npm - create-tigra - Versions diffs - 1.1.0 → 2.0.1 - Mend

create-tigra 1.1.0 → 2.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (243) hide show

package/LICENSE +21 -21
package/README.md +80 -87
package/bin/create-tigra.js +259 -308
package/package.json +49 -41
package/template/_claude/QUICK_REFERENCE.md +193 -0
package/template/_claude/README.md +53 -0
package/template/_claude/commands/create-client.md +881 -0
package/template/_claude/commands/create-server.md +383 -0
package/template/_claude/rules/client/01-project-structure.md +133 -0
package/template/_claude/rules/client/02-components-and-types.md +146 -0
package/template/_claude/rules/client/03-data-and-state.md +156 -0
package/template/_claude/rules/client/04-design-system.md +185 -0
package/template/_claude/rules/client/05-security.md +55 -0
package/template/_claude/rules/client/06-ux-checklist.md +81 -0
package/template/_claude/rules/client/core.md +42 -0
package/template/_claude/rules/global/core.md +77 -0
package/template/_claude/rules/server/core.md +50 -0
package/template/_claude/rules/server/database.md +124 -0
package/template/_claude/rules/server/project-conventions.md +150 -0
package/template/_claude/rules/server/response-handling.md +144 -0
package/template/client/.env.example +5 -0
package/template/client/README.md +36 -0
package/template/client/components.json +23 -0
package/template/client/eslint.config.mjs +18 -0
package/template/client/next.config.ts +34 -0
package/template/client/package.json +44 -0
package/template/client/postcss.config.mjs +7 -0
package/template/client/src/app/(auth)/layout.tsx +18 -0
package/template/client/src/app/(auth)/login/page.tsx +13 -0
package/template/client/src/app/(auth)/register/page.tsx +13 -0
package/template/client/src/app/(main)/dashboard/page.tsx +22 -0
package/template/client/src/app/(main)/layout.tsx +11 -0
package/template/client/src/app/error.tsx +27 -0
package/template/client/src/app/favicon.ico +0 -0
package/template/client/src/app/globals.css +145 -0
package/template/client/src/app/layout.tsx +36 -0
package/template/client/src/app/loading.tsx +11 -0
package/template/client/src/app/not-found.tsx +23 -0
package/template/client/src/app/page.tsx +45 -0
package/template/client/src/app/providers.tsx +43 -0
package/template/client/src/components/common/ConfirmDialog.tsx +56 -0
package/template/client/src/components/common/EmptyState.tsx +31 -0
package/template/client/src/components/common/LoadingSpinner.tsx +30 -0
package/template/client/src/components/common/Pagination.tsx +55 -0
package/template/client/src/components/layout/Footer.tsx +17 -0
package/template/client/src/components/layout/Header.tsx +173 -0
package/template/client/src/components/layout/MainLayout.tsx +18 -0
package/template/client/src/components/ui/alert-dialog.tsx +196 -0
package/template/client/src/components/ui/badge.tsx +48 -0
package/template/client/src/components/ui/button.tsx +64 -0
package/template/client/src/components/ui/card.tsx +92 -0
package/template/client/src/components/ui/input.tsx +21 -0
package/template/client/src/components/ui/label.tsx +24 -0
package/template/client/src/components/ui/select.tsx +190 -0
package/template/client/src/components/ui/skeleton.tsx +13 -0
package/template/client/src/components/ui/table.tsx +116 -0
package/template/client/src/features/auth/components/AuthInitializer.tsx +55 -0
package/template/client/src/features/auth/components/LoginForm.tsx +107 -0
package/template/client/src/features/auth/components/RegisterForm.tsx +178 -0
package/template/client/src/features/auth/hooks/useAuth.ts +84 -0
package/template/client/src/features/auth/services/auth.service.ts +52 -0
package/template/client/src/features/auth/store/authSlice.ts +38 -0
package/template/client/src/features/auth/types/auth.types.ts +32 -0
package/template/client/src/hooks/useDebounce.ts +14 -0
