Nerap
TTCTheo's Typesafe Cult
•Created by Nerap on 4/11/2023 in #questions
Rate Limit in Next Middleware or TRPC Middleware
What do you think is the best way to rate limit your app with t3 stack.
To me rate limit in next middleware seems much more efficient and logic, since you are on the edge and all of your app traffic is going trough there (static, pages, api, etc..)
But, on the other hands, rate limiting your API with different procedures, for different scope comes with a cleaner organization imo.
Since T3 stack can't run on the edge (unless you don't use prisma or some routes at least)
You are forced to rate limit your API in serverless function.
Maybe I'm getting something wrong, but for me rate limit in next middleware seems better since you can can rate limit every type of routes on the edges (would be insane if you can't pass next-auth context there too 🙏 ).
Is it really something worth the time to consider or is it useless and I should go whatever I want to?
3 replies