WC-3584 Deny requests to the user worker when over free tier limits

Returns an html page (included as direct module, via esbuild) with a 429
status code, mirroring the current free tier limiting behavior. It also
sets a new field in our analytics so we can observe free tier invocation
denials.

This page can evolve as we need it to, this is just my first pass at the
response.

Author: matthewdavidrodgers

packages/workers-shared/router-worker/src/analytics.ts

@@ -33,6 +33,8 @@ type Data = {
 	userWorkerAhead?: boolean;
 	// double6 - Routing performed based on the _routes.json (if provided)
 	staticRoutingDecision?: STATIC_ROUTING_DECISION;
+	// double7 - User worker invocation denied due to free tier limiting
+	userWorkerFreeTierLimiting?: boolean;
 
 	// -- Blobs --
 	// blob1 - Hostname of the request
@@ -88,6 +90,7 @@ export class Analytics {
 					? -1
 					: Number(this.data.userWorkerAhead),
 				this.data.staticRoutingDecision ?? STATIC_ROUTING_DECISION.NOT_PROVIDED, // double6
+				this.data.userWorkerFreeTierLimiting ? 1 : 0, // double7
 			],
 			blobs: [
 				this.data.hostname?.substring(0, 256), // blob1 - trim to 256 bytes

packages/workers-shared/router-worker/src/limited-response.html

@@ -0,0 +1,21 @@
+<html>
+	<head>
+		<title>This website is temporarily limited</title>
+	</head>
+	<body>
+		<h1>This website has been temporarily rate limited</h1>
+		<p>
+			You cannot access this site because the owner has reached their plan
+			limits. Check back later once traffic has gone down.
+		</p>
+		<p>
+			If you are owner of this website, prevent this from happening again by
+			upgrading your plan on the
+			<a
+				href="https://dash.cloudflare.com/?account=workers/plans"
+				target="_blank"
+				>Cloudflare Workers dashboard</a
+			>.
+		</p>
+	</body>
+</html>

packages/workers-shared/router-worker/src/worker.ts

@@ -4,7 +4,8 @@ import { setupSentry } from "../../utils/sentry";
 import { mockJaegerBinding } from "../../utils/tracing";
 import { Analytics, DISPATCH_TYPE, STATIC_ROUTING_DECISION } from "./analytics";
 import { applyConfigurationDefaults } from "./configuration";
-import type AssetWorker from "../../asset-worker";
+import limitedResponse from "./limited-response.html";
+import type AssetWorker from "../../asset-worker/src/worker";
 import type {
 	EyeballRouterConfig,
 	JaegerTracing,
@@ -90,6 +91,15 @@ export default {
 						"Fetch for user worker without having a user worker binding"
 					);
 				}
+				if (eyeballConfig.limitedAssetsOnly) {
+					analytics.setData({ userWorkerFreeTierLimiting: true });
+					return new Response(limitedResponse, {
+						status: 429,
+						headers: {
+							"Content-Type": "text/html",
+						},
+					});
+				}
 				analytics.setData({ dispatchtype: DISPATCH_TYPE.WORKER });
 				userWorkerInvocation = true;
 				return env.JAEGER.enterSpan("dispatch_worker", async (span) => {