package/template/client/src/hooks/useLocalStorage.ts +55 -0
package/template/client/src/hooks/useMediaQuery.ts +27 -0
package/template/client/src/lib/api/api.types.ts +34 -0
package/template/client/src/lib/api/axios.config.ts +98 -0
package/template/client/src/lib/constants/api-endpoints.ts +18 -0
package/template/client/src/lib/constants/app.constants.ts +12 -0
package/template/client/src/lib/constants/routes.ts +9 -0
package/template/client/src/lib/utils/error.ts +32 -0
package/template/client/src/lib/utils/format.ts +37 -0
package/template/client/src/lib/utils/security.ts +34 -0
package/template/client/src/lib/utils.ts +6 -0
package/template/client/src/middleware.ts +57 -0
package/template/client/src/store/hooks.ts +7 -0
package/template/client/src/store/index.ts +12 -0
package/template/client/src/types/index.ts +3 -0
package/template/client/tsconfig.json +34 -0
package/template/gitignore +34 -0
package/template/server/.dockerignore +66 -0
package/template/server/.env.example +96 -69
package/template/server/.env.production.example +90 -0
package/template/server/Dockerfile +94 -0
package/template/server/docker-compose.yml +82 -111
package/template/server/docs/logging.md +62 -0
package/template/server/eslint.config.mjs +17 -0
package/template/server/package.json +68 -81
package/template/server/phpmyadmin-config.php +26 -0
package/template/server/postman_collection.json +666 -0
package/template/server/prisma/schema.prisma +77 -93
package/template/server/prisma/seed.ts +46 -142
package/template/server/scripts/flush-redis.ts +41 -0
package/template/server/src/app.ts +243 -71
package/template/server/src/config/env.ts +67 -94
package/template/server/src/libs/auth.ts +88 -0
package/template/server/src/libs/cleanup.ts +35 -0
package/template/server/src/libs/cookies.ts +46 -0
package/template/server/src/libs/logger.ts +33 -60
package/template/server/src/libs/monitoring.ts +205 -0
package/template/server/src/libs/password.ts +38 -0
package/template/server/src/libs/prisma.ts +68 -0
package/template/server/src/libs/redis.ts +60 -79
package/template/server/src/libs/requestLogger.ts +66 -0
package/template/server/src/libs/storage/file-storage.service.ts +211 -0
package/template/server/src/libs/storage/file-validator.ts +97 -0
package/template/server/src/libs/storage/filename-sanitizer.ts +71 -0
package/template/server/src/libs/storage/image-optimizer.service.ts +144 -0
package/template/server/src/modules/auth/__tests__/auth.service.test.ts +365 -0
package/template/server/src/modules/auth/auth.controller.ts +90 -141
package/template/server/src/modules/auth/auth.repo.ts +120 -218
package/template/server/src/modules/auth/auth.routes.ts +96 -83
package/template/server/src/modules/auth/auth.schemas.ts +35 -137
package/template/server/src/modules/auth/auth.service.ts +286 -329
package/template/server/src/modules/auth/session.repo.ts +110 -0
package/template/server/src/modules/users/users.controller.ts +120 -0
package/template/server/src/modules/users/users.repo.ts +77 -0
package/template/server/src/modules/users/users.routes.ts +89 -0
package/template/server/src/modules/users/users.schemas.ts +21 -0
package/template/server/src/modules/users/users.service.ts +169 -0
package/template/server/src/server.ts +58 -139
package/template/server/src/shared/errors/AppError.ts +21 -0
package/template/server/src/shared/errors/errors.ts +43 -0
package/template/server/src/shared/responses/paginatedResponse.ts +38 -0
package/template/server/src/shared/responses/successResponse.ts +17 -0
package/template/server/src/shared/schemas/pagination.schema.ts +12 -0
package/template/server/src/shared/types/index.ts +26 -0
package/template/server/src/test/setup.ts +74 -38
package/template/server/tsconfig.json +27 -89
package/template/server/uploads/avatars/.gitkeep +1 -0
package/template/server/vitest.config.ts +43 -98
