tower_resilience_ratelimiter/

lib.rs

//! Advanced rate limiting middleware for Tower services.
//!
//! This crate provides enhanced rate limiting inspired by Resilience4j's RateLimiter,
//! with features beyond Tower's built-in rate limiting.
//!
//! # Features
//!
//! - **Permit-based rate limiting**: Control requests per time period
//! - **Multiple window types**: Fixed, sliding log, and sliding counter algorithms
//! - **Configurable timeout**: Wait up to a specified duration for permits
//! - **Automatic refresh**: Permits automatically refresh after each period
//! - **Event system**: Observability through rate limiter events
//!
//! # Window Types
//!
//! The rate limiter supports three different windowing strategies:
//!
//! - **Fixed** (default): Resets permits at fixed intervals. Simple and efficient
//!   but can allow bursts at window boundaries.
//!
//! - **SlidingLog**: Stores timestamps of each request. Provides precise rate limiting
//!   with no burst allowance, but uses O(n) memory where n = requests in window.
//!
//! - **SlidingCounter**: Uses weighted averaging between time buckets. Approximate
//!   sliding window behavior with O(1) memory - ideal for high-throughput APIs.
//!
//! # Examples
//!
//! ## Basic Rate Limiting (Fixed Window)
//!
//! ```
//! use tower_resilience_ratelimiter::RateLimiterLayer;
//! use tower::ServiceBuilder;
//! use std::time::Duration;
//!
//! # async fn example() -> Result<(), Box<dyn std::error::Error>> {
//! // Allow 100 requests per second, wait up to 500ms for a permit
//! let rate_limiter = RateLimiterLayer::builder()
//!     .limit_for_period(100)
//!     .refresh_period(Duration::from_secs(1))
//!     .timeout_duration(Duration::from_millis(500))
//!     .on_permit_acquired(|wait_duration| {
//!         println!("Permit acquired after {:?}", wait_duration);
//!     })
//!     .on_permit_rejected(|timeout| {
//!         println!("Rate limited! Timeout: {:?}", timeout);
//!     })
//!     .build();
//!
//! // Apply to a service
//! let service = ServiceBuilder::new()
//!     .layer(rate_limiter)
//!     .service(tower::service_fn(|req: String| async move {
//!         Ok::<_, std::io::Error>(format!("Response: {}", req))
//!     }));
//! # Ok(())
//! # }
//! ```
//!
//! ## Sliding Log Rate Limiting (Precise)
//!
//! Use sliding log for precise rate limiting with no burst allowance at window
//! boundaries. This is ideal when you need to strictly enforce rate limits,
//! such as when calling external APIs with strict quotas.
//!
//! ```
//! use tower_resilience_ratelimiter::{RateLimiterLayer, WindowType};
//! use tower::ServiceBuilder;
//! use std::time::Duration;
//!
//! # async fn example() -> Result<(), Box<dyn std::error::Error>> {
//! let rate_limiter = RateLimiterLayer::builder()
//!     .limit_for_period(100)
//!     .refresh_period(Duration::from_secs(1))
//!     .window_type(WindowType::SlidingLog)
//!     .timeout_duration(Duration::from_millis(500))
//!     .build();
//!
//! let service = ServiceBuilder::new()
//!     .layer(rate_limiter)
//!     .service(tower::service_fn(|req: String| async move {
//!         Ok::<_, std::io::Error>(format!("Response: {}", req))
//!     }));
//! # Ok(())
//! # }
//! ```
//!
//! ## Sliding Counter Rate Limiting (Efficient)
//!
//! Use sliding counter for high-throughput APIs where you want approximate
//! sliding window behavior without the memory overhead of storing timestamps.
//!
//! ```
//! use tower_resilience_ratelimiter::{RateLimiterLayer, WindowType};
//! use tower::ServiceBuilder;
//! use std::time::Duration;
//!
//! # async fn example() -> Result<(), Box<dyn std::error::Error>> {
//! let rate_limiter = RateLimiterLayer::builder()
//!     .limit_for_period(10000)  // High throughput
