AC-1271: Add rate limiting for payment information endpoint and mutation

Author: arhiopterecs

app/code/Magento/Quote/Model/Backpressure/OrderLimitConfigManager.php

@@ -11,10 +11,7 @@
 use Magento\Framework\App\Backpressure\ContextInterface;
 use Magento\Framework\App\Backpressure\SlidingWindow\LimitConfig;
 use Magento\Framework\App\Backpressure\SlidingWindow\LimitConfigManagerInterface;
-use Magento\Framework\App\Backpressure\SlidingWindow\RequestLoggerInterface;
 use Magento\Framework\App\Config\ScopeConfigInterface;
-use Magento\Framework\App\DeploymentConfig;
-use Magento\Framework\Exception\FileSystemException;
 use Magento\Framework\Exception\RuntimeException;
 use Magento\Store\Model\ScopeInterface;
 
@@ -30,21 +27,11 @@ class OrderLimitConfigManager implements LimitConfigManagerInterface
      */
     private ScopeConfigInterface $config;
 
-    /**
-     * @var DeploymentConfig
-     */
-    private DeploymentConfig $deploymentConfig;
-
     /**
      * @param ScopeConfigInterface $config
-     * @param DeploymentConfig $deploymentConfig
      */
-    public function __construct(
-        ScopeConfigInterface $config,
-        DeploymentConfig $deploymentConfig
-    ) {
+    public function __construct(ScopeConfigInterface $config) {
         $this->config = $config;
-        $this->deploymentConfig = $deploymentConfig;
     }
 
     /**
@@ -73,22 +60,10 @@ public function readLimit(ContextInterface $context): LimitConfig
      * Checks if enforcement enabled for the current store
      *
      * @return bool
-     * @throws RuntimeException
-     * @throws FileSystemException
      */
     public function isEnforcementEnabled(): bool
     {
-        $loggerType = $this->deploymentConfig->get(RequestLoggerInterface::CONFIG_PATH_BACKPRESSURE_LOGGER);
-        if (!$loggerType) {
-            return false;
-        }
-
-        $enabled = $this->config->isSetFlag('sales/backpressure/enabled', ScopeInterface::SCOPE_STORE);
-        if (!$enabled) {
-            return false;
-        }
-
-        return true;
+        return $this->config->isSetFlag('sales/backpressure/enabled', ScopeInterface::SCOPE_STORE);
     }
 
     /**

dev/tests/integration/testsuite/Magento/Framework/App/Backpressure/SlidingWindow/CacheRequestLoggerTest.php renamed to dev/tests/integration/testsuite/Magento/Framework/App/Backpressure/SlidingWindow/RedisRequestLoggerTest.php

@@ -16,7 +16,7 @@
 /**
  *  Tests CacheRequestLogger class
  */
-class CacheRequestLoggerTest extends TestCase
+class RedisRequestLoggerTest extends TestCase
 {
     /**
      * @var RedisRequestLogger

lib/internal/Magento/Framework/App/Backpressure/SlidingWindow/RedisRequestLogger.php

@@ -8,98 +8,51 @@
 namespace Magento\Framework\App\Backpressure\SlidingWindow;
 
 use Magento\Framework\App\Backpressure\ContextInterface;
-use Credis_Client;
 use Magento\Framework\App\DeploymentConfig;
 use Magento\Framework\Exception\FileSystemException;
 use Magento\Framework\Exception\RuntimeException;
+use Magento\Framework\App\Backpressure\SlidingWindow\RedisRequestLogger\RedisClient;
 