package/template/.agent/rules/client/01-project-structure.md +0 -326
package/template/.agent/rules/client/02-component-patterns.md +0 -249
package/template/.agent/rules/client/03-typescript-rules.md +0 -226
package/template/.agent/rules/client/04-state-management.md +0 -474
package/template/.agent/rules/client/05-api-integration.md +0 -129
package/template/.agent/rules/client/06-forms-validation.md +0 -129
package/template/.agent/rules/client/07-common-patterns.md +0 -150
package/template/.agent/rules/client/08-color-system.md +0 -93
package/template/.agent/rules/client/09-security-rules.md +0 -97
package/template/.agent/rules/client/10-testing-strategy.md +0 -370
package/template/.agent/rules/global/ai-edit-safety.md +0 -38
package/template/.agent/rules/server/01-db-and-migrations.md +0 -242
package/template/.agent/rules/server/02-general-rules.md +0 -111
package/template/.agent/rules/server/03-migrations.md +0 -20
package/template/.agent/rules/server/04-pagination.md +0 -130
package/template/.agent/rules/server/05-project-conventions.md +0 -71
package/template/.agent/rules/server/06-response-handling.md +0 -173
package/template/.agent/rules/server/07-testing-strategy.md +0 -506
package/template/.agent/rules/server/08-observability.md +0 -180
package/template/.agent/rules/server/10-background-jobs-v2.md +0 -185
package/template/.agent/rules/server/11-rate-limiting-v2.md +0 -210
package/template/.agent/rules/server/12-performance-optimization.md +0 -567
package/template/.claude/rules/client-01-project-structure.md +0 -327
package/template/.claude/rules/client-02-component-patterns.md +0 -250
package/template/.claude/rules/client-03-typescript-rules.md +0 -227
package/template/.claude/rules/client-04-state-management.md +0 -475
package/template/.claude/rules/client-05-api-integration.md +0 -130
package/template/.claude/rules/client-06-forms-validation.md +0 -130
package/template/.claude/rules/client-07-common-patterns.md +0 -151
package/template/.claude/rules/client-08-color-system.md +0 -94
package/template/.claude/rules/client-09-security-rules.md +0 -98
package/template/.claude/rules/client-10-testing-strategy.md +0 -371
package/template/.claude/rules/global-ai-edit-safety.md +0 -39
package/template/.claude/rules/server-01-db-and-migrations.md +0 -243
package/template/.claude/rules/server-02-general-rules.md +0 -112
package/template/.claude/rules/server-03-migrations.md +0 -21
package/template/.claude/rules/server-04-pagination.md +0 -131
package/template/.claude/rules/server-05-project-conventions.md +0 -72
package/template/.claude/rules/server-06-response-handling.md +0 -174
package/template/.claude/rules/server-07-testing-strategy.md +0 -507
package/template/.claude/rules/server-08-observability.md +0 -181
package/template/.claude/rules/server-10-background-jobs-v2.md +0 -186
package/template/.claude/rules/server-11-rate-limiting-v2.md +0 -211
package/template/.claude/rules/server-12-performance-optimization.md +0 -568
package/template/.cursor/rules/client-01-project-structure.mdc +0 -327
package/template/.cursor/rules/client-02-component-patterns.mdc +0 -250
package/template/.cursor/rules/client-03-typescript-rules.mdc +0 -227
package/template/.cursor/rules/client-04-state-management.mdc +0 -475
package/template/.cursor/rules/client-05-api-integration.mdc +0 -130
package/template/.cursor/rules/client-06-forms-validation.mdc +0 -130
package/template/.cursor/rules/client-07-common-patterns.mdc +0 -151
package/template/.cursor/rules/client-08-color-system.mdc +0 -94
package/template/.cursor/rules/client-09-security-rules.mdc +0 -98
package/template/.cursor/rules/client-10-testing-strategy.mdc +0 -371
package/template/.cursor/rules/global-ai-edit-safety.mdc +0 -39
package/template/.cursor/rules/server-01-db-and-migrations.mdc +0 -243
