TASK: API Rate Limiting

[smohantyargus]

Task Description
Implement a configurable API rate-limiting mechanism to protect backend services from abuse, excessive usage, and brute-force attacks. The solution should be middleware-based and reusable across multiple endpoints. It must support global limits as well as stricter limits for sensitive routes like authentication and user management. The implementation should be scalable and configurable through environment variables.

Key Outcomes:

• Middleware-based rate limiting for all APIs.
• Configurable request limits (per IP / per user).
• Stricter limits for sensitive endpoints (e.g., login).
• Proper 429 Too Many Requests error handling.
• Logging and monitoring support for rate-limit violations.
• Documentation on configuration and usage.

[ananyaa0518]

hello @devaanshSingh and @smohantyargus
I'd like to work on this issue as part of SheCodes.
Please assign it to me (@ananyaa0518).

[aaryyya]

Hello @devaanshSingh and @smohantyargus ! I would like to work on this issue as a part of SheCodes can u assign this issue to me?

[klb2006]

hello @devaanshSingh & @smohantyargus ! i would like to work on this issue as a part of shecodes can u assign this issue to me (klb2006)

[Revalla]

Hi @smohantyargus i would like to work on this issue as a part of shecodes can u assign this issue

[ALLULOHITHA]

@devaanshSingh I would like to contribute to this issue as part of She Codes. I am ready to start working on it. Kindly assign it to me.

[VelanginiKeerthiGujjula]

Hello @devaanshSingh and @smohantyargus
I'd like to work on this issue as part of SheCodes.
Please assign it to me (@ananyaa0518).

[deekshu15]

I'm interested in picking this up. Went through the requirements—configurable rate limiting with different thresholds for general vs sensitive endpoints (auth, user management), IP/user-based tracking, 429 handling, and env-based config.