//!     .refresh_period(Duration::from_secs(1))
//!     .window_type(WindowType::SlidingCounter)
//!     .timeout_duration(Duration::from_millis(100))
//!     .build();
//!
//! let service = ServiceBuilder::new()
//!     .layer(rate_limiter)
//!     .service(tower::service_fn(|req: String| async move {
//!         Ok::<_, std::io::Error>(format!("Response: {}", req))
//!     }));
//! # Ok(())
//! # }
//! ```
//!
//! ## Fallback When Rate Limited
//!
//! Handle rate limiting errors with appropriate fallback strategies:
//!
//! ### Return Informative Error
//!
//! ```
//! use tower_resilience_ratelimiter::{RateLimiterLayer, RateLimiterError};
//! use tower::{Service, ServiceBuilder, ServiceExt};
//! use std::time::Duration;
//!
//! # async fn example() -> Result<(), Box<dyn std::error::Error>> {
//! let rate_limiter = RateLimiterLayer::builder()
//!     .limit_for_period(10)
//!     .refresh_period(Duration::from_secs(1))
//!     .timeout_duration(Duration::from_millis(100))
//!     .build();
//!
//! let mut service = ServiceBuilder::new()
//!     .layer(rate_limiter)
//!     .service(tower::service_fn(|req: String| async move {
//!         Ok::<String, std::io::Error>(format!("Processed: {}", req))
//!     }));
//!
//! match service.ready().await?.call("request".to_string()).await {
//!     Ok(response) => println!("Success: {}", response),
//!     Err(e) => {
//!         println!("Rate limited - please try again later");
//!         // Could return 429 Too Many Requests in HTTP context
//!     }
//! }
//! # Ok(())
//! # }
//! ```
//!
//! ### Queue for Later Processing
//!
//! ```
//! use tower_resilience_ratelimiter::{RateLimiterLayer, RateLimiterError};
//! use tower::{Service, ServiceBuilder, ServiceExt};
//! use std::time::Duration;
//! use std::sync::Arc;
//! use tokio::sync::Mutex;
//!
//! # async fn example() -> Result<(), Box<dyn std::error::Error>> {
//! let queue = Arc::new(Mutex::new(Vec::new()));
//! let rate_limiter = RateLimiterLayer::builder()
//!     .limit_for_period(10)
//!     .refresh_period(Duration::from_secs(1))
//!     .timeout_duration(Duration::from_millis(50))
//!     .build();
//!
//! let mut service = ServiceBuilder::new()
//!     .layer(rate_limiter)
//!     .service(tower::service_fn(|req: String| async move {
//!         Ok::<String, std::io::Error>(req)
//!     }));
//!
//! let queue_clone = Arc::clone(&queue);
//! let result: Result<String, std::io::Error> = match service.ready().await?.call("request".to_string()).await {
//!     Ok(response) => Ok(response),
//!     Err(_) => {
//!         // Queue request for later processing
//!         queue_clone.lock().await.push("request".to_string());
//!         Ok("Queued for processing".to_string())
//!     }
//! };
//! # Ok(())
//! # }
//! ```
//!
//! ### Shed Load Gracefully
//!
//! ```
//! use tower_resilience_ratelimiter::{RateLimiterLayer, RateLimiterError};
//! use tower::{Service, ServiceBuilder, ServiceExt};
//! use std::time::Duration;
//!
//! # async fn example() -> Result<(), Box<dyn std::error::Error>> {
//! let rate_limiter = RateLimiterLayer::builder()
//!     .limit_for_period(100)
//!     .refresh_period(Duration::from_secs(1))
//!     .timeout_duration(Duration::from_millis(10)) // Short timeout = fast rejection
//!     .build();
//!
//! let mut service = ServiceBuilder::new()
//!     .layer(rate_limiter)
//!     .service(tower::service_fn(|req: String| async move {
//!         Ok::<String, std::io::Error>(req)
//!     }));
//!
//! let result = service.ready().await?.call("request".to_string()).await
//!     .unwrap_or_else(|_| {
//!         // Shed load - return reduced functionality response
//!         "Service at capacity - showing cached data".to_string()
//!     });
//! # Ok(())
//! # }
//! ```