package/template/.cursor/rules/server-02-general-rules.mdc +0 -112
package/template/.cursor/rules/server-03-migrations.mdc +0 -21
package/template/.cursor/rules/server-04-pagination.mdc +0 -131
package/template/.cursor/rules/server-05-project-conventions.mdc +0 -72
package/template/.cursor/rules/server-06-response-handling.mdc +0 -174
package/template/.cursor/rules/server-07-testing-strategy.mdc +0 -507
package/template/.cursor/rules/server-08-observability.mdc +0 -181
package/template/.cursor/rules/server-09-api-documentation-v2.mdc +0 -169
package/template/.cursor/rules/server-10-background-jobs-v2.mdc +0 -186
package/template/.cursor/rules/server-11-rate-limiting-v2.mdc +0 -211
package/template/.cursor/rules/server-12-performance-optimization.mdc +0 -568
package/template/CLAUDE.md +0 -207
package/template/server/.tsc-aliasrc.json +0 -13
package/template/server/IMPORT_FIX_CHECKLIST.md +0 -98
package/template/server/IMPORT_FIX_COMPLETE.md +0 -89
package/template/server/README.md +0 -183
package/template/server/REMAINING_IMPORT_FIXES.md +0 -150
package/template/server/SECURITY.md +0 -190
package/template/server/Tigra-API.postman_collection.json +0 -733
package/template/server/biome.json +0 -42
package/template/server/scripts/fix-all-imports.ps1 +0 -52
package/template/server/scripts/fix-imports-reference.ps1 +0 -16
package/template/server/scripts/fix-imports.mjs +0 -55
package/template/server/scripts/setup-env.js +0 -50
package/template/server/scripts/wait-for-db.js +0 -60
package/template/server/src/hooks/request-timing.hook.ts +0 -26
package/template/server/src/libs/auth/authenticate.middleware.ts +0 -22
package/template/server/src/libs/auth/rbac.middleware.test.ts +0 -134
package/template/server/src/libs/auth/rbac.middleware.ts +0 -147
package/template/server/src/libs/db.ts +0 -76
package/template/server/src/libs/error-handler.ts +0 -89
package/template/server/src/libs/queue.ts +0 -79
package/template/server/src/modules/admin/admin.controller.ts +0 -122
package/template/server/src/modules/admin/admin.routes.ts +0 -62
package/template/server/src/modules/admin/admin.schemas.ts +0 -35
package/template/server/src/modules/admin/admin.service.ts +0 -167
package/template/server/src/modules/auth/auth.integration.test.ts +0 -150
package/template/server/src/modules/auth/auth.service.test.ts +0 -119
package/template/server/src/modules/auth/auth.types.ts +0 -97
package/template/server/src/modules/resources/resources.controller.ts +0 -218
package/template/server/src/modules/resources/resources.repo.ts +0 -253
package/template/server/src/modules/resources/resources.routes.ts +0 -116
package/template/server/src/modules/resources/resources.schemas.ts +0 -146
package/template/server/src/modules/resources/resources.service.ts +0 -218
package/template/server/src/modules/resources/resources.types.ts +0 -73
package/template/server/src/plugins/rate-limit.plugin.ts +0 -21
package/template/server/src/plugins/security.plugin.ts +0 -21
package/template/server/src/routes/health.routes.ts +0 -31
package/template/server/src/types/fastify.d.ts +0 -36
package/template/server/src/utils/errors.ts +0 -108
package/template/server/src/utils/pagination.ts +0 -120
package/template/server/src/utils/response.ts +0 -110
package/template/server/src/workers/file.worker.ts +0 -106
package/template/server/tsconfig.build.json +0 -30
package/template/server/tsconfig.test.json +0 -22

package/template/.claude/rules/server-10-background-jobs-v2.md DELETED Viewed

@@ -1,186 +0,0 @@
----
-trigger: always_on
-globs: "server/**/*"
----
-> **SCOPE**: These rules apply specifically to the **server** directory.
-# Background Jobs & Queue Processing
-## Stack
-```json
-{
-  "dependencies": {
-    "bullmq": "^5.0.0",
-    "ioredis": "^5.3.0"
-  }
-}
-```
-## Redis Setup
-```typescript
-// libs/redis.ts
-import Redis from 'ioredis';
