Challenge - 5 Problems

🎖️

Flask-Limiter Master

Get all challenges correct to earn this badge!

Test your skills under time pressure!

❓ component_behavior

intermediate

2:00remaining

What happens when a client exceeds the rate limit in Flask-Limiter?

Consider a Flask app using Flask-Limiter with a limit of 5 requests per minute per IP. What is the default behavior when a client sends the 6th request within the same minute?

Flask

from flask import Flask
from flask_limiter import Limiter
from flask_limiter.util import get_remote_address

app = Flask(__name__)
limiter = Limiter(app, key_func=get_remote_address, default_limits=["5 per minute"])

@app.route('/')
def index():
    return "Hello, world!"

AThe server returns a 429 Too Many Requests error response.

BThe server queues the request and processes it after the minute passes.

CThe server ignores the limit and processes the request normally.

DThe server restarts the Flask app to reset the limit.

Attempts:

2 left

📝 Syntax

intermediate

2:00remaining

Which code snippet correctly applies a custom rate limit to a single Flask route?

You want to limit the route /api/data to 10 requests per hour per user IP. Which code snippet correctly applies this limit using Flask-Limiter?

@app.route('/api/data')
@limiter.limit('10/hour')
def data():
    return 'Data here'

@app.route('/api/data')
@limiter.limit(10, 'hour')
def data():
    return 'Data here'

@app.route('/api/data')
@limiter.limit('10 per hour')
def data():
    return 'Data here'

@app.route('/api/data')
@limiter.limit('hour:10')
def data():
    return 'Data here'

Attempts:

2 left

🔧 Debug

advanced

2:00remaining

Why does this Flask-Limiter setup not enforce any limits?

Review the code below. Why does the rate limit not work as expected?

Flask

from flask import Flask
from flask_limiter import Limiter
from flask_limiter.util import get_remote_address

app = Flask(__name__)
limiter = Limiter(key_func=get_remote_address)

@app.route('/')
def home():
    return 'Welcome!'

@app.route('/test')
@limiter.limit('3 per minute')
def test():
    return 'Test route'

ANo default_limits are set in Limiter, so only routes with explicit limits are limited.

BThe key_func is missing, so Flask-Limiter cannot identify clients.

CThe Flask app is missing a secret key, so Flask-Limiter cannot store limits.

DThe @limiter.limit decorator is applied after the route decorator, causing it to be ignored.

Attempts:

2 left

❓ state_output

advanced

2:00remaining

What is the value of the remaining requests after 2 calls to a limited route?

Given this Flask route limited to 5 requests per minute, what is the remaining number of allowed requests after calling it twice from the same IP?

Flask

from flask import Flask, jsonify
from flask_limiter import Limiter
from flask_limiter.util import get_remote_address

app = Flask(__name__)
limiter = Limiter(app, key_func=get_remote_address, default_limits=["5 per minute"])

@app.route('/limited')
@limiter.limit('5 per minute')
def limited():
    remaining = limiter.current_limit.remaining
    return jsonify({'remaining': remaining})

Attempts:

2 left

🧠 Conceptual

expert

3:00remaining

Which key function best supports user-based rate limiting in Flask-Limiter?

You want to limit requests per authenticated user, not per IP. Which key function should you use with Flask-Limiter?

Aget_remote_address from flask_limiter.util to get the client IP address.

BA function that returns the current user's unique ID from the session or token.

CA function that returns a constant string for all users.

DA function that returns the Flask app's secret key.

Attempts:

2 left