PyPI - django-cfg - Versions diffs - 1.2.31__py3-none-any.whl → 1.3.1__py3-none-any.whl - Mend

django-cfg 1.2.31py3-none-any.whl → 1.3.1py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (256) hide show

django_cfg/__init__.py +1 -1
django_cfg/apps/api/health/views.py +4 -2
django_cfg/apps/knowbase/config/settings.py +16 -15
django_cfg/apps/payments/README.md +326 -0
django_cfg/apps/payments/admin/__init__.py +20 -10
django_cfg/apps/payments/admin/api_keys_admin.py +521 -237
django_cfg/apps/payments/admin/balance_admin.py +592 -297
django_cfg/apps/payments/admin/currencies_admin.py +526 -222
django_cfg/apps/payments/admin/filters.py +306 -199
django_cfg/apps/payments/admin/payments_admin.py +465 -70
django_cfg/apps/payments/admin/subscriptions_admin.py +578 -128
django_cfg/apps/payments/admin_interface/__init__.py +18 -0
django_cfg/apps/payments/admin_interface/templates/payments/base.html +162 -0
django_cfg/apps/payments/admin_interface/templates/payments/components/dev_tool_card.html +38 -0
django_cfg/apps/payments/admin_interface/templates/payments/components/loading_spinner.html +16 -0
django_cfg/apps/payments/admin_interface/templates/payments/components/notification.html +27 -0
django_cfg/apps/payments/admin_interface/templates/payments/components/provider_card.html +86 -0
django_cfg/apps/payments/admin_interface/templates/payments/components/status_card.html +39 -0
django_cfg/apps/payments/admin_interface/templates/payments/currency_converter.html +382 -0
django_cfg/apps/payments/admin_interface/templates/payments/payment_dashboard.html +300 -0
django_cfg/apps/payments/admin_interface/templates/payments/payment_form.html +303 -0
django_cfg/apps/payments/admin_interface/templates/payments/payment_list.html +382 -0
django_cfg/apps/payments/admin_interface/templates/payments/payment_status.html +500 -0
django_cfg/apps/payments/admin_interface/templates/payments/webhook_dashboard.html +594 -0
django_cfg/apps/payments/admin_interface/views/__init__.py +23 -0
django_cfg/apps/payments/admin_interface/views/payment_views.py +259 -0
django_cfg/apps/payments/admin_interface/views/webhook_dashboard.py +37 -0
django_cfg/apps/payments/apps.py +34 -9
django_cfg/apps/payments/config/__init__.py +28 -51
django_cfg/apps/payments/config/constance/__init__.py +22 -0
django_cfg/apps/payments/config/constance/config_service.py +123 -0
django_cfg/apps/payments/config/constance/fields.py +69 -0
django_cfg/apps/payments/config/constance/settings.py +160 -0
django_cfg/apps/payments/config/django_cfg_integration.py +202 -0
django_cfg/apps/payments/config/helpers.py +130 -0
django_cfg/apps/payments/management/__init__.py +1 -3
django_cfg/apps/payments/management/commands/__init__.py +1 -3
django_cfg/apps/payments/management/commands/manage_currencies.py +303 -151
django_cfg/apps/payments/management/commands/manage_providers.py +333 -160
django_cfg/apps/payments/middleware/__init__.py +3 -1
django_cfg/apps/payments/middleware/api_access.py +329 -222
django_cfg/apps/payments/middleware/rate_limiting.py +342 -152
django_cfg/apps/payments/middleware/usage_tracking.py +249 -240
django_cfg/apps/payments/migrations/0001_initial.py +708 -536
django_cfg/apps/payments/models/__init__.py +13 -18
django_cfg/apps/payments/models/api_keys.py +121 -43
django_cfg/apps/payments/models/balance.py +150 -115
django_cfg/apps/payments/models/base.py +68 -15
django_cfg/apps/payments/models/currencies.py +172 -148
django_cfg/apps/payments/models/managers/__init__.py +44 -0
django_cfg/apps/payments/models/managers/api_key_managers.py +329 -0
django_cfg/apps/payments/models/managers/balance_managers.py +599 -0
django_cfg/apps/payments/models/managers/currency_managers.py +385 -0
django_cfg/apps/payments/models/managers/payment_managers.py +511 -0
django_cfg/apps/payments/models/managers/subscription_managers.py +641 -0
django_cfg/apps/payments/models/payments.py +235 -285
django_cfg/apps/payments/models/subscriptions.py +257 -177
django_cfg/apps/payments/models/tariffs.py +147 -40
django_cfg/apps/payments/services/__init__.py +209 -56