-export const redis = new Redis({
-  host: process.env.REDIS_HOST || 'localhost',
-  port: parseInt(process.env.REDIS_PORT || '6379'),
-  maxRetriesPerRequest: null, // Required for BullMQ
-});
-```
-## Queue Setup
-```typescript
-// libs/queue.ts
-import { Queue, Worker, QueueEvents } from 'bullmq';
-import { redis } from './redis';
-export const emailQueue = new Queue('emails', {
-  connection: redis,
-  defaultJobOptions: {
-    attempts: 3,
-    backoff: { type: 'exponential', delay: 2000 },
-    removeOnComplete: { age: 3600, count: 100 },
-    removeOnFail: { age: 86400 },
-  },
-});
-```
-## Worker Pattern
-```typescript
-// workers/email.worker.ts
-import { Worker, Job } from 'bullmq';
-interface EmailJobData {
-  to: string;
-  subject: string;
-  body: string;
-}
-export const emailWorker = new Worker<EmailJobData>(
-  'emails',
-  async (job: Job<EmailJobData>) => {
-    const { to, subject, body } = job.data;
-    logger.info({ jobId: job.id, to }, 'Processing email');
-    await sendEmail({ to, subject, body });
-    return { success: true, sentAt: new Date().toISOString() };
-  },
-  {
-    connection: redis,
-    concurrency: 5,
-    limiter: { max: 100, duration: 60000 }, // 100 jobs/minute
-  }
-);
-```
-## Job Patterns
-### 1. Immediate Background Job
-```typescript
-// Add to queue (non-blocking)
-await emailQueue.add('welcome-email', {
-  to: user.email,
-  subject: 'Welcome!',
-  body: 'Thanks for signing up',
-});
-```
-### 2. Delayed Job
-```typescript
-// Send after 24 hours
-await emailQueue.add(
-  'reminder-email',
-  { to: user.email, subject: 'Reminder', body: 'Complete your profile' },
-  { delay: 24 * 60 * 60 * 1000 }
-);
-```
-### 3. Scheduled Job (Cron)
-```typescript
-// Daily at 2 AM
-await cleanupQueue.add(
-  'daily-cleanup',
-  {},
-  { repeat: { pattern: '0 2 * * *' } }
-);
-```
-### 4. Priority Job
-```typescript
-await paymentQueue.add(
-  'process-payment',
-  { orderId, amount },
-  { priority: 1 } // Lower = higher priority
-);
-```
-## Error Handling
-```typescript
-emailWorker.on('failed', (job, error) => {
-  logger.error({ jobId: job?.id, error }, 'Job failed');
-  // Move to dead letter queue after all retries
-  if (job && job.attemptsMade >= job.opts.attempts!) {
-    deadLetterQueue.add('failed-email', {
-      originalJob: job.data,
-      failedReason: error.message,
-    });
-  }
-});
-```
-## Graceful Shutdown
-```typescript
-// server.ts
-const workers = [emailWorker, fileWorker];
-async function gracefulShutdown() {
-  logger.info('Shutting down workers...');
-  await Promise.all(workers.map((w) => w.close()));
-  process.exit(0);
-}
-process.on('SIGTERM', gracefulShutdown);
-process.on('SIGINT', gracefulShutdown);
-```
-## Use Cases
-- **Email sending** (welcome, verification, notifications)
-- **File processing** (image thumbnails, video encoding)
-- **Report generation** (PDFs, exports)
-- **Data cleanup** (expired records, temp files)
-- **External API calls** (webhooks, third-party sync)
-## Best Practices
-### ✅ DO:
-- Use background jobs for slow operations (>1s)
-- Set appropriate retry strategies
-- Implement rate limiting for external APIs
-- Monitor job failures
-- Clean up old jobs
-### ❌ DON'T:
-- Block HTTP responses with heavy processing
-- Forget error handling
-- Skip monitoring
-- Use queues for everything (simple tasks can run inline)
-## Checklist
-- [ ] BullMQ and Redis installed
-- [ ] Queues created with retry config
-- [ ] Workers implemented with error handling
-- [ ] Graceful shutdown configured
-- [ ] Job monitoring in place
-- [ ] Dead letter queue for failures

package/template/.claude/rules/server-11-rate-limiting-v2.md DELETED Viewed

@@ -1,211 +0,0 @@
----
-trigger: always_on
-globs: "server/**/*"
----
-> **SCOPE**: These rules apply specifically to the **server** directory.