mod config;
mod error;
mod events;
mod handle;
mod layer;
mod limiter;

pub use config::{RateLimiterConfig, RateLimiterConfigBuilder, WindowType};
pub use error::{RateLimiterError, RateLimiterServiceError};
pub use events::RateLimiterEvent;
pub use handle::RateLimiterHandle;
pub use layer::RateLimiterLayer;

use crate::limiter::SharedRateLimiter;
use futures::future::BoxFuture;
use futures::Future;
use std::pin::Pin;
use std::sync::Arc;
use std::task::{Context, Poll};
use std::time::Instant;
use tower::Service;

#[cfg(feature = "metrics")]
use metrics::{counter, describe_counter, describe_histogram, histogram};

#[cfg(feature = "tracing")]
use tracing::{debug, warn};

/// A Tower [`Service`] that applies rate limiting.
///
/// This service wraps an inner service and limits the rate at which
/// requests can be processed according to the configured policy.
///
/// # Backpressure mode
///
/// By default, the rate limiter applies limits in `call()` and returns
/// `RateLimiterServiceError::RateLimited` when permits are exhausted (rejection mode).
///
/// When [backpressure mode](RateLimiterConfigBuilder::backpressure) is enabled,
/// limits are applied in `poll_ready()` instead: the service returns `Poll::Pending`
/// when no permits are available, causing callers to wait naturally via
/// `service.ready().await`. This integrates with Tower's load balancing and buffer
/// layers. In this mode, `RateLimiterServiceError::RateLimited` is never returned
/// and `timeout_duration` is ignored.
pub struct RateLimiter<S> {
    inner: S,
    config: Arc<RateLimiterConfig>,
    limiter: SharedRateLimiter,
    /// Sleep future for backpressure mode wake-ups.
    sleep: Option<Pin<Box<tokio::time::Sleep>>>,
    /// Whether a permit has been acquired in `poll_ready` (backpressure mode only).
    permit_acquired: bool,
}

impl<S> RateLimiter<S> {
    /// Creates a new `RateLimiter` wrapping the given service.
    pub fn new(inner: S, config: Arc<RateLimiterConfig>) -> Self {
        #[cfg(feature = "metrics")]
        {
            describe_counter!(
                "ratelimiter_calls_total",
                "Total number of rate limiter calls (permitted or rejected)"
            );
            describe_histogram!(
                "ratelimiter_wait_duration_seconds",
                "Time spent waiting for a permit"
            );
        }

        let limiter = SharedRateLimiter::new(
            config.window_type,
            config.limit_for_period,
            config.refresh_period,
            config.timeout_duration,
        );

        Self {
            inner,
            config,
            limiter,
            sleep: None,
            permit_acquired: false,
        }
    }

    /// Creates a new `RateLimiter` using pre-created shared limiter state.
    pub(crate) fn from_shared(
        inner: S,
        config: Arc<RateLimiterConfig>,
        limiter: SharedRateLimiter,
    ) -> Self {
        #[cfg(feature = "metrics")]
        {
            describe_counter!(
                "ratelimiter_calls_total",
                "Total number of rate limiter calls (permitted or rejected)"
            );
            describe_histogram!(
                "ratelimiter_wait_duration_seconds",
                "Time spent waiting for a permit"
            );
        }

        Self {
            inner,
            config,
            limiter,
            sleep: None,
            permit_acquired: false,
        }
    }
}

impl<S> Clone for RateLimiter<S>
where
    S: Clone,
{
    fn clone(&self) -> Self {
        Self {
            inner: self.inner.clone(),
            config: Arc::clone(&self.config),
            limiter: self.limiter.clone(),
            sleep: None,
            permit_acquired: false,
        }
    }
}

impl<S, Req> Service<Req> for RateLimiter<S>
where
    S: Service<Req> + Clone + Send + 'static,
    S::Future: Send + 'static,
    S::Error: Send + 'static,
    Req: Send + 'static,
{
    type Response = S::Response;
    type Error = RateLimiterServiceError<S::Error>;
    type Future = BoxFuture<'static, Result<Self::Response, Self::Error>>;

    fn poll_ready(&mut self, cx: &mut Context<'_>) -> Poll<Result<(), Self::Error>> {
        // Check inner service readiness first
        match self.inner.poll_ready(cx) {
            Poll::Pending => return Poll::Pending,
            Poll::Ready(Err(e)) => return Poll::Ready(Err(RateLimiterServiceError::Inner(e))),
            Poll::Ready(Ok(())) => {}
        }

        if !self.config.backpressure {
            return Poll::Ready(Ok(()));
        }

        // Backpressure mode: acquire permit in poll_ready
        if self.permit_acquired {
            return Poll::Ready(Ok(()));
        }

