firecrawl/apps/api/src/controllers/auth.ts

import { parseApi } from "../lib/parseApi";
import { getRateLimiter } from "../services/rate-limiter";
import {
  AuthResponse,
  NotificationType,
  RateLimiterMode,
} from "../types";
import { supabase_service } from "../services/supabase";
import { withAuth } from "../lib/withAuth";
import { RateLimiterRedis } from "rate-limiter-flexible";
import { setTraceAttributes } from "@hyperdx/node-opentelemetry";
import { sendNotification } from "../services/notification/email_notification";
import { Logger } from "../lib/logger";
import { redlock } from "../services/redlock";
import { getValue } from "../services/redis";
import { setValue } from "../services/redis";
import { validate } from "uuid";
import * as Sentry from "@sentry/node";
// const { data, error } = await supabase_service
//     .from('api_keys')
//     .select(`
//       key,
//       team_id,
//       teams (
//         subscriptions (
//           price_id
//         )
//       )
//     `)
//     .eq('key', normalizedApi)
//     .limit(1)
//     .single();
function normalizedApiIsUuid(potentialUuid: string): boolean {
  // Check if the string is a valid UUID
  return validate(potentialUuid);
}
export async function authenticateUser(
  req,
  res,
  mode?: RateLimiterMode
): Promise<AuthResponse> {
  return withAuth(supaAuthenticateUser)(req, res, mode);
}
function setTrace(team_id: string, api_key: string) {
  try {
    setTraceAttributes({
      team_id,
      api_key,
    });
  } catch (error) {
    Sentry.captureException(error);
    Logger.error(`Error setting trace attributes: ${error.message}`);
  }
}

async function getKeyAndPriceId(normalizedApi: string): Promise<{
  success: boolean;
  teamId?: string;
  priceId?: string;
  error?: string;
  status?: number;
}> {
  const { data, error } = await supabase_service.rpc("get_key_and_price_id_2", {
    api_key: normalizedApi,
  });
  if (error) {
    Sentry.captureException(error);
    Logger.error(`RPC ERROR (get_key_and_price_id_2): ${error.message}`);
    return {
      success: false,
      error:
        "The server seems overloaded. Please contact hello@firecrawl.com if you aren't sending too many requests at once.",
      status: 500,
    };
  }
  if (!data || data.length === 0) {
    if (error) {
      Logger.warn(`Error fetching api key: ${error.message} or data is empty`);
      Sentry.captureException(error);
    }
    // TODO: change this error code ?
    return {
      success: false,
      error: "Unauthorized: Invalid token",
      status: 401,
    };
  } else {
    return {
      success: true,
      teamId: data[0].team_id,
      priceId: data[0].price_id,
    };
  }
}
export async function supaAuthenticateUser(
  req,
  res,
  mode?: RateLimiterMode
): Promise<{
  success: boolean;
  team_id?: string;
  error?: string;
  status?: number;
  plan?: string;
}> {
  const authHeader = req.headers.authorization;
  if (!authHeader) {
    return { success: false, error: "Unauthorized", status: 401 };
  }
  const token = authHeader.split(" ")[1]; // Extract the token from "Bearer <token>"
  if (!token) {
    return {
      success: false,
      error: "Unauthorized: Token missing",
      status: 401,
    };
  }

  const incomingIP = (req.headers["x-forwarded-for"] ||
    req.socket.remoteAddress) as string;
  const iptoken = incomingIP + token;

  let rateLimiter: RateLimiterRedis;
  let subscriptionData: { team_id: string; plan: string } | null = null;
  let normalizedApi: string;

  let cacheKey = "";
  let redLockKey = "";
  const lockTTL = 15000; // 10 seconds
  let teamId: string | null = null;
  let priceId: string | null = null;

  if (token == "this_is_just_a_preview_token") {
    rateLimiter = getRateLimiter(RateLimiterMode.Preview, token);
    teamId = "preview";
  } else {
    normalizedApi = parseApi(token);
    if (!normalizedApiIsUuid(normalizedApi)) {
      return {
        success: false,
        error: "Unauthorized: Invalid token",
        status: 401,
      };
    }

    cacheKey = `api_key:${normalizedApi}`;