django_cfg/apps/payments/services/cache/__init__.py +6 -6
django_cfg/apps/payments/services/cache/{simple_cache.py → cache_service.py} +112 -12
django_cfg/apps/payments/services/core/__init__.py +10 -6
django_cfg/apps/payments/services/core/balance_service.py +435 -360
django_cfg/apps/payments/services/core/base.py +166 -0
django_cfg/apps/payments/services/core/currency_service.py +478 -0
django_cfg/apps/payments/services/core/payment_service.py +346 -467
django_cfg/apps/payments/services/core/subscription_service.py +425 -481
django_cfg/apps/payments/services/core/webhook_service.py +410 -0
django_cfg/apps/payments/services/integrations/__init__.py +29 -0
django_cfg/apps/payments/services/integrations/ngrok_service.py +47 -0
django_cfg/apps/payments/services/integrations/providers_config.py +107 -0
django_cfg/apps/payments/services/providers/__init__.py +9 -14
django_cfg/apps/payments/services/providers/base.py +234 -174
django_cfg/apps/payments/services/providers/nowpayments.py +478 -0
django_cfg/apps/payments/services/providers/registry.py +367 -301
django_cfg/apps/payments/services/types/__init__.py +78 -0
django_cfg/apps/payments/services/types/data.py +177 -0
django_cfg/apps/payments/services/types/requests.py +150 -0
django_cfg/apps/payments/services/types/responses.py +156 -0
django_cfg/apps/payments/services/types/webhooks.py +232 -0
django_cfg/apps/payments/signals/__init__.py +33 -8
django_cfg/apps/payments/signals/api_key_signals.py +210 -129
django_cfg/apps/payments/signals/balance_signals.py +174 -0
django_cfg/apps/payments/signals/payment_signals.py +128 -103
django_cfg/apps/payments/signals/subscription_signals.py +194 -142
django_cfg/apps/payments/static/payments/css/components.css +380 -0
django_cfg/apps/payments/static/payments/css/dashboard.css +188 -0
django_cfg/apps/payments/static/payments/js/components.js +545 -0
django_cfg/apps/payments/static/payments/js/utils.js +412 -0
django_cfg/apps/payments/templatetags/__init__.py +1 -1
django_cfg/apps/payments/templatetags/payment_tags.py +466 -0
django_cfg/apps/payments/urls.py +45 -48
django_cfg/apps/payments/urls_admin.py +33 -42
django_cfg/apps/payments/views/api/__init__.py +101 -0
django_cfg/apps/payments/views/api/api_keys.py +387 -0
django_cfg/apps/payments/views/api/balances.py +381 -0
django_cfg/apps/payments/views/api/base.py +298 -0
django_cfg/apps/payments/views/api/currencies.py +402 -0
django_cfg/apps/payments/views/api/payments.py +415 -0
django_cfg/apps/payments/views/api/subscriptions.py +475 -0
django_cfg/apps/payments/views/api/webhooks.py +476 -0
django_cfg/apps/payments/views/serializers/__init__.py +99 -0
django_cfg/apps/payments/views/serializers/api_keys.py +424 -0
django_cfg/apps/payments/views/serializers/balances.py +300 -0
django_cfg/apps/payments/views/serializers/currencies.py +335 -0
django_cfg/apps/payments/views/serializers/payments.py +387 -0
django_cfg/apps/payments/views/serializers/subscriptions.py +429 -0
django_cfg/apps/payments/views/serializers/webhooks.py +137 -0
django_cfg/config.py +1 -1
django_cfg/core/config.py +40 -4
django_cfg/core/generation.py +25 -4
django_cfg/core/integration/README.md +363 -0
django_cfg/core/integration/__init__.py +47 -0
django_cfg/core/integration/commands_collector.py +239 -0
django_cfg/core/integration/display/__init__.py +15 -0
django_cfg/core/integration/display/base.py +157 -0
django_cfg/core/integration/display/ngrok.py +164 -0
django_cfg/core/integration/display/startup.py +815 -0
django_cfg/core/integration/url_integration.py +123 -0
django_cfg/core/integration/version_checker.py +160 -0
django_cfg/management/commands/auto_generate.py +4 -0
django_cfg/management/commands/check_settings.py +6 -0
django_cfg/management/commands/clear_constance.py +5 -2
django_cfg/management/commands/create_token.py +6 -0
django_cfg/management/commands/list_urls.py +6 -0
django_cfg/management/commands/migrate_all.py +6 -0
django_cfg/management/commands/migrator.py +3 -0
django_cfg/management/commands/rundramatiq.py +6 -0
django_cfg/management/commands/runserver_ngrok.py +51 -29
