 @@ describe('posthog core', () => { expect(actual['$is_identified']).toBeUndefined() expect(actual['token']).toBeUndefined() }) + + describe('rate limiting', () => { + it('includes information about remaining rate limit', () => { + const { posthog, onCapture } = setup() + + posthog.capture(eventName, properties) + + expect(onCapture.mock.calls[0][1]).toMatchObject({ + properties: { + $lib_rate_limit_tokens: 99, + }, + }) + }) + + it('does not capture if rate limit is in place', () => { + console.error = jest.fn() + const { posthog, onCapture } = setup() + + for (let i = 0; i < 100; i++) { + posthog.capture(eventName, properties) + } + expect(onCapture).toHaveBeenCalledTimes(100) + onCapture.mockClear() + ;(console.error as any).mockClear() + posthog.capture(eventName, properties) + expect(onCapture).toHaveBeenCalledTimes(0) + expect(console.error).toHaveBeenCalledTimes(1) + expect(console.error).toHaveBeenCalledWith( + '[PostHog.js]', + 'This capture call is ignored due to client rate limiting.' + ) + }) + }) }) }) diff --git a/src/__tests__/rate-limiter.test.ts b/src/__tests__/rate-limiter.test.ts index d447d8c9d..20e4b7a40 100644 --- a/src/__tests__/rate-limiter.test.ts +++ b/src/__tests__/rate-limiter.test.ts @@ -53,12 +53,12 @@ describe('Rate Limiter', () => { tokens: 100, last: systemTime, }) - expect(rateLimiter.isCaptureClientSideRateLimited()).toBe(false) + expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) }) it('subtracts a token with each call', () => { range(5).forEach(() => { - expect(rateLimiter.isCaptureClientSideRateLimited()).toBe(false) + expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) }) expect(persistedBucket['$capture_rate_limit']).toEqual({ tokens: 95, @@ -68,7 +68,7 @@ describe('Rate Limiter', () => { it('adds tokens if time has passed ', () => { range(50).forEach(() => { - expect(rateLimiter.isCaptureClientSideRateLimited()).toBe(false) + expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) }) expect(persistedBucket['$capture_rate_limit']).toEqual({ tokens: 50, @@ -76,7 +76,7 @@ describe('Rate Limiter', () => { }) moveTimeForward(2000) // 2 seconds = 20 tokens - expect(rateLimiter.isCaptureClientSideRateLimited()).toBe(false) + expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) expect(persistedBucket['$capture_rate_limit']).toEqual({ tokens: 69, // 50 + 20 - 1 last: systemTime, @@ -85,10 +85,10 @@ describe('Rate Limiter', () => { it('rate limits when past the threshold ', () => { range(100).forEach(() => { - expect(rateLimiter.isCaptureClientSideRateLimited()).toBe(false) + expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) }) range(200).forEach(() => { - expect(rateLimiter.isCaptureClientSideRateLimited()).toBe(true) + expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(true) }) expect(persistedBucket['$capture_rate_limit']).toEqual({ tokens: 0, @@ -96,7 +96,7 @@ describe('Rate Limiter', () => { }) moveTimeForward(2000) // 2 seconds = 20 tokens - expect(rateLimiter.isCaptureClientSideRateLimited()).toBe(false) + expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) expect(persistedBucket['$capture_rate_limit']).toEqual({ tokens: 19, // 20 - 1 last: systemTime, @@ -105,13 +105,13 @@ describe('Rate Limiter', () => { it('refills up to the maximum amount ', () => { range(100).forEach(() => { - expect(rateLimiter.isCaptureClientSideRateLimited()).toBe(false) + expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) }) - expect(rateLimiter.isCaptureClientSideRateLimited()).toBe(true) + expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(true) expect(persistedBucket['$capture_rate_limit'].tokens).toEqual(0) moveTimeForward(1000000) - expect(rateLimiter.isCaptureClientSideRateLimited()).toBe(false) + expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) expect(persistedBucket['$capture_rate_limit'].tokens).toEqual(99) // limit - 1 }) diff --git a/src/posthog-core.ts b/src/posthog-core.ts index 103c8f9c6..a95bb11d1 100644 --- a/src/posthog-core.ts +++ b/src/posthog-core.ts @@ -731,11 +731,6 @@ export class PostHog { return } - if (!options?.skip_client_rate_limiting && this.rateLimiter.isCaptureClientSideRateLimited()) { - logger.critical('This capture call is ignored due to client rate limiting.') - return - } - // typing doesn't prevent interesting data if (isUndefined(event_name) || !isString(event_name)) { logger.error('No event name provided to posthog.capture') @@ -750,6 +745,15 @@ export class PostHog { return } + const clientRateLimitContext = !options?.skip_client_rate_limiting + ? this.rateLimiter.isCaptureClientSideRateLimited() + : undefined + + if (clientRateLimitContext?.isRateLimited) { + logger.critical('This capture call is ignored due to client rate limiting.') + return + } + // update persistence this.sessionPersistence.update_search_keyword() @@ -778,6 +782,10 @@ export class PostHog { } } + if (clientRateLimitContext) { + data.properties['$lib_rate_limit_tokens'] = clientRateLimitContext.remainingTokens + } + const setProperties = options?.