    try {
      const teamIdPriceId = await getValue(cacheKey);
      if (teamIdPriceId) {
        const { team_id, price_id } = JSON.parse(teamIdPriceId);
        teamId = team_id;
        priceId = price_id;
      } else {
        const {
          success,
          teamId: tId,
          priceId: pId,
          error,
          status,
        } = await getKeyAndPriceId(normalizedApi);
        if (!success) {
          return { success, error, status };
        }
        teamId = tId;
        priceId = pId;
        await setValue(
          cacheKey,
          JSON.stringify({ team_id: teamId, price_id: priceId }),
          60
        );
      }
    } catch (error) {
      Sentry.captureException(error);
      Logger.error(`Error with auth function: ${error}`);
      // const {
      //   success,
      //   teamId: tId,
      //   priceId: pId,
      //   error: e,
      //   status,
      // } = await getKeyAndPriceId(normalizedApi);
      // if (!success) {
      //   return { success, error: e, status };
      // }
      // teamId = tId;
      // priceId = pId;
      // const {
      //   success,
      //   teamId: tId,
      //   priceId: pId,
      //   error: e,
      //   status,
      // } = await getKeyAndPriceId(normalizedApi);
      // if (!success) {
      //   return { success, error: e, status };
      // }
      // teamId = tId;
      // priceId = pId;
    }

    // get_key_and_price_id_2 rpc definition:
    // create or replace function get_key_and_price_id_2(api_key uuid)
    //   returns table(key uuid, team_id uuid, price_id text) as $$
    //   begin
    //     if api_key is null then
    //       return query
    //       select null::uuid as key, null::uuid as team_id, null::text as price_id;
    //     end if;

    //     return query
    //     select ak.key, ak.team_id, s.price_id
    //     from api_keys ak
    //     left join subscriptions s on ak.team_id = s.team_id
    //     where ak.key = api_key;
    //   end;
    //   $$ language plpgsql;

    const plan = getPlanByPriceId(priceId);
    // HyperDX Logging
    setTrace(teamId, normalizedApi);
    subscriptionData = {
      team_id: teamId,
      plan: plan,
    };
    switch (mode) {
      case RateLimiterMode.Crawl:
        rateLimiter = getRateLimiter(
          RateLimiterMode.Crawl,
          token,
          subscriptionData.plan
        );
        break;
      case RateLimiterMode.Scrape:
        rateLimiter = getRateLimiter(
          RateLimiterMode.Scrape,
          token,
          subscriptionData.plan,
          teamId
        );
        break;
      case RateLimiterMode.Search:
        rateLimiter = getRateLimiter(
          RateLimiterMode.Search,
          token,
          subscriptionData.plan
        );
        break;
      case RateLimiterMode.Map:
        rateLimiter = getRateLimiter(
          RateLimiterMode.Map,
          token,
          subscriptionData.plan
        );
        break;
      case RateLimiterMode.CrawlStatus:
        rateLimiter = getRateLimiter(RateLimiterMode.CrawlStatus, token);
        break;

      case RateLimiterMode.Preview:
        rateLimiter = getRateLimiter(RateLimiterMode.Preview, token);
        break;
      default:
        rateLimiter = getRateLimiter(RateLimiterMode.Crawl, token);
        break;
      // case RateLimiterMode.Search:
      //   rateLimiter = await searchRateLimiter(RateLimiterMode.Search, token);
      //   break;
    }
  }

  const team_endpoint_token =
    token === "this_is_just_a_preview_token" ? iptoken : teamId;

  try {
    await rateLimiter.consume(team_endpoint_token);
  } catch (rateLimiterRes) {
    Logger.error(`Rate limit exceeded: ${rateLimiterRes}`);
    const secs = Math.round(rateLimiterRes.msBeforeNext / 1000) || 1;
    const retryDate = new Date(Date.now() + rateLimiterRes.msBeforeNext);

    // We can only send a rate limit email every 7 days, send notification already has the date in between checking
    const startDate = new Date();
    const endDate = new Date();
    endDate.setDate(endDate.getDate() + 7);

    // await sendNotification(team_id, NotificationType.RATE_LIMIT_REACHED, startDate.toISOString(), endDate.toISOString());
    // Cache longer for 429s
    if (teamId && priceId && mode !== RateLimiterMode.Preview) {
      await setValue(
        cacheKey,
        JSON.stringify({ team_id: teamId, price_id: priceId }),
        60 // 10 seconds, cache for everything
      );
    }

    return {
      success: false,
      error: `Rate limit exceeded. Consumed (req/min): ${rateLimiterRes.consumedPoints}, Remaining (req/min): ${rateLimiterRes.remainingPoints}. Upgrade your plan at https://firecrawl.dev/pricing for increased rate limits or please retry after ${secs}s, resets at ${retryDate}`,
      status: 429,
    };
  }

  if (
    token === "this_is_just_a_preview_token" &&
    (mode === RateLimiterMode.Scrape ||
      mode === RateLimiterMode.Preview ||
      mode === RateLimiterMode.Map ||
      // mode === RateLimiterMode.Crawl ||
      mode === RateLimiterMode.Search)
  ) {
    return { success: true, team_id: "preview" };
    // check the origin of the request and make sure its from firecrawl.dev
    // const origin = req.headers.origin;
    // if (origin && origin.includes("firecrawl.dev")){
    //   return { success: true, team_id: "preview" };
    // }
    // if(process.env.ENV !== "production") {
    //   return { success: true, team_id: "preview" };
    // }