django_cfg/management/commands/script.py +6 -0
django_cfg/management/commands/show_config.py +12 -2
django_cfg/management/commands/show_urls.py +4 -0
django_cfg/management/commands/superuser.py +6 -0
django_cfg/management/commands/task_clear.py +4 -1
django_cfg/management/commands/task_status.py +3 -1
django_cfg/management/commands/test_email.py +3 -0
django_cfg/management/commands/test_telegram.py +6 -0
django_cfg/management/commands/test_twilio.py +6 -0
django_cfg/management/commands/tree.py +6 -0
django_cfg/management/commands/validate_config.py +155 -149
django_cfg/models/constance.py +31 -11
django_cfg/models/payments.py +175 -492
django_cfg/modules/django_logger.py +160 -146
django_cfg/modules/django_unfold/dashboard.py +64 -16
django_cfg/registry/core.py +1 -0
django_cfg/template_archive/django_sample.zip +0 -0
django_cfg/utils/smart_defaults.py +222 -571
django_cfg/utils/toolkit.py +51 -11
{django_cfg-1.2.31.dist-info → django_cfg-1.3.1.dist-info}/METADATA +4 -1
{django_cfg-1.2.31.dist-info → django_cfg-1.3.1.dist-info}/RECORD +153 -185
django_cfg/apps/payments/__init__.py +0 -8
django_cfg/apps/payments/admin/tariffs_admin.py +0 -199
django_cfg/apps/payments/config/module.py +0 -70
django_cfg/apps/payments/config/providers.py +0 -105
django_cfg/apps/payments/config/settings.py +0 -96
django_cfg/apps/payments/config/utils.py +0 -52
django_cfg/apps/payments/decorators.py +0 -291
django_cfg/apps/payments/management/commands/README.md +0 -146
django_cfg/apps/payments/management/commands/currency_stats.py +0 -304
django_cfg/apps/payments/managers/__init__.py +0 -23
django_cfg/apps/payments/managers/api_key_manager.py +0 -35
django_cfg/apps/payments/managers/balance_manager.py +0 -361
django_cfg/apps/payments/managers/currency_manager.py +0 -306
django_cfg/apps/payments/managers/payment_manager.py +0 -192
django_cfg/apps/payments/managers/subscription_manager.py +0 -37
django_cfg/apps/payments/managers/tariff_manager.py +0 -29
django_cfg/apps/payments/migrations/0002_network_providercurrency_and_more.py +0 -241
django_cfg/apps/payments/migrations/0003_add_usd_rate_cache.py +0 -30
django_cfg/apps/payments/models/events.py +0 -73
django_cfg/apps/payments/serializers/__init__.py +0 -57
django_cfg/apps/payments/serializers/api_keys.py +0 -51
django_cfg/apps/payments/serializers/balance.py +0 -59
django_cfg/apps/payments/serializers/currencies.py +0 -63
django_cfg/apps/payments/serializers/payments.py +0 -62
django_cfg/apps/payments/serializers/subscriptions.py +0 -71
django_cfg/apps/payments/serializers/tariffs.py +0 -56
django_cfg/apps/payments/services/billing/__init__.py +0 -8
django_cfg/apps/payments/services/cache/base.py +0 -30
django_cfg/apps/payments/services/core/fallback_service.py +0 -432
django_cfg/apps/payments/services/internal_types.py +0 -461
django_cfg/apps/payments/services/middleware/__init__.py +0 -8
django_cfg/apps/payments/services/monitoring/__init__.py +0 -22
django_cfg/apps/payments/services/monitoring/api_schemas.py +0 -76
django_cfg/apps/payments/services/monitoring/provider_health.py +0 -372
django_cfg/apps/payments/services/providers/cryptapi/__init__.py +0 -4
django_cfg/apps/payments/services/providers/cryptapi/config.py +0 -8
django_cfg/apps/payments/services/providers/cryptapi/models.py +0 -192
django_cfg/apps/payments/services/providers/cryptapi/provider.py +0 -439
django_cfg/apps/payments/services/providers/cryptomus/__init__.py +0 -4
django_cfg/apps/payments/services/providers/cryptomus/models.py +0 -176
django_cfg/apps/payments/services/providers/cryptomus/provider.py +0 -429
django_cfg/apps/payments/services/providers/cryptomus/provider_v2.py +0 -564
django_cfg/apps/payments/services/providers/models/__init__.py +0 -34
django_cfg/apps/payments/services/providers/models/currencies.py +0 -190
django_cfg/apps/payments/services/providers/nowpayments/__init__.py +0 -4
django_cfg/apps/payments/services/providers/nowpayments/models.py +0 -196
django_cfg/apps/payments/services/providers/nowpayments/provider.py +0 -380
