limit request rate

2025-07-20 01:47:58 +00:00 · 2025-01-17 10:56:09 +08:00
parent 2dd8fb2ee2
commit 4fe68d3b9f
4 changed files with 77 additions and 76 deletions
--- a/internal/applicant/applicant.go
+++ b/internal/applicant/applicant.go
@@ -7,32 +7,20 @@ import (
 	"os"
 	"strconv"
 	"strings"
+	"sync"

 	"github.com/go-acme/lego/v4/certcrypto"
 	"github.com/go-acme/lego/v4/certificate"
 	"github.com/go-acme/lego/v4/challenge"
 	"github.com/go-acme/lego/v4/challenge/dns01"
 	"github.com/go-acme/lego/v4/lego"
+	"golang.org/x/time/rate"

 	"github.com/usual2970/certimate/internal/domain"
-	"github.com/usual2970/certimate/internal/pkg/utils/pool"
 	"github.com/usual2970/certimate/internal/pkg/utils/slices"
 	"github.com/usual2970/certimate/internal/repository"
 )

-const defaultPoolSize = 8
-
-var poolInstance *pool.Pool[proxyApplicant, applicantResult]
-
-type applicantResult struct {
-	result *ApplyCertResult
-	err    error
-}
-
-func init() {
-	poolInstance = pool.NewPool[proxyApplicant, applicantResult](defaultPoolSize)
-}
-
 type ApplyCertResult struct {
 	CertificateFullChain string
 	IssuerCertificate    string
@@ -98,17 +86,6 @@ func NewWithApplyNode(node *domain.WorkflowNode) (Applicant, error) {
 	}, nil
 }

-func applyAsync(applicant challenge.Provider, options *applicantOptions) <-chan applicantResult {
-	return poolInstance.Submit(context.Background(), func(p proxyApplicant) applicantResult {
-		rs := applicantResult{}
-		rs.result, rs.err = apply(p.applicant, p.options)
-		return rs
-	}, proxyApplicant{
-		applicant: applicant,
-		options:   options,
-	})
-}
-
 func apply(challengeProvider challenge.Provider, options *applicantOptions) (*ApplyCertResult, error) {
 	settingsRepo := repository.NewSettingsRepository()
 	settings, _ := settingsRepo.GetByName(context.Background(), "sslProvider")
@@ -209,7 +186,20 @@ type proxyApplicant struct {
 	options   *applicantOptions
 }

-func (d *proxyApplicant) Apply() (*ApplyCertResult, error) {
-	rs := <-applyAsync(d.applicant, d.options)
-	return rs.result, rs.err
+var limiters sync.Map
+
+const (
+	limitBurst         = 300
+	limitRate  float64 = float64(1) / float64(36)
+)
+
+func getLimiter(key string) *rate.Limiter {
+	limiter, _ := limiters.LoadOrStore(key, rate.NewLimiter(rate.Limit(limitRate), 300))
+	return limiter.(*rate.Limiter)
+}
+
+func (d *proxyApplicant) Apply() (*ApplyCertResult, error) {
+	limiter := getLimiter(fmt.Sprintf("apply_%s", d.options.ContactEmail))
+	limiter.Wait(context.Background())
+	return apply(d.applicant, d.options)
 }