SurfSense/surfsense_backend/app/rate_limiter.py

"""Shared SlowAPI limiter instance used by app.py and route modules."""

from __future__ import annotations

from limits.storage import MemoryStorage
from slowapi import Limiter
from starlette.requests import Request

from app.config import config


def get_real_client_ip(request: Request) -> str:
    """Extract the real client IP behind Cloudflare / reverse proxies.

    Priority: CF-Connecting-IP > X-Real-IP > X-Forwarded-For (first entry) > socket peer.
    """
    cf_ip = request.headers.get("cf-connecting-ip")
    if cf_ip:
        return cf_ip.strip()
    real_ip = request.headers.get("x-real-ip")
    if real_ip:
        return real_ip.strip()
    forwarded = request.headers.get("x-forwarded-for")
    if forwarded:
        return forwarded.split(",")[0].strip()
    return request.client.host if request.client else "127.0.0.1"


limiter = Limiter(
    key_func=get_real_client_ip,
    storage_uri=config.REDIS_APP_URL,
    default_limits=["1024/minute"],
    in_memory_fallback_enabled=True,
    in_memory_fallback=[MemoryStorage()],
)
$DESKTOP-RTLN3BA\$punk$ feat: no login experience and prem tokens 2026-04-15 17:02:00 -07:00			`"""Shared SlowAPI limiter instance used by app.py and route modules."""`

$DESKTOP-RTLN3BA\$punk$ try: ip fix for cludflare - Introduced AI File Sorting functionality to automatically organize documents into a smart folder hierarchy based on source, date, and topic. - Updated README.md to include the new feature. - Enhanced homepage components with new illustrations and descriptions for AI File Sorting. - Refactored rate limiting logic to extract real client IPs more accurately. 2026-04-16 02:13:52 -07:00			`from __future__ import annotations`

$DESKTOP-RTLN3BA\$punk$ feat: no login experience and prem tokens 2026-04-15 17:02:00 -07:00			`from limits.storage import MemoryStorage`
			`from slowapi import Limiter`
$DESKTOP-RTLN3BA\$punk$ try: ip fix for cludflare - Introduced AI File Sorting functionality to automatically organize documents into a smart folder hierarchy based on source, date, and topic. - Updated README.md to include the new feature. - Enhanced homepage components with new illustrations and descriptions for AI File Sorting. - Refactored rate limiting logic to extract real client IPs more accurately. 2026-04-16 02:13:52 -07:00			`from starlette.requests import Request`
$DESKTOP-RTLN3BA\$punk$ feat: no login experience and prem tokens 2026-04-15 17:02:00 -07:00
			`from app.config import config`

$DESKTOP-RTLN3BA\$punk$ try: ip fix for cludflare - Introduced AI File Sorting functionality to automatically organize documents into a smart folder hierarchy based on source, date, and topic. - Updated README.md to include the new feature. - Enhanced homepage components with new illustrations and descriptions for AI File Sorting. - Refactored rate limiting logic to extract real client IPs more accurately. 2026-04-16 02:13:52 -07:00
			`def get_real_client_ip(request: Request) -> str:`
			`"""Extract the real client IP behind Cloudflare / reverse proxies.`

			`Priority: CF-Connecting-IP > X-Real-IP > X-Forwarded-For (first entry) > socket peer.`
			`"""`
			`cf_ip = request.headers.get("cf-connecting-ip")`
			`if cf_ip:`
			`return cf_ip.strip()`
			`real_ip = request.headers.get("x-real-ip")`
			`if real_ip:`
			`return real_ip.strip()`
			`forwarded = request.headers.get("x-forwarded-for")`
			`if forwarded:`
			`return forwarded.split(",")[0].strip()`
			`return request.client.host if request.client else "127.0.0.1"`


$DESKTOP-RTLN3BA\$punk$ feat: no login experience and prem tokens 2026-04-15 17:02:00 -07:00			`limiter = Limiter(`
$DESKTOP-RTLN3BA\$punk$ try: ip fix for cludflare - Introduced AI File Sorting functionality to automatically organize documents into a smart folder hierarchy based on source, date, and topic. - Updated README.md to include the new feature. - Enhanced homepage components with new illustrations and descriptions for AI File Sorting. - Refactored rate limiting logic to extract real client IPs more accurately. 2026-04-16 02:13:52 -07:00			`key_func=get_real_client_ip,`
$DESKTOP-RTLN3BA\$punk$ feat: no login experience and prem tokens 2026-04-15 17:02:00 -07:00			`storage_uri=config.REDIS_APP_URL,`
			`default_limits=["1024/minute"],`
			`in_memory_fallback_enabled=True,`
			`in_memory_fallback=[MemoryStorage()],`
			`)`