django_cfg/apps/payments/services/providers/stripe/__init__.py +0 -4
django_cfg/apps/payments/services/providers/stripe/models.py +0 -184
django_cfg/apps/payments/services/providers/stripe/provider.py +0 -109
django_cfg/apps/payments/services/security/__init__.py +0 -34
django_cfg/apps/payments/services/security/error_handler.py +0 -635
django_cfg/apps/payments/services/security/payment_notifications.py +0 -342
django_cfg/apps/payments/services/security/webhook_validator.py +0 -474
django_cfg/apps/payments/static/payments/css/payments.css +0 -340
django_cfg/apps/payments/static/payments/js/notifications.js +0 -202
django_cfg/apps/payments/static/payments/js/payment-utils.js +0 -318
django_cfg/apps/payments/static/payments/js/theme.js +0 -86
django_cfg/apps/payments/tasks/__init__.py +0 -12
django_cfg/apps/payments/tasks/webhook_processing.py +0 -177
django_cfg/apps/payments/templates/admin/payments/currency/change_list.html +0 -50
django_cfg/apps/payments/templates/payments/base.html +0 -182
django_cfg/apps/payments/templates/payments/components/payment_card.html +0 -201
django_cfg/apps/payments/templates/payments/components/payment_qr_code.html +0 -109
django_cfg/apps/payments/templates/payments/components/progress_bar.html +0 -43
django_cfg/apps/payments/templates/payments/components/provider_stats.html +0 -40
django_cfg/apps/payments/templates/payments/components/status_badge.html +0 -34
django_cfg/apps/payments/templates/payments/components/status_overview.html +0 -148
django_cfg/apps/payments/templates/payments/dashboard.html +0 -258
django_cfg/apps/payments/templates/payments/dashboard_simple_test.html +0 -35
django_cfg/apps/payments/templates/payments/payment_create.html +0 -579
django_cfg/apps/payments/templates/payments/payment_detail.html +0 -373
django_cfg/apps/payments/templates/payments/payment_list.html +0 -354
django_cfg/apps/payments/templates/payments/stats.html +0 -261
django_cfg/apps/payments/templates/payments/test.html +0 -213
django_cfg/apps/payments/templatetags/payments_tags.py +0 -315
django_cfg/apps/payments/utils/__init__.py +0 -43
django_cfg/apps/payments/utils/billing_utils.py +0 -342
django_cfg/apps/payments/utils/config_utils.py +0 -239
django_cfg/apps/payments/utils/middleware_utils.py +0 -228
django_cfg/apps/payments/utils/validation_utils.py +0 -94
django_cfg/apps/payments/views/__init__.py +0 -63
django_cfg/apps/payments/views/api_key_views.py +0 -164
django_cfg/apps/payments/views/balance_views.py +0 -75
django_cfg/apps/payments/views/currency_views.py +0 -122
django_cfg/apps/payments/views/payment_views.py +0 -149
django_cfg/apps/payments/views/subscription_views.py +0 -135
django_cfg/apps/payments/views/tariff_views.py +0 -131
django_cfg/apps/payments/views/templates/__init__.py +0 -25
django_cfg/apps/payments/views/templates/ajax.py +0 -451
django_cfg/apps/payments/views/templates/base.py +0 -212
django_cfg/apps/payments/views/templates/dashboard.py +0 -60
django_cfg/apps/payments/views/templates/payment_detail.py +0 -102
django_cfg/apps/payments/views/templates/payment_management.py +0 -158
django_cfg/apps/payments/views/templates/qr_code.py +0 -174
django_cfg/apps/payments/views/templates/stats.py +0 -244
django_cfg/apps/payments/views/templates/utils.py +0 -181
django_cfg/apps/payments/views/webhook_views.py +0 -266
django_cfg/apps/payments/viewsets.py +0 -66
django_cfg/core/integration.py +0 -160
django_cfg/template_archive/.gitignore +0 -1
django_cfg/template_archive/__init__.py +0 -0
django_cfg/urls.py +0 -33
{django_cfg-1.2.31.dist-info → django_cfg-1.3.1.dist-info}/WHEEL +0 -0
{django_cfg-1.2.31.dist-info → django_cfg-1.3.1.dist-info}/entry_points.txt +0 -0
{django_cfg-1.2.31.dist-info → django_cfg-1.3.1.dist-info}/licenses/LICENSE +0 -0

django_cfg/apps/payments/middleware/rate_limiting.py CHANGED Viewed

@@ -1,206 +1,396 @@
 """
-Rate Limiting Middleware.
-Implements sliding window rate limiting using Redis.
+Rate Limiting Middleware for the Universal Payment System v2.0.
+Advanced rate limiting with sliding window algorithm and subscription-aware limits.
