dropify.dev keeps bots and crashes out of your biggest sales. Three tools — signed requests, smart rate-limiting, and a fair waiting room — run right inside your store. No traffic to reroute, no DNS to change, no slowdown for your shoppers.
The suite
Each tool runs inside your store and enforces the rules on the spot, from a signed rulebook we hand it. Your store never has to phone home — and how it works never leaves it.
Signed requests that can't be faked
Every request to your store carries a signature that can't be forged or reused. The plugin checks it on the spot — no round-trip to us — so bots that fake or replay requests get turned away instantly. Works inside a Cloudflare Worker, a WooCommerce plugin, or a Node server.
Smart rate-limiting + bad-actor blocking
Rate limits and blocks run entirely inside your store, from a signed rulebook we keep current — no call to us on each request. We push fresh limits and known-bad-actor lists on a schedule, and if we're ever unreachable your store keeps running on the last rules it had. It never blocks your real shoppers on our account.
Fair waiting rooms for high-demand drops
When traffic spikes, shoppers wait in a fair, tamper-proof line instead of crashing
your store. They join the queue, pass a quick bot check, and get a signed pass to
enter. Your store checks the pass locally — no slow call to us on every page.
Hosted on *.dropify.dev or your own domain (Infinite tier).
How it works
Most queue and bot tools force a choice you shouldn't have to make: route all your traffic through them, or give up real protection. We don't. The smart part — signing, scoring, queue admission — runs in our cloud. A small open-source plugin runs in yours and does the enforcing, using a signed token it can check on its own.
Your WooCommerce server, your Cloudflare Worker, your Node backend — all protected without sending a single shopper through us. Nothing slows down for your customers, and their payment details never touch our systems.
Get startedchecks on its own
checks on its own
checks on its own
Why dropify.dev
| dropify.dev | CrowdHandler | Queue-it | Arcjet | |
|---|---|---|---|---|
| Waiting room / queue | Yes (Drop Room) | Yes | Yes | No |
| Bot / request signing | Yes (Shield) | No | No | Yes |
| Rate limiting + blocklist | Yes (Guard) | No | No | Yes |
| Enforced inside your store (no per-request call to us) | Yes | No | No | Yes |
| Open-source plugins (MIT) | Yes | No | No | Yes |
| Works without DNS change | Yes | Yes | Partial | Yes |
| Annual contract required | No | No | Yes | No |
| Mid-market drop price (50k visitors/event) | ~$1,749/mo | $3,200/mo (queue only) | $3,750+/mo (annual) | N/A |
Set up in minutes: install the open-source plugin for your stack, paste in your key, and you're live.