        // If we have a pending sleep, poll it first
        if let Some(sleep) = self.sleep.as_mut() {
            match sleep.as_mut().poll(cx) {
                Poll::Pending => return Poll::Pending,
                Poll::Ready(()) => {
                    self.sleep = None;
                    // Fall through to retry acquire
                }
            }
        }

        match self.limiter.try_acquire_now() {
            Ok(()) => {
                self.permit_acquired = true;
                Poll::Ready(Ok(()))
            }
            Err(wait_duration) => {
                let sleep = tokio::time::sleep(wait_duration);
                let mut pinned = Box::pin(sleep);
                // Register the waker so we get polled again when the sleep completes
                let _ = pinned.as_mut().poll(cx);
                self.sleep = Some(pinned);
                Poll::Pending
            }
        }
    }

    fn call(&mut self, req: Req) -> Self::Future {
        if self.permit_acquired {
            // Backpressure mode: permit already acquired in poll_ready
            self.permit_acquired = false;
            let config = Arc::clone(&self.config);
            let mut inner = self.inner.clone();

            let event = RateLimiterEvent::PermitAcquired {
                pattern_name: config.name.clone(),
                timestamp: Instant::now(),
                wait_duration: std::time::Duration::ZERO,
            };
            config.event_listeners.emit(&event);

            #[cfg(feature = "metrics")]
            {
                counter!("ratelimiter_calls_total", "ratelimiter" => config.name.clone(), "result" => "permitted").increment(1);
                histogram!("ratelimiter_wait_duration_seconds", "ratelimiter" => config.name.clone())
                    .record(0.0);
            }

            #[cfg(feature = "tracing")]
            debug!(ratelimiter = %config.name, "Permit acquired via backpressure");

            return Box::pin(async move {
                inner
                    .call(req)
                    .await
                    .map_err(RateLimiterServiceError::Inner)
            });
        }

        // Rejection mode: acquire permit in call
        let limiter = self.limiter.clone();
        let config = Arc::clone(&self.config);
        let mut inner = self.inner.clone();

        Box::pin(async move {
            match limiter.acquire().await {
                Ok(wait_duration) => {
                    let event = RateLimiterEvent::PermitAcquired {
                        pattern_name: config.name.clone(),
                        timestamp: Instant::now(),
                        wait_duration,
                    };
                    config.event_listeners.emit(&event);

                    #[cfg(feature = "metrics")]
                    {
                        counter!("ratelimiter_calls_total", "ratelimiter" => config.name.clone(), "result" => "permitted").increment(1);
                        histogram!("ratelimiter_wait_duration_seconds", "ratelimiter" => config.name.clone())
                            .record(wait_duration.as_secs_f64());
                    }

                    #[cfg(feature = "tracing")]
                    {
                        if wait_duration.as_millis() > 0 {
                            debug!(
                                ratelimiter = %config.name,
                                wait_ms = wait_duration.as_millis(),
                                "Permit acquired after waiting"
                            );
                        } else {
                            debug!(ratelimiter = %config.name, "Permit acquired immediately");
                        }
                    }

                    inner
                        .call(req)
                        .await
                        .map_err(RateLimiterServiceError::Inner)
                }
                Err(()) => {
                    let event = RateLimiterEvent::PermitRejected {
                        pattern_name: config.name.clone(),
                        timestamp: Instant::now(),
                        timeout_duration: config.timeout_duration,
                    };
                    config.event_listeners.emit(&event);

                    #[cfg(feature = "metrics")]
                    {
                        counter!("ratelimiter_calls_total", "ratelimiter" => config.name.clone(), "result" => "rejected").increment(1);
                    }

                    #[cfg(feature = "tracing")]
                    warn!(
                        ratelimiter = %config.name,
                        timeout_ms = config.timeout_duration.as_millis(),
                        "Rate limit exceeded - permit rejected"
                    );

                    Err(RateLimiterServiceError::RateLimited)
                }
            }
        })
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use std::sync::atomic::{AtomicUsize, Ordering};
    use std::sync::Arc;
    use std::time::Duration;
    use tower::service_fn;
    use tower::{Layer, ServiceExt};

    #[tokio::test]
    async fn test_allows_requests_within_limit() {
        let call_count = Arc::new(AtomicUsize::new(0));
        let cc = Arc::clone(&call_count);

        let service = service_fn(move |req: String| {
            let cc = Arc::clone(&cc);
            async move {
                cc.fetch_add(1, Ordering::SeqCst);
                Ok::<_, std::io::Error>(format!("Response: {}", req))
            }
        });

        let layer = RateLimiterLayer::builder()
            .limit_for_period(10)
            .refresh_period(Duration::from_secs(1))
            .timeout_duration(Duration::from_millis(100))
            .build();

        let mut service = layer.layer(service);

