Mobilizon/Facebook-Events-iCal-Converter
1
0
Fork 0
mirror of https://github.com/comatory/fb2iCal synced 2025-01-27 15:49:17 +01:00
Code Issues Releases Wiki Activity

set more strict rate limiting for download endpoint

Browse Source
This commit is contained in:
Ondrej Synacek 2019-11-05 21:08:59 +01:00
parent 05640e2cd8
commit 4984a26aa7
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
lib/index.js
View File

@ -22,6 +22,10 @@ const enforceHTTPS = Boolean(process.env.ENFORCE_HTTPS)
const app = express() const app = express()
const appLogger = createAppLogger({ dev: isDevelopment }) const appLogger = createAppLogger({ dev: isDevelopment })
const limiter = rateLimit({
windowMs: 60 * 1000,
max: 10,
})
// Force app to always redirect to HTTPS // Force app to always redirect to HTTPS
// use when you can't configure web server // use when you can't configure web server
@ -34,6 +38,7 @@ app.use(createRouteLogger({ dev: isDevelopment }))
app.set('view engine', 'ejs') app.set('view engine', 'ejs')
app.set('views', path.join(__dirname, 'views')) app.set('views', path.join(__dirname, 'views'))
app.set('trust proxy', 1)
app.use(express.static(path.join(__dirname, 'public'))) app.use(express.static(path.join(__dirname, 'public')))
app.use(favicon(path.join(__dirname, 'public', 'favicon.ico'))) app.use(favicon(path.join(__dirname, 'public', 'favicon.ico')))
@ -66,8 +71,8 @@ app.get('*', (req, res) => {
res.status(400).render('404') res.status(400).render('404')
}) })
app.use('/download', limiter)
app.use('/download', checkURLParameter) app.use('/download', checkURLParameter)
app.use('/download', rateLimit())
app.post('/download', async (req, res, next) => { app.post('/download', async (req, res, next) => {
try { try {
const { url } = req.body const { url } = req.body