-# Rate Limiting & Throttling
-## Stack
-```json
-{
-  "dependencies": {
-    "@fastify/rate-limit": "^9.0.0",
-    "ioredis": "^5.3.0"
-  }
-}
-```
-## Basic Setup
-```typescript
-// app.ts
-import rateLimit from '@fastify/rate-limit';
-import { redis } from './libs/redis';
-await app.register(rateLimit, {
-  global: true,
-  max: 100,
-  timeWindow: '15 minutes',
-  redis,
-  nameSpace: 'rate-limit:',
-  addHeaders: {
-    'x-ratelimit-limit': true,
-    'x-ratelimit-remaining': true,
-    'x-ratelimit-reset': true,
-    'retry-after': true,
-  },
-  errorResponseBuilder: (request, context) => ({
-    success: false,
-    error: {
-      code: 'RATE_LIMIT_EXCEEDED',
-      message: `Rate limit exceeded. Retry in ${Math.ceil(context.ttl / 1000)}s.`,
-    },
-  }),
-});
-```
-## Per-Route Limits
-```typescript
-// Disable global, configure per route
-await app.register(rateLimit, { global: false, redis });
-// Strict limit for login
-app.post('/auth/login', {
-  config: {
-    rateLimit: {
-      max: 5,
-      timeWindow: '15 minutes',
-    },
-  },
-  handler: authController.login,
-});
-// Generous limit for authenticated routes
-app.get('/resources', {
-  preHandler: [app.authenticate],
-  config: {
-    rateLimit: {
-      max: 1000,
-      timeWindow: '15 minutes',
-    },
-  },
-  handler: resourceController.listResources,
-});
-```
-## Custom Rate Limit Keys
-```typescript
-await app.register(rateLimit, {
-  redis,
-  keyGenerator: (request) => {
-    // Authenticated: rate limit by user ID
-    if (request.user) {
-      return `user:${request.user.id}`;
-    }
-    // Anonymous: rate limit by IP
-    return `ip:${request.ip}`;
-  },
-});
-```
-## User-Based Tiered Limits
-```typescript
-await app.register(rateLimit, {
-  redis,
-  max: async (request) => {
-    if (!request.user) return 100; // Anonymous
-    if (request.user.role === 'ADMIN') return 10000;
-    if (request.user.tier === 'PREMIUM') return 5000;
-    return 1000; // Standard
-  },
-});
-```
-## Rate Limit Tiers
-```typescript
-// lib/constants/rate-limits.ts
-export const RATE_LIMITS = {
-  LOGIN: { max: 5, timeWindow: '15 minutes' },
-  REGISTER: { max: 3, timeWindow: '1 hour' },
-  PASSWORD_RESET: { max: 3, timeWindow: '1 hour' },
-  PUBLIC: { max: 100, timeWindow: '15 minutes' },
-  AUTHENTICATED: { max: 1000, timeWindow: '15 minutes' },
-  PREMIUM: { max: 5000, timeWindow: '15 minutes' },
-  ADMIN: { max: 10000, timeWindow: '15 minutes' },
-  FILE_UPLOAD: { max: 10, timeWindow: '1 hour' },
-} as const;
-```
-## Monitoring
-```typescript
-await app.register(rateLimit, {
-  redis,
-  onExceeding: (request, key) => {
-    logger.warn({ key, ip: request.ip, url: request.url }, 'Approaching limit');
-  },
-  onExceeded: (request, key) => {
-    logger.error({ key, ip: request.ip, url: request.url }, 'Limit exceeded');
-  },
-});
-```
-## Whitelist IPs
-```typescript
-app.addHook('preHandler', async (request, reply) => {
-  const whitelistedIPs = ['127.0.0.1', '::1'];
-  if (whitelistedIPs.includes(request.ip)) {
-    // @ts-ignore
-    request.bypassRateLimit = true;
-  }
-});
-await app.register(rateLimit, {
-  redis,
-  skip: (request) => request.bypassRateLimit === true,
-});
-```
-## Check Rate Limit Status
-```typescript
-app.get('/me/rate-limit', {
-  preHandler: [app.authenticate],
-  handler: async (request, reply) => {
-    const key = `user:${request.user.id}`;
-    const current = await redis.get(`rate-limit:${key}`);
-    const ttl = await redis.ttl(`rate-limit:${key}`);
-    return {
-      limit: 1000,
-      used: parseInt(current || '0'),
-      remaining: 1000 - parseInt(current || '0'),
-      resetIn: ttl,
-    };
-  },
-});
-```
-## Strategy Summary
-| Endpoint | Max | Window | Key |
-|----------|-----|--------|-----|
-| Login | 5 | 15 min | IP |
-| Register | 3 | 1 hour | IP + email |
-| Public API | 100 | 15 min | IP |
-| Authenticated | 1000 | 15 min | User ID |
-| Premium | 5000 | 15 min | User ID |
-| Admin | 10000 | 15 min | User ID |
-## Best Practices
-### ✅ DO:
-- Use Redis for distributed rate limiting
-- Set stricter limits for auth endpoints
-- Return helpful error messages with retry time
-- Log rate limit violations
-- Add rate limit headers to responses
-- Whitelist localhost for testing
-### ❌ DON'T:
-- Use in-memory rate limiting in production
-- Apply same limits to all endpoints
-- Block users permanently without investigation
-- Forget to test rate limits
-## Checklist
-- [ ] Rate limiting configured with Redis
-- [ ] Per-route limits set appropriately
-- [ ] Custom error responses implemented
-- [ ] Rate limit headers enabled
-- [ ] Monitoring and logging in place
-- [ ] Whitelist configured for testing