packages/workers-shared/router-worker/tests/index.test.ts

@@ -246,4 +246,165 @@ describe("unit tests", async () => {
 		const response = await worker.fetch(request, env, ctx);
 		expect(await response.text()).toEqual("hello from user worker");
 	});
+
+	describe("free tier limiting", () => {
+		it("returns fetch from asset worker for assets", async () => {
+			const request = new Request("https://example.com/asset");
+			const ctx = createExecutionContext();
+
+			const env = {
+				CONFIG: {
+					has_user_worker: true,
+				},
+				EYEBALL_CONFIG: { limitedAssetsOnly: true },
+				USER_WORKER: {
+					async fetch(_: Request): Promise<Response> {
+						return new Response("hello from user worker");
+					},
+				},
+				ASSET_WORKER: {
+					async fetch(_: Request): Promise<Response> {
+						return new Response("hello from asset worker");
+					},
+					async unstable_canFetch(_: Request): Promise<boolean> {
+						return true;
+					},
+				},
+			} as Env;
+
+			const response = await worker.fetch(request, env, ctx);
+			expect(await response.text()).toEqual("hello from asset worker");
+		});
+
+		it("returns error page instead of user worker when no asset found", async () => {
+			const request = new Request("https://example.com/asset");
+			const ctx = createExecutionContext();
+
+			const env = {
+				CONFIG: {
+					has_user_worker: true,
+				},
+				EYEBALL_CONFIG: { limitedAssetsOnly: true },
+				USER_WORKER: {
+					async fetch(_: Request): Promise<Response> {
+						return new Response("hello from user worker");
+					},
+				},
+				ASSET_WORKER: {
+					async fetch(_: Request): Promise<Response> {
+						return new Response("hello from asset worker");
+					},
+					async unstable_canFetch(_: Request): Promise<boolean> {
+						return false;
+					},
+				},
+			} as Env;
+
+			const response = await worker.fetch(request, env, ctx);
+			expect(response.status).toEqual(429);
+			const text = await response.text();
+			expect(text).not.toEqual("hello from user worker");
+			expect(text).toContain("This website has been temporarily rate limited");
+		});
+
+		it("returns error page instead of user worker for invoke_user_worker_ahead_of_assets", async () => {
+			const request = new Request("https://example.com/asset");
+			const ctx = createExecutionContext();
+
+			const env = {
+				CONFIG: {
+					has_user_worker: true,
+					invoke_user_worker_ahead_of_assets: true,
+				},
+				EYEBALL_CONFIG: { limitedAssetsOnly: true },
+				USER_WORKER: {
+					async fetch(_: Request): Promise<Response> {
+						return new Response("hello from user worker");
+					},
+				},
+				ASSET_WORKER: {
+					async fetch(_: Request): Promise<Response> {
+						return new Response("hello from asset worker");
+					},
+					async unstable_canFetch(_: Request): Promise<boolean> {
+						return true;
+					},
+				},
+			} as Env;
+
+			const response = await worker.fetch(request, env, ctx);
+			expect(response.status).toEqual(429);
+			const text = await response.text();
+			expect(text).not.toEqual("hello from user worker");
+			expect(text).toContain("This website has been temporarily rate limited");
+		});
+
+		it("returns error page instead of user worker for include rules", async () => {
+			const request = new Request("https://example.com/api/asset");
+			const ctx = createExecutionContext();
+
+			const env = {
+				CONFIG: {
+					has_user_worker: true,
+					static_routing: {
+						version: 1,
+						include: ["/api/*"],
+					},
+				},
+				EYEBALL_CONFIG: { limitedAssetsOnly: true },
+				USER_WORKER: {
+					async fetch(_: Request): Promise<Response> {
+						return new Response("hello from user worker");
+					},
+				},
+				ASSET_WORKER: {
+					async fetch(_: Request): Promise<Response> {
+						return new Response("hello from asset worker");
+					},
+					async unstable_canFetch(_: Request): Promise<boolean> {
+						return true;
+					},
+				},
+			} as Env;
+
+			const response = await worker.fetch(request, env, ctx);
+			expect(response.status).toEqual(429);
+			const text = await response.text();
+			expect(text).not.toEqual("hello from user worker");
+			expect(text).toContain("This website has been temporarily rate limited");
+		});
+
+		it("returns fetch from asset worker for exclude rules", async () => {
+			const request = new Request("https://example.com/api/asset");
+			const ctx = createExecutionContext();
+
+			const env = {
+				CONFIG: {
+					has_user_worker: true,
+					static_routing: {
+						version: 1,
+						include: ["/api/*"],
+						exclude: ["/api/asset"],
+					},
+				},
+				EYEBALL_CONFIG: { limitedAssetsOnly: true },
+				USER_WORKER: {
+					async fetch(_: Request): Promise<Response> {
+						return new Response("hello from user worker");
+					},
+				},
+				ASSET_WORKER: {
+					async fetch(_: Request): Promise<Response> {
+						return new Response("hello from asset worker");
+					},
+					async unstable_canFetch(_: Request): Promise<boolean> {
+						return true;
+					},
+				},
+			} as Env;
+
+			const response = await worker.fetch(request, env, ctx);
+			expect(await response.text()).toEqual("hello from asset worker");
+		});
+	});
 });

packages/workers-shared/router-worker/types.d.ts

@@ -0,0 +1,4 @@
+declare module "*.html" {
+	const content: string;
+	export default content;
+}