finished rate limiting for prem

Author: benWu26

leetstudy_backend/cmd/cache/rate_limiter.go

@@ -5,6 +5,7 @@ import (
 	"net/http"
 	"time"
 
+	"leetstudy_backend/cmd/database"
 	"github.com/labstack/echo/v4"
 
 )
@@ -40,12 +41,26 @@ func RateLimitByIP(limit int, window time.Duration) echo.MiddlewareFunc {
 func RateLimitByUser(limit int, window time.Duration) echo.MiddlewareFunc {
 	return func(next echo.HandlerFunc) echo.HandlerFunc {
 		return func(c echo.Context) error {
-			userID := c.Request().Header.Get("X-User-ID") // Or use your JWT logic
+			userID := c.Request().Header.Get("X-User-ID") // Or get from JWT context
 
 			if userID == "" {
 				return c.String(http.StatusUnauthorized, "Missing user ID")
 			}
 
+			db := database.GetDB()
+			var isPremium bool
+			err := db.QueryRow("SELECT is_premium FROM users WHERE id = $1", userID).Scan(&isPremium)
+			if err != nil {
+				fmt.Println("[ERROR] Failed to fetch user:", err)
+				return c.String(http.StatusInternalServerError, "Failed to validate user status")
+			}
+
+			// Adjust rate limit if premium
+			userLimit := float64(limit)
+			if isPremium {
+				userLimit = float64(limit) * 1.5
+			}
+
 			key := fmt.Sprintf("rate_limit:user:%s", userID)
 			count, err := RDB.Incr(Ctx, key).Result()
 			if err != nil {
@@ -56,11 +71,13 @@ func RateLimitByUser(limit int, window time.Duration) echo.MiddlewareFunc {
 				RDB.Expire(Ctx, key, window)
 			}
 
-			if count > int64(limit) {
+			if float64(count) > userLimit {
 				ttl, _ := RDB.TTL(Ctx, key).Result()
 				return c.JSON(http.StatusTooManyRequests, map[string]interface{}{
 					"error":       "Rate limit exceeded.",
 					"retry_after": ttl.Seconds(),
+					"premium":     isPremium,
+					"limit":       int(userLimit),
 				})
 			}
 

leetstudy_backend/main.go

@@ -164,7 +164,7 @@ func main() {
 	e.GET("/sessions/:sessionId/messages", handlers.GetChatMessagesHandler)
 	e.DELETE("/sessions/:sessionId", handlers.DeleteChatSessionHandler)
 	// Feedback
-	e.POST("/feedback", handlers.HandleFeedback)
+	e.POST("/feedback", handlers.HandleFeedback, cache.RateLimitByIP(2, time.Hour));
 
 	//Section for ai hints //TODO
 	// add rate limiting here

leetstudy_backend/readme.md

@@ -79,3 +79,6 @@ redis-cli ping
 brew services stop redis
 ```
 
+```
+stripe listen --forward-to http://localhost:8080/stripe-webhook
+```

website/src/components/feedbackButton.tsx

@@ -17,7 +17,7 @@ export function FeedbackButton() {
       toast.error("Please enter some feedback");
       return;
     }
-
+  
     setLoading(true);
     try {
       const response = await fetch("http://localhost:8080/feedback", {
@@ -32,16 +32,24 @@ export function FeedbackButton() {
           email: user?.email || "",
         }),
       });
-
+  
       if (!response.ok) {
+        if (response.status === 429) {
+          const { retry_after } = await response.json();
+          toast.error(
+            `Too many requests. Please wait ${Math.ceil(retry_after)} seconds before trying again.`
+          );
+          return;
+        }
+  
         const error = await response.json();
         throw new Error(error.error || "Failed to submit feedback");
       }
-
+  
       toast.success("Thank you for your feedback!");
       setFeedback("");
       setOpen(false);
-    } catch (error: unknown) { // Using unknown instead of any for better type safety
+    } catch (error: unknown) {
       console.error("Error submitting feedback:", error);
       toast.error(
         error instanceof Error ? error.message : "Failed to submit feedback"