        // Should be able to make 10 requests
        for _ in 0..10 {
            let result = service
                .ready()
                .await
                .unwrap()
                .call("test".to_string())
                .await;
            assert!(result.is_ok());
        }

        assert_eq!(call_count.load(Ordering::SeqCst), 10);
    }

    #[tokio::test]
    async fn test_rejects_requests_over_limit() {
        let service = service_fn(|req: String| async move {
            Ok::<_, std::io::Error>(format!("Response: {}", req))
        });

        let layer = RateLimiterLayer::builder()
            .limit_for_period(2)
            .refresh_period(Duration::from_secs(10))
            .timeout_duration(Duration::from_millis(10))
            .build();

        let mut service = layer.layer(service);

        // First 2 should succeed
        assert!(service
            .ready()
            .await
            .unwrap()
            .call("1".to_string())
            .await
            .is_ok());
        assert!(service
            .ready()
            .await
            .unwrap()
            .call("2".to_string())
            .await
            .is_ok());

        // Third should be rate limited
        let result = service.ready().await.unwrap().call("3".to_string()).await;
        assert!(result.is_err());
        assert!(matches!(
            result.unwrap_err(),
            RateLimiterServiceError::RateLimited
        ));
    }

    #[tokio::test]
    async fn test_permits_refresh_after_period() {
        let call_count = Arc::new(AtomicUsize::new(0));
        let cc = Arc::clone(&call_count);

        let service = service_fn(move |_req: String| {
            let cc = Arc::clone(&cc);
            async move {
                cc.fetch_add(1, Ordering::SeqCst);
                Ok::<_, std::io::Error>("ok".to_string())
            }
        });

        let layer = RateLimiterLayer::builder()
            .limit_for_period(2)
            .refresh_period(Duration::from_millis(100))
            .timeout_duration(Duration::from_millis(200))
            .build();

        let mut service = layer.layer(service);

        // Use up permits
        assert!(service
            .ready()
            .await
            .unwrap()
            .call("1".to_string())
            .await
            .is_ok());
        assert!(service
            .ready()
            .await
            .unwrap()
            .call("2".to_string())
            .await
            .is_ok());

        // Wait for refresh
        tokio::time::sleep(Duration::from_millis(150)).await;

        // Should be able to make requests again
        assert!(service
            .ready()
            .await
            .unwrap()
            .call("3".to_string())
            .await
            .is_ok());
        assert_eq!(call_count.load(Ordering::SeqCst), 3);
    }

    #[tokio::test]
    async fn test_event_listeners_called() {
        let acquired_count = Arc::new(AtomicUsize::new(0));
        let rejected_count = Arc::new(AtomicUsize::new(0));

        let ac = Arc::clone(&acquired_count);
        let rc = Arc::clone(&rejected_count);

        let service =
            service_fn(|_req: String| async move { Ok::<_, std::io::Error>("ok".to_string()) });

        let layer = RateLimiterLayer::builder()
            .limit_for_period(1)
            .refresh_period(Duration::from_secs(10))
            .timeout_duration(Duration::from_millis(10))
            .on_permit_acquired(move |_| {
                ac.fetch_add(1, Ordering::SeqCst);
            })
            .on_permit_rejected(move |_| {
                rc.fetch_add(1, Ordering::SeqCst);
            })
            .build();

        let mut service = layer.layer(service);

        // First request should succeed
        let _ = service.ready().await.unwrap().call("1".to_string()).await;
        assert_eq!(acquired_count.load(Ordering::SeqCst), 1);

        // Second should be rejected
        let _ = service.ready().await.unwrap().call("2".to_string()).await;
        assert_eq!(rejected_count.load(Ordering::SeqCst), 1);
    }

    #[tokio::test]
    async fn test_waits_for_permit_within_timeout() {
        let service =
            service_fn(|_req: String| async move { Ok::<_, std::io::Error>("ok".to_string()) });

        let layer = RateLimiterLayer::builder()
            .limit_for_period(1)
            .refresh_period(Duration::from_millis(50))
            .timeout_duration(Duration::from_millis(100)) // Can wait through one refresh
            .build();

        let mut service = layer.layer(service);

        // First request succeeds
        assert!(service
            .ready()
            .await
            .unwrap()
            .call("1".to_string())
            .await
            .is_ok());

        // Second request should wait for refresh and succeed
        let start = std::time::Instant::now();
        let result = service.ready().await.unwrap().call("2".to_string()).await;
        let elapsed = start.elapsed();

        assert!(result.is_ok());
        assert!(elapsed >= Duration::from_millis(45)); // Should have waited
    }