 """
-from django_cfg.modules.django_logger import get_logger
 import time
-from typing import Optional
-from django.http import JsonResponse, HttpRequest
+import json
+from typing import Optional, Dict, Any, Tuple
+from django.http import JsonResponse, HttpRequest, HttpResponse
 from django.utils.deprecation import MiddlewareMixin
-from django.conf import settings
 from django.utils import timezone
 from django.core.cache import cache
+from datetime import datetime, timedelta
-logger = get_logger("rate_limiting")
+from ..config.helpers import MiddlewareConfigHelper
+from django_cfg.modules.django_logger import get_logger
+logger = get_logger("rate_limiting_middleware")
 class RateLimitingMiddleware(MiddlewareMixin):
     """
-    Rate limiting middleware using sliding window algorithm.
+    Advanced Rate Limiting Middleware with sliding window algorithm.
     Features:
-    - Per-API-key rate limiting
-    - Per-IP rate limiting (fallback)
-    - Sliding window algorithm
-    - Redis-based with circuit breaker
-    - Configurable limits
+    - Sliding window rate limiting
+    - Subscription-aware rate limits
+    - Per-user and per-IP limiting
+    - Burst allowance
+    - Rate limit headers
+    - Redis-based distributed limiting
+    - Graceful degradation
     """
     def __init__(self, get_response=None):
         super().__init__(get_response)
-        # Default rate limits (can be overridden in settings)
-        self.default_limits = getattr(settings, 'PAYMENTS_RATE_LIMITS', {
-            'per_minute': 60,   # 60 requests per minute
-            'per_hour': 1000,   # 1000 requests per hour
-            'per_day': 10000,   # 10000 requests per day
-        })
-        # Paths exempt from rate limiting
-        self.exempt_paths = getattr(settings, 'PAYMENTS_RATE_LIMIT_EXEMPT_PATHS', [
-            '/admin/',
-            '/cfg/',
-        ])
+        # Load configuration from django-cfg
+        try:
+            middleware_config = MiddlewareConfigHelper.get_middleware_config()
+            # Configuration from django-cfg
+            self.enabled = middleware_config['rate_limiting_enabled']
+            self.default_limits = middleware_config['default_rate_limits']
+            self.cache_timeout = middleware_config['cache_timeouts']['rate_limit']
+            # Static defaults
+            self.strict_mode = True
+            self.burst_allowance = 0.5
+            self.window_size = 60  # seconds
+            self.window_precision = 10  # sub-windows
+            self.exempt_paths = [
+                '/api/health/',
+                '/admin/',
+                '/static/',
+                '/media/',
+            ]
+        except Exception as e:
+            logger.warning(f"Failed to load rate limiting config, using defaults: {e}")
+            # Fallback defaults
+            self.enabled = True
+            self.strict_mode = True
+            self.default_limits = {
+                'anonymous': 60,
+                'authenticated': 300,
+                'free': 100,
+                'basic': 500,
+                'premium': 2000,
+                'enterprise': 10000,
+            }
+            self.burst_allowance = 0.5
+            self.window_size = 60
+            self.window_precision = 10
+            self.exempt_paths = ['/api/health/', '/admin/']
+            self.cache_timeout = 300
-        # Enable/disable rate limiting
-        self.enabled = getattr(settings, 'PAYMENTS_RATE_LIMITING_ENABLED', True)
+        logger.info(f"Rate Limiting Middleware initialized", extra={
+            'enabled': self.enabled,
+            'default_limits': self.default_limits,
+            'window_size': self.window_size,
+            'burst_allowance': self.burst_allowance
+        })
     def process_request(self, request: HttpRequest) -> Optional[JsonResponse]:
-        """Process request for rate limiting."""
+        """
+        Process request for rate limiting.
+        Returns JsonResponse if rate limit exceeded, None to continue.
