mirror/ditto
mirror/ditto
1
0
Fork 0
mirror of https://gitlab.com/soapbox-pub/ditto.git synced 2025-12-06 11:29:46 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Move ratelimitMiddleware below metricsMiddleware, try adding a stricter ratelimit

Browse source
This commit is contained in:
Alex Gleason 2025-01-23 22:43:54 -06:00
parent 64370c23e3
commit 218604aa56
No known key found for this signature in database
GPG key ID: 7211D1F99744FBB7
1 changed files with 6 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
src/app.ts
View file

@ -178,7 +178,6 @@ const publicFiles = serveStatic({ root: './public/' });
const staticFiles = serveStatic({ root: './static/' }); const staticFiles = serveStatic({ root: './static/' });
app.use('*', cacheControlMiddleware({ noStore: true })); app.use('*', cacheControlMiddleware({ noStore: true }));
app.use('*', rateLimitMiddleware(300, Time.minutes(5), false));
app.use('/api/*', metricsMiddleware, paginationMiddleware, logger(debug)); app.use('/api/*', metricsMiddleware, paginationMiddleware, logger(debug));
app.use('/.well-known/*', metricsMiddleware, logger(debug)); app.use('/.well-known/*', metricsMiddleware, logger(debug));
@ -188,6 +187,12 @@ app.use('/oauth/*', metricsMiddleware, logger(debug));
app.get('/api/v1/streaming', metricsMiddleware, streamingController); app.get('/api/v1/streaming', metricsMiddleware, streamingController);
app.get('/relay', metricsMiddleware, relayController); app.get('/relay', metricsMiddleware, relayController);
app.use(
'*',
rateLimitMiddleware(30, Time.seconds(5), false),
rateLimitMiddleware(300, Time.minutes(5), false),
);
app.use( app.use(
'*', '*',
cspMiddleware(), cspMiddleware(),