 /**
  * Logging requests to Redis
  */
 class RedisRequestLogger implements RequestLoggerInterface
 {
-    /**
-     * Keys for Redis settings
-     */
-    public const KEY_HOST = 'host';
-    public const KEY_PORT = 'port';
-    public const KEY_TIMEOUT = 'timeout';
-    public const KEY_PERSISTENT = 'persistent';
-    public const KEY_DB = 'db';
-    public const KEY_PASSWORD = 'password';
-    public const KEY_USER = 'user';
-
-    /**
-     * Configuration paths for Redis settings
-     */
-    public const CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_SERVER = 'backpressure/logger/options/server';
-    public const CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PORT = 'backpressure/logger/options/port';
-    public const CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_TIMEOUT = 'backpressure/logger/options/timeout';
-    public const CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PERSISTENT = 'backpressure/logger/options/persistent';
-    public const CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_DB = 'backpressure/logger/options/db';
-    public const CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PASSWORD = 'backpressure/logger/options/password';
-    public const CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_USER = 'backpressure/logger/options/user';
-    public const CONFIG_PATH_BACKPRESSURE_LOGGER_ID_PREFIX = 'backpressure/logger/id-prefix';
-
     /**
      * Identifier for Redis Logger type
      */
-    public const VALUE_BACKPRESSURE_LOGGER_REDIS = 'redis';
+    public const BACKPRESSURE_LOGGER_REDIS = 'redis';
 
     /**
-     * Redis default settings
+     * Default prefix id
      */
-    public const DEFAULT_REDIS_CONFIG_VALUES = [
-        self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_SERVER => '127.0.0.1',
-        self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PORT => 6379,
-        self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_TIMEOUT => null,
-        self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PERSISTENT => '',
-        self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_DB => 3,
-        self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PASSWORD => null,
-        self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_USER => null,
-    ];
+    private const DEFAULT_PREFIX_ID = 'reqlog';
 
     /**
-     * Config map
+     * Config path for backpressure logger id prefix
      */
-    public const KEY_CONFIG_PATH_MAP = [
-        self::KEY_HOST => self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_SERVER,
-        self::KEY_PORT => self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PORT,
-        self::KEY_TIMEOUT => self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_TIMEOUT,
-        self::KEY_PERSISTENT => self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PERSISTENT,
-        self::KEY_DB => self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_DB,
-        self::KEY_PASSWORD => self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PASSWORD,
-        self::KEY_USER => self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_USER,
-    ];
+    public const CONFIG_PATH_BACKPRESSURE_LOGGER_ID_PREFIX = 'backpressure/logger/id-prefix';
 
     /**
-     * @var Credis_Client
+     * @var RedisClient
      */
-    private Credis_Client $credisClient;
+    private $redisClient;
 
     /**
-     * @var string
+     * @var DeploymentConfig
      */
-    private string $prefixId;
+    private $deploymentConfig;
 
     /**
-     * @param DeploymentConfig $config
-     * @throws FileSystemException
-     * @throws RuntimeException
+     * @param RedisClient $redisClient
+     * @param DeploymentConfig $deploymentConfig
      */
-    public function __construct(DeploymentConfig $config)
-    {
-        $this->credisClient = new Credis_Client(
-            $this->getHost($config),
-            $this->getPort($config),
-            $this->getTimeout($config),
-            $this->getPersistent($config),
-            $this->getDb($config),
-            $this->getPassword($config),
-            $this->getUser($config)
-        );
-
-        $this->prefixId = $config->get(self::CONFIG_PATH_BACKPRESSURE_LOGGER_ID_PREFIX, '');
+    public function __construct(
+        RedisClient $redisClient,
+        DeploymentConfig $deploymentConfig
+    ) {
+        $this->redisClient = $redisClient;
+        $this->deploymentConfig = $deploymentConfig;
     }
 
     /**
@@ -108,20 +61,18 @@ public function __construct(DeploymentConfig $config)
     public function incrAndGetFor(ContextInterface $context, int $timeSlot, int $discardAfter): int
     {
         $id = $this->generateId($context, $timeSlot);
-        $redis = $this->credisClient->pipeline();
-
-        $redis->incrBy($id, 1);
-        $redis->expireAt($id, time() + $discardAfter);
+        $this->redisClient->incrBy($id, 1);
+        $this->redisClient->expireAt($id, time() + $discardAfter);
 
-        return (int)$redis->exec()[0];
+        return (int)$this->redisClient->exec()[0];
     }
 