+        """
         if not self.enabled:
             return None
-        # Skip exempt paths
-        if self._is_exempt_path(request):
+        # Check if path is exempt
+        if request.path in self.exempt_paths:
             return None
-        # Get rate limiting key (API key or IP)
-        rate_key = self._get_rate_key(request)
-        if not rate_key:
-            return None
+        start_time = time.time()
-        # Get rate limits for this key
-        limits = self._get_rate_limits(request)
+        try:
+            # Determine rate limit for this request
+            rate_limit, limit_type = self._get_rate_limit(request)
+            # Get client identifier
+            client_id = self._get_client_identifier(request)
+            # Check rate limit
+            allowed, current_usage, reset_time = self._check_rate_limit(
+                client_id, rate_limit, limit_type
+            )
+            if not allowed:
+                # Rate limit exceeded
+                processing_time = (time.time() - start_time) * 1000
+                logger.warning(f"Rate limit exceeded", extra={
+                    'client_id': client_id,
+                    'limit_type': limit_type,
+                    'rate_limit': rate_limit,
+                    'current_usage': current_usage,
+                    'path': request.path,
+                    'processing_time_ms': round(processing_time, 2)
+                })
+                return self._create_rate_limit_response(
+                    rate_limit, current_usage, reset_time
+                )
+            # Add rate limit info to request
+            request.rate_limit_info = {
+                'limit': rate_limit,
+                'remaining': max(0, rate_limit - current_usage),
+                'reset_time': reset_time,
+                'limit_type': limit_type
+            }
+            # Log successful rate limit check
+            processing_time = (time.time() - start_time) * 1000
+            logger.debug(f"Rate limit check passed", extra={
+                'client_id': client_id,
+                'limit_type': limit_type,
+                'usage': current_usage,
+                'limit': rate_limit,
+                'processing_time_ms': round(processing_time, 2)
+            })
+            return None  # Continue processing
+        except Exception as e:
+            logger.error(f"Rate limiting error", extra={
+                'path': request.path,
+                'error': str(e),
+                'processing_time_ms': round((time.time() - start_time) * 1000, 2)
+            })
+            if self.strict_mode:
+                return JsonResponse({
+                    'success': False,
+                    'error': 'Rate limiting service unavailable',
+                    'error_code': 'rate_limit_service_error'
+                }, status=503)
+            else:
+                # Graceful degradation: allow request
+                return None
+    def _get_rate_limit(self, request: HttpRequest) -> Tuple[int, str]:
+        """
+        Determine the appropriate rate limit for this request.
-        # Check each time window
-        for window, limit in limits.items():
-            if self._is_rate_limited(rate_key, window, limit):
-                return self._rate_limit_response(window, limit)
+        Returns tuple of (rate_limit, limit_type).
+        """
+        # Check if user is authenticated via API key
+        if hasattr(request, 'api_key') and hasattr(request, 'subscription_access'):
+            subscription_access = request.subscription_access
+            if subscription_access.get('allowed'):
+                tier = subscription_access.get('tier', 'free')
+                rate_limit = self.default_limits.get(tier, self.default_limits['free'])
+                return rate_limit, f"subscription_{tier}"
-        # Record this request
-        self._record_request(rate_key)
+        # Check if user is authenticated (Django auth)
+        if hasattr(request, 'user') and request.user.is_authenticated:
+            return self.default_limits['authenticated'], 'authenticated'
-        return None
+        # Anonymous user
+        return self.default_limits['anonymous'], 'anonymous'
-    def _is_exempt_path(self, request: HttpRequest) -> bool:
-        """Check if path is exempt from rate limiting."""
-        path = request.path
-        return any(path.startswith(exempt) for exempt in self.exempt_paths)
-    def _get_rate_key(self, request: HttpRequest) -> Optional[str]:
-        """Get rate limiting key (API key preferred, IP as fallback)."""
+    def _get_client_identifier(self, request: HttpRequest) -> str:
+        """
+        Get unique identifier for the client.
-        # Use API key if available (from previous middleware)
-        if hasattr(request, 'payment_api_key'):
-            return f"api_key:{request.payment_api_key.key_value}"
+        Prioritizes API key, then user ID, then IP address.
+        """
+        # Use API key if available (most specific)
+        if hasattr(request, 'api_key'):
+            return f"api_key:{request.api_key.id}"
-        # Fallback to IP address
-        ip = self._get_client_ip(request)
-        if ip:
-            return f"ip:{ip}"
+        # Use user ID if authenticated
+        if hasattr(request, 'user') and request.user.is_authenticated:
+            return f"user:{request.user.id}"
-        return None
+        # Fall back to IP address
+        return f"ip:{self._get_client_ip(request)}"
-    def _get_client_ip(self, request: HttpRequest) -> Optional[str]:
-        """Get client IP address."""
+    def _check_rate_limit(self, client_id: str, rate_limit: int, limit_type: str) -> Tuple[bool, int, int]:
+        """
+        Check rate limit using sliding window algorithm.
-        # Check for forwarded headers first
-        forwarded_for = request.META.get('HTTP_X_FORWARDED_FOR')
-        if forwarded_for:
-            return forwarded_for.split(',')[0].strip()
+        Returns tuple of (allowed, current_usage, reset_time).
+        """
+        now = int(time.time())
+        window_start = now - self.window_size
-        # Check for real IP header
-        real_ip = request.META.get('HTTP_X_REAL_IP')
-        if real_ip:
-            return real_ip
+        # Cache key for this client's rate limit data
+        cache_key = f"rate_limit:{client_id}:{limit_type}"
-        # Fallback to remote address
-        return request.META.get('REMOTE_ADDR')
-    def _get_rate_limits(self, request: HttpRequest) -> dict:
-        """Get rate limits for this request."""