$set if (setProperties) { data.$set = options?.$set diff --git a/src/rate-limiter.ts b/src/rate-limiter.ts index 642551b07..01f43c8d9 100644 --- a/src/rate-limiter.ts +++ b/src/rate-limiter.ts @@ -27,10 +27,13 @@ export class RateLimiter { this.captureEventsPerSecond ) - this.lastEventRateLimited = this.isCaptureClientSideRateLimited(true) + this.lastEventRateLimited = this.isCaptureClientSideRateLimited(true).isRateLimited } - public isCaptureClientSideRateLimited(checkOnly = false): boolean { + public isCaptureClientSideRateLimited(checkOnly = false): { + isRateLimited: boolean + remainingTokens: number + } { // This is primarily to prevent runaway loops from flooding capture with millions of events for a single user. // It's as much for our protection as theirs. const now = new Date().getTime() @@ -67,7 +70,10 @@ export class RateLimiter { this.lastEventRateLimited = isRateLimited this.instance.persistence?.set_property(CAPTURE_RATE_LIMIT, bucket) - return isRateLimited + return { + isRateLimited, + remainingTokens: bucket.tokens, + } } public isServerRateLimited(batchKey: string | undefined): boolean { From 46f34904f7a5c8367e5dc5a8346279c8a3fd3fdd Mon Sep 17 00:00:00 2001 From: Ben White Date: Thu, 2 May 2024 12:14:28 +0200 Subject: [PATCH 2/3] Fixes --- src/__tests__/posthog-core.js | 2 +- src/__tests__/posthog-core.test.ts | 2 +- src/__tests__/rate-limiter.test.ts | 28 ++++++++++++++-------------- src/posthog-core.ts | 4 ++-- src/rate-limiter.ts | 4 ++-- 5 files changed, 20 insertions(+), 20 deletions(-) diff --git a/src/__tests__/posthog-core.js b/src/__tests__/posthog-core.js index e432657d0..9e2a4d9c9 100644 --- a/src/__tests__/posthog-core.js +++ b/src/__tests__/posthog-core.js @@ -78,7 +78,7 @@ describe('posthog core', () => { __captureHooks: [], rateLimiter: { isServerRateLimited: () => false, - isCaptureClientSideRateLimited: () => false, + clientRateLimitContext: () => false, }, })) diff --git a/src/__tests__/posthog-core.test.ts b/src/__tests__/posthog-core.test.ts index 09026e447..05423a414 100644 --- a/src/__tests__/posthog-core.test.ts +++ b/src/__tests__/posthog-core.test.ts @@ -40,7 +40,7 @@ describe('posthog core', () => { expect(onCapture.mock.calls[0][1]).toMatchObject({ properties: { - $lib_rate_limit_tokens: 99, + $lib_rate_limit_remaining_tokens: 99, }, }) }) diff --git a/src/__tests__/rate-limiter.test.ts b/src/__tests__/rate-limiter.test.ts index 20e4b7a40..67455478d 100644 --- a/src/__tests__/rate-limiter.test.ts +++ b/src/__tests__/rate-limiter.test.ts @@ -48,17 +48,17 @@ describe('Rate Limiter', () => { describe('client side', () => { it('starts with the max tokens', () => { - rateLimiter.isCaptureClientSideRateLimited(true) + rateLimiter.clientRateLimitContext(true) expect(persistedBucket['$capture_rate_limit']).toEqual({ tokens: 100, last: systemTime, }) - expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) + expect(rateLimiter.clientRateLimitContext().isRateLimited).toBe(false) }) it('subtracts a token with each call', () => { range(5).forEach(() => { - expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) + expect(rateLimiter.clientRateLimitContext().isRateLimited).toBe(false) }) expect(persistedBucket['$capture_rate_limit']).toEqual({ tokens: 95, @@ -68,7 +68,7 @@ describe('Rate Limiter', () => { it('adds tokens if time has passed ', () => { range(50).forEach(() => { - expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) + expect(rateLimiter.clientRateLimitContext().isRateLimited).toBe(false) }) expect(persistedBucket['$capture_rate_limit']).toEqual({ tokens: 50, @@ -76,7 +76,7 @@ describe('Rate Limiter', () => { }) moveTimeForward(2000) // 2 seconds = 20 tokens - expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) + expect(rateLimiter.clientRateLimitContext().isRateLimited).toBe(false) expect(persistedBucket['$capture_rate_limit']).toEqual({ tokens: 69, // 50 + 20 - 1 last: systemTime, @@ -85,10 +85,10 @@ describe('Rate Limiter', () => { it('rate limits when past the threshold ', () => { range(100).forEach(() => { - expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) + expect(rateLimiter.clientRateLimitContext().isRateLimited).toBe(false) }) range(200).forEach(() => { - expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(true) + expect(rateLimiter.clientRateLimitContext().isRateLimited).toBe(true) }) expect(persistedBucket['$capture_rate_limit']).toEqual({ tokens: 0, @@ -96,7 +96,7 @@ describe('Rate Limiter', () => { }) moveTimeForward(2000) // 2 seconds = 20 tokens - expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) + expect(rateLimiter.clientRateLimitContext().isRateLimited).toBe(false) expect(persistedBucket['$capture_rate_limit']).toEqual({ tokens: 19, // 20 - 1 last: systemTime, @@ -105,19 +105,19 @@ describe('Rate Limiter', () => { it('refills up to the maximum amount ', () => { range(100).forEach(() => { - expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) + expect(rateLimiter.clientRateLimitContext().isRateLimited).toBe(false) }) - expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(true) + expect(rateLimiter.clientRateLimitContext().isRateLimited).toBe(true) expect(persistedBucket['$capture_rate_limit'].tokens).toEqual(0) moveTimeForward(1000000) - expect(rateLimiter.isCaptureClientSideRateLimited().isRateLimited).toBe(false) + expect(rateLimiter.clientRateLimitContext().isRateLimited).toBe(false) expect(persistedBucket['$capture_rate_limit'].tokens).toEqual(99) // limit - 1 }) it('captures a rate limit event the first time it is rate limited', () => { range(200).forEach(() => { - rateLimiter.isCaptureClientSideRateLimited() + rateLimiter.clientRateLimitContext() }) expect(mockPostHog.capture).toBeCalledTimes(1) @@ -135,7 +135,7 @@ describe('Rate Limiter', () => { it('does not capture a rate limit event if the persisted config was already rate limited', () => { range(200).forEach(() => { - rateLimiter.isCaptureClientSideRateLimited() + rateLimiter.clientRateLimitContext() }) expect(mockPostHog.capture).toBeCalledTimes(1) @@ -144,7 +144,7 @@ describe('Rate Limiter', () => { const newRateLimiter = new RateLimiter(mockPostHog as any) range(200).forEach(() => { - newRateLimiter.isCaptureClientSideRateLimited() + newRateLimiter.clientRateLimitContext() }) expect(mockPostHog.capture).toBeCalledTimes(0) diff --git a/src/posthog-core.ts b/src/posthog-core.ts index a95bb11d1..835cf454b 100644 --- a/src/posthog-core.ts +++ b/src/posthog-core.ts @@ -746,7 +746,7 @@ export class PostHog { } const clientRateLimitContext = !options?.skip_client_rate_limiting - ? this.rateLimiter.isCaptureClientSideRateLimited() + ? this.rateLimiter.clientRateLimitContext() : undefined if (clientRateLimitContext?.isRateLimited) { @@ -783,7 +783,7 @@ export class PostHog { } if (clientRateLimitContext) { - data.properties['$lib_rate_limit_tokens'] = clientRateLimitContext.remainingTokens + data.properties['$lib_rate_limit_remaining_tokens'] = clientRateLimitContext.remainingTokens } const setProperties = options?.$set diff --git a/src/rate-limiter.ts b/src/rate-limiter.ts index 01f43c8d9..8d22f3355 100644 --- a/src/rate-limiter.ts +++ b/src/rate-limiter.ts @@ -27,10 +27,10 @@ export class RateLimiter { this.captureEventsPerSecond ) - this.lastEventRateLimited = this.isCaptureClientSideRateLimited(true).isRateLimited + this.lastEventRateLimited = this.clientRateLimitContext(true).isRateLimited } - public isCaptureClientSideRateLimited(checkOnly = false): { + public clientRateLimitContext(checkOnly = false): { isRateLimited: boolean remainingTokens: number } { From e9dbc0cd7c535e06d4e1a492838f50f059a474f5 Mon Sep 17 00:00:00 2001 From: Ben White Date: Thu, 2 May 2024 12:17:12 +0200 Subject: [PATCH 3/3] Fix? --- src/__tests__/posthog-core.test.ts | 3 +++ 1 file changed, 3 insertions(+) diff --git a/src/__tests__/posthog-core.test.ts b/src/__tests__/posthog-core.test.ts index 05423a414..6332c4c74 100644 --- a/src/__tests__/posthog-core.test.ts +++ b/src/__tests__/posthog-core.test.ts @@ -46,6 +46,9 @@ describe('posthog core', () => { }) it('does not capture if rate limit is in place', () => { + jest.useFakeTimers() + jest.setSystemTime(Date.now()) + console.error = jest.fn() const { posthog, onCapture } = setup()