     /**
      * @inheritDoc
      */
     public function getFor(ContextInterface $context, int $timeSlot): ?int
     {
-        $value = $this->credisClient->get($this->generateId($context, $timeSlot));
+        $value = $this->redisClient->get($this->generateId($context, $timeSlot));
 
         return $value ? (int)$value : null;
     }
@@ -135,122 +86,26 @@ public function getFor(ContextInterface $context, int $timeSlot): ?int
      */
     private function generateId(ContextInterface $context, int $timeSlot): string
     {
-        return $this->prefixId
+        return $this->getPrefixId()
             . $context->getTypeId()
             . $context->getIdentityType()
             . $context->getIdentity()
             . $timeSlot;
     }
 
     /**
-     * Returns Redis host
-     *
-     * @param DeploymentConfig $config
-     * @return string
-     * @throws FileSystemException
-     * @throws RuntimeException
-     */
-    private function getHost(DeploymentConfig $config): string
-    {
-        return $config->get(
-            self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_SERVER,
-            self::DEFAULT_REDIS_CONFIG_VALUES[self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_SERVER]
-        );
-    }
-
-    /**
-     * Returns Redis port
-     *
-     * @param DeploymentConfig $config
-     * @return int
-     * @throws FileSystemException
-     * @throws RuntimeException
-     */
-    private function getPort(DeploymentConfig $config): int
-    {
-        return (int)$config->get(
-            self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PORT,
-            self::DEFAULT_REDIS_CONFIG_VALUES[self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PORT]
-        );
-    }
-
-    /**
-     * Returns Redis timeout
+     * Returns prefix id
      *
-     * @param DeploymentConfig $config
-     * @return float|null
-     * @throws FileSystemException
-     * @throws RuntimeException
-     */
-    private function getTimeout(DeploymentConfig $config): ?float
-    {
-        return (float)$config->get(
-            self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_TIMEOUT,
-            self::DEFAULT_REDIS_CONFIG_VALUES[self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_TIMEOUT]
-        );
-    }
-
-    /**
-     * Returns Redis persistent
-     *
-     * @param DeploymentConfig $config
      * @return string
-     * @throws FileSystemException
-     * @throws RuntimeException
-     */
-    private function getPersistent(DeploymentConfig $config): string
-    {
-        return $config->get(
-            self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PERSISTENT,
-            self::DEFAULT_REDIS_CONFIG_VALUES[self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PERSISTENT]
-        );
-    }
-
-    /**
-     * Returns Redis db
-     *
-     * @param DeploymentConfig $config
-     * @return int
-     * @throws FileSystemException
-     * @throws RuntimeException
-     */
-    private function getDb(DeploymentConfig $config): int
-    {
-        return (int)$config->get(
-            self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_DB,
-            self::DEFAULT_REDIS_CONFIG_VALUES[self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_DB]
-        );
-    }
-
-    /**
-     * Returns Redis password
-     *
-     * @param DeploymentConfig $config
-     * @return string|null
-     * @throws FileSystemException
-     * @throws RuntimeException
-     */
-    private function getPassword(DeploymentConfig $config): ?string
-    {
-        return $config->get(
-            self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PASSWORD,
-            self::DEFAULT_REDIS_CONFIG_VALUES[self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_PASSWORD]
-        );
-    }
-
-    /**
-     * Returns Redis user
-     *
-     * @param DeploymentConfig $config
-     * @return string|null
-     * @throws FileSystemException
-     * @throws RuntimeException
      */
-    private function getUser(DeploymentConfig $config): ?string
+    private function getPrefixId(): string
     {
-        return $config->get(
-            self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_USER,
-            self::DEFAULT_REDIS_CONFIG_VALUES[self::CONFIG_PATH_BACKPRESSURE_LOGGER_REDIS_USER]
-        );
+        try {
+            return (string)$this->deploymentConfig->get(
+                self::CONFIG_PATH_BACKPRESSURE_LOGGER_ID_PREFIX,
+                self::DEFAULT_PREFIX_ID);
+        } catch (RuntimeException | FileSystemException $e) {
+            return self::DEFAULT_PREFIX_ID;
+        }
     }
 }