+        # Get current window data
+        window_data = cache.get(cache_key, {})
-        # Check if API key has custom limits
-        if hasattr(request, 'payment_api_key'):
-            api_key = request.payment_api_key
-            # Check if user has subscription with custom limits
-            if hasattr(request, 'payment_subscription'):
-                subscription = request.payment_subscription
-                # Custom limits based on subscription tier could be implemented here
-                # For now, use default limits
-                pass
-        return self.default_limits
-    def _is_rate_limited(self, rate_key: str, window: str, limit: int) -> bool:
-        """Check if rate limit is exceeded for given window."""
+        # Clean old entries and count current usage
+        current_usage = 0
+        cleaned_data = {}
-        try:
-            # Get window duration in seconds
-            window_seconds = self._get_window_seconds(window)
-            if not window_seconds:
-                return False
-            # Use Redis sliding window
-            current_time = int(time.time())
-            window_start = current_time - window_seconds
-            # Get request count in window
-            redis_key = f"rate_limit:{rate_key}:{window}"
-            # Simple cache-based rate limiting
-            count = cache.get(redis_key, 0)
-            return count >= limit
-        except Exception as e:
-            logger.error(f"Error checking rate limit: {e}")
-            # On error, allow request (fail open)
-            return False
-    def _get_window_seconds(self, window: str) -> Optional[int]:
-        """Convert window name to seconds."""
+        for timestamp_str, count in window_data.items():
+            timestamp = int(timestamp_str)
+            if timestamp > window_start:
+                cleaned_data[timestamp_str] = count
+                current_usage += count
-        window_map = {
-            'per_minute': 60,
-            'per_hour': 3600,
-            'per_day': 86400,
-        }
+        # Calculate reset time (next window)
+        reset_time = now + self.window_size
-        return window_map.get(window)
-    def _record_request(self, rate_key: str):
-        """Record request for rate limiting."""
+        # Check if we can allow this request
+        burst_limit = int(rate_limit * (1 + self.burst_allowance))
-        try:
-            current_time = int(time.time())
-            # Record for each window
-            for window in self.default_limits.keys():
-                window_seconds = self._get_window_seconds(window)
-                if window_seconds:
-                    redis_key = f"rate_limit:{rate_key}:{window}"
-                    # Increment request count
-                    current_count = cache.get(redis_key, 0)
-                    cache.set(redis_key, current_count + 1, window_seconds)
-        except Exception as e:
-            logger.error(f"Error recording request: {e}")
+        if current_usage >= burst_limit:
+            # Hard limit exceeded
+            return False, current_usage, reset_time
+        elif current_usage >= rate_limit:
+            # Soft limit exceeded, but within burst allowance
+            logger.info(f"Burst allowance used", extra={
+                'client_id': client_id,
+                'current_usage': current_usage,
+                'rate_limit': rate_limit,
+                'burst_limit': burst_limit
+            })
+        # Add current request to window
+        current_window = str(now // (self.window_size // self.window_precision) * (self.window_size // self.window_precision))
+        cleaned_data[current_window] = cleaned_data.get(current_window, 0) + 1
+        current_usage += 1
+        # Save updated window data
+        cache.set(cache_key, cleaned_data, timeout=self.cache_timeout)
+        return True, current_usage, reset_time
-    def _rate_limit_response(self, window: str, limit: int) -> JsonResponse:
-        """Return rate limit exceeded response."""
+    def _get_client_ip(self, request: HttpRequest) -> str:
+        """
+        Get client IP address from request.
+        """
+        x_forwarded_for = request.META.get('HTTP_X_FORWARDED_FOR')
+        if x_forwarded_for:
+            return x_forwarded_for.split(',')[0].strip()
-        window_seconds = self._get_window_seconds(window)
-        retry_after = window_seconds if window_seconds else 60
+        x_real_ip = request.META.get('HTTP_X_REAL_IP')
+        if x_real_ip:
+            return x_real_ip
+        return request.META.get('REMOTE_ADDR', 'unknown')
+    def _create_rate_limit_response(self, rate_limit: int, current_usage: int, reset_time: int) -> JsonResponse:
+        """
+        Create rate limit exceeded response with proper headers.