    // ==================== Backpressure Mode Tests ====================

    #[tokio::test]
    async fn test_backpressure_allows_requests_within_limit() {
        let call_count = Arc::new(AtomicUsize::new(0));
        let cc = Arc::clone(&call_count);

        let service = service_fn(move |req: String| {
            let cc = Arc::clone(&cc);
            async move {
                cc.fetch_add(1, Ordering::SeqCst);
                Ok::<_, std::io::Error>(format!("Response: {}", req))
            }
        });

        let layer = RateLimiterLayer::builder()
            .limit_for_period(10)
            .refresh_period(Duration::from_secs(1))
            .backpressure()
            .build();

        let mut service = layer.layer(service);

        for _ in 0..10 {
            let result = service
                .ready()
                .await
                .unwrap()
                .call("test".to_string())
                .await;
            assert!(result.is_ok());
        }

        assert_eq!(call_count.load(Ordering::SeqCst), 10);
    }

    #[tokio::test]
    async fn test_backpressure_waits_instead_of_rejecting() {
        let service =
            service_fn(|_req: String| async move { Ok::<_, std::io::Error>("ok".to_string()) });

        let layer = RateLimiterLayer::builder()
            .limit_for_period(1)
            .refresh_period(Duration::from_millis(50))
            .backpressure()
            .build();

        let mut service = layer.layer(service);

        // First request succeeds immediately
        assert!(service
            .ready()
            .await
            .unwrap()
            .call("1".to_string())
            .await
            .is_ok());

        // Second request should wait (not error) and eventually succeed
        let start = std::time::Instant::now();
        let result = service.ready().await.unwrap().call("2".to_string()).await;
        let elapsed = start.elapsed();

        assert!(result.is_ok());
        assert!(elapsed >= Duration::from_millis(40));
    }

    #[tokio::test]
    async fn test_backpressure_never_returns_rate_limited() {
        let service =
            service_fn(|_req: String| async move { Ok::<_, std::io::Error>("ok".to_string()) });

        let layer = RateLimiterLayer::builder()
            .limit_for_period(1)
            .refresh_period(Duration::from_millis(50))
            .backpressure()
            .build();

        let mut service = layer.layer(service);

        // Make several requests; none should return RateLimited
        for _ in 0..5 {
            let result = service.ready().await.unwrap().call("x".to_string()).await;
            assert!(result.is_ok());
        }
    }

    #[tokio::test]
    async fn test_backpressure_events_fire_permit_acquired() {
        let acquired_count = Arc::new(AtomicUsize::new(0));
        let rejected_count = Arc::new(AtomicUsize::new(0));

        let ac = Arc::clone(&acquired_count);
        let rc = Arc::clone(&rejected_count);

        let service =
            service_fn(|_req: String| async move { Ok::<_, std::io::Error>("ok".to_string()) });

        let layer = RateLimiterLayer::builder()
            .limit_for_period(1)
            .refresh_period(Duration::from_millis(50))
            .backpressure()
            .on_permit_acquired(move |_| {
                ac.fetch_add(1, Ordering::SeqCst);
            })
            .on_permit_rejected(move |_| {
                rc.fetch_add(1, Ordering::SeqCst);
            })
            .build();

        let mut service = layer.layer(service);

        for _ in 0..3 {
            let _ = service.ready().await.unwrap().call("x".to_string()).await;
        }

        assert_eq!(acquired_count.load(Ordering::SeqCst), 3);
        assert_eq!(rejected_count.load(Ordering::SeqCst), 0);
    }

    #[tokio::test]
    async fn test_backpressure_with_sliding_log() {
        let service =
            service_fn(|_req: String| async move { Ok::<_, std::io::Error>("ok".to_string()) });

        let layer = RateLimiterLayer::builder()
            .limit_for_period(2)
            .refresh_period(Duration::from_millis(50))
            .window_type(WindowType::SlidingLog)
            .backpressure()
            .build();

        let mut service = layer.layer(service);

        for _ in 0..4 {
            let result = service.ready().await.unwrap().call("x".to_string()).await;
            assert!(result.is_ok());
        }
    }

    #[tokio::test]
    async fn test_backpressure_with_sliding_counter() {
        let service =
            service_fn(|_req: String| async move { Ok::<_, std::io::Error>("ok".to_string()) });

        let layer = RateLimiterLayer::builder()
            .limit_for_period(2)
            .refresh_period(Duration::from_millis(50))
            .window_type(WindowType::SlidingCounter)
            .backpressure()
            .build();

        let mut service = layer.layer(service);

        for _ in 0..4 {
            let result = service.ready().await.unwrap().call("x".to_string()).await;
            assert!(result.is_ok());
        }
    }
}