+        """
         response = JsonResponse({
-            'error': {
-                'code': 'RATE_LIMIT_EXCEEDED',
-                'message': f'Rate limit exceeded: {limit} requests {window}',
-                'limit': limit,
-                'window': window,
-                'retry_after': retry_after,
-                'timestamp': timezone.now().isoformat(),
-            }
+            'success': False,
+            'error': 'Rate limit exceeded',
+            'error_code': 'rate_limit_exceeded',
+            'rate_limit': {
+                'limit': rate_limit,
+                'current': current_usage,
+                'reset_at': reset_time,
+                'reset_in_seconds': max(0, reset_time - int(time.time()))
+            },
+            'timestamp': timezone.now().isoformat()
         }, status=429)
         # Add rate limit headers
-        response['X-RateLimit-Limit'] = str(limit)
-        response['X-RateLimit-Window'] = window
-        response['Retry-After'] = str(retry_after)
+        response['X-RateLimit-Limit'] = str(rate_limit)
+        response['X-RateLimit-Remaining'] = '0'
+        response['X-RateLimit-Reset'] = str(reset_time)
+        response['Retry-After'] = str(max(1, reset_time - int(time.time())))
+        return response
+    def process_response(self, request: HttpRequest, response: HttpResponse) -> HttpResponse:
+        """
+        Add rate limit headers to response.
+        """
+        if hasattr(request, 'rate_limit_info'):
+            info = request.rate_limit_info
+            response['X-RateLimit-Limit'] = str(info['limit'])
+            response['X-RateLimit-Remaining'] = str(info['remaining'])
+            response['X-RateLimit-Reset'] = str(info['reset_time'])
+            response['X-RateLimit-Type'] = info['limit_type']
         return response
+class AdaptiveRateLimitingMiddleware(RateLimitingMiddleware):
+    """
+    Adaptive Rate Limiting Middleware that adjusts limits based on system load.
+    Extends base rate limiting with:
+    - System load monitoring
+    - Dynamic limit adjustment
+    - Circuit breaker pattern
+    - Performance-based throttling
+    """
+    def __init__(self, get_response=None):
+        super().__init__(get_response)
+        # Adaptive configuration
+        self.adaptive_enabled = getattr(settings, 'ADAPTIVE_RATE_LIMITING_ENABLED', False)
+        self.load_threshold_high = getattr(settings, 'RATE_LIMIT_LOAD_THRESHOLD_HIGH', 0.8)
+        self.load_threshold_critical = getattr(settings, 'RATE_LIMIT_LOAD_THRESHOLD_CRITICAL', 0.95)
+        # Performance monitoring
+        self.response_time_threshold = getattr(settings, 'RATE_LIMIT_RESPONSE_TIME_THRESHOLD', 1000)  # ms
+        logger.info(f"Adaptive Rate Limiting initialized", extra={
+            'adaptive_enabled': self.adaptive_enabled,
+            'load_thresholds': {
+                'high': self.load_threshold_high,
+                'critical': self.load_threshold_critical
+            }
+        })
+    def _get_rate_limit(self, request: HttpRequest) -> Tuple[int, str]:
+        """
+        Get adaptive rate limit based on system load and performance.
+        """
+        base_limit, limit_type = super()._get_rate_limit(request)
+        if not self.adaptive_enabled:
+            return base_limit, limit_type
+        # Get system load factor
+        load_factor = self._get_system_load_factor()
+        # Adjust rate limit based on load
+        if load_factor >= self.load_threshold_critical:
+            # Critical load: reduce to 25% of normal
+            adjusted_limit = int(base_limit * 0.25)
+            limit_type += "_critical"
+        elif load_factor >= self.load_threshold_high:
+            # High load: reduce to 50% of normal
+            adjusted_limit = int(base_limit * 0.5)
+            limit_type += "_high_load"
+        else:
+            # Normal load
+            adjusted_limit = base_limit
+        return max(1, adjusted_limit), limit_type  # Ensure at least 1 request allowed
+    def _get_system_load_factor(self) -> float:
+        """
+        Calculate system load factor (0.0 to 1.0).
+        This is a simplified implementation. In production, you might want to:
+        - Monitor CPU usage
+        - Check database connection pool
+        - Monitor Redis performance
+        - Check response times
+        """
+        try:
+            # Get average response time from cache
+            avg_response_time = cache.get('system_avg_response_time', 100)  # ms
+            # Simple load calculation based on response time
+            if avg_response_time <= 200:
+                return 0.1  # Low load
+            elif avg_response_time <= 500:
+                return 0.3  # Medium load
+            elif avg_response_time <= 1000:
+                return 0.6  # High load
+            else:
+                return 0.9  # Critical load
+        except Exception as e:
+            logger.warning(f"Failed to get system load factor: {e}")
+            return 0.5  # Default to medium load

django-cfg 1.2.31__py3-none-any.whl → 1.3.1__py3-none-any.whl

django-cfg 1.2.31py3-none-any.whl → 1.3.1py3-none-any.whl