    // return { success: false, error: "Unauthorized: Invalid token", status: 401 };
  }

  // make sure api key is valid, based on the api_keys table in supabase
  if (!subscriptionData) {
    normalizedApi = parseApi(token);

    const { data, error } = await supabase_service
      .from("api_keys")
      .select("*")
      .eq("key", normalizedApi);

    if (error || !data || data.length === 0) {
      if (error) {
        Sentry.captureException(error);
        Logger.warn(`Error fetching api key: ${error.message} or data is empty`);
      }
      return {
        success: false,
        error: "Unauthorized: Invalid token",
        status: 401,
      };
    }

    subscriptionData = data[0];
  }

  return {
    success: true,
    team_id: subscriptionData.team_id,
    plan: subscriptionData.plan ?? "",
  };
}
function getPlanByPriceId(price_id: string) {
  switch (price_id) {
    case process.env.STRIPE_PRICE_ID_STARTER:
      return "starter";
    case process.env.STRIPE_PRICE_ID_STANDARD:
      return "standard";
    case process.env.STRIPE_PRICE_ID_SCALE:
      return "scale";
    case process.env.STRIPE_PRICE_ID_HOBBY:
    case process.env.STRIPE_PRICE_ID_HOBBY_YEARLY:
      return "hobby";
    case process.env.STRIPE_PRICE_ID_STANDARD_NEW:
    case process.env.STRIPE_PRICE_ID_STANDARD_NEW_YEARLY:
      return "standardnew";
    case process.env.STRIPE_PRICE_ID_GROWTH:
    case process.env.STRIPE_PRICE_ID_GROWTH_YEARLY:
      return "growth";
    case process.env.STRIPE_PRICE_ID_GROWTH_DOUBLE_MONTHLY:
      return "growthdouble";
    default:
      return "free";
  }
}
Nick: 2024-08-26 18:48:00 -03:00			`import { parseApi } from "../lib/parseApi";`
			`import { getRateLimiter } from "../services/rate-limiter";`
Update auth.ts 2024-08-12 13:42:09 -04:00			`import {`
			`AuthResponse,`
			`NotificationType,`
			`RateLimiterMode,`
Nick: 2024-08-26 18:48:00 -03:00			`} from "../types";`
			`import { supabase_service } from "../services/supabase";`
			`import { withAuth } from "../lib/withAuth";`
added rate limits 2024-05-14 18:08:31 -03:00			`import { RateLimiterRedis } from "rate-limiter-flexible";`
Update auth.ts 2024-08-12 13:42:09 -04:00			`import { setTraceAttributes } from "@hyperdx/node-opentelemetry";`
Nick: 2024-08-26 18:48:00 -03:00			`import { sendNotification } from "../services/notification/email_notification";`
			`import { Logger } from "../lib/logger";`
			`import { redlock } from "../services/redlock";`
			`import { getValue } from "../services/redis";`
			`import { setValue } from "../services/redis";`
Update auth.ts 2024-08-12 13:42:09 -04:00			`import { validate } from "uuid";`
feat(sentry): add error handles to try-catch blocks 2024-08-22 03:55:40 +02:00			`import * as Sentry from "@sentry/node";`
Update auth.ts 2024-08-26 19:57:27 -03:00			`// const { data, error } = await supabase_service`
			`// .from('api_keys')`
			// .select(`
			`// key,`
			`// team_id,`
			`// teams (`
			`// subscriptions (`
			`// price_id`
			`// )`
			`// )`
			// `)
			`// .eq('key', normalizedApi)`
			`// .limit(1)`
			`// .single();`
Nick: redlock cache in auth 2024-08-12 13:37:47 -04:00			`function normalizedApiIsUuid(potentialUuid: string): boolean {`
			`// Check if the string is a valid UUID`
			`return validate(potentialUuid);`
			`}`
Update auth.ts 2024-08-12 13:42:09 -04:00			`export async function authenticateUser(`
			`req,`
			`res,`
			`mode?: RateLimiterMode`
			`): Promise<AuthResponse> {`
Nick: cleaner functions to handle authenticated requests that dont require ifs everywhere 2024-04-21 10:36:48 -07:00			`return withAuth(supaAuthenticateUser)(req, res, mode);`
			`}`
Nick: hyper dx integration init 2024-05-20 13:36:34 -07:00			`function setTrace(team_id: string, api_key: string) {`
			`try {`
			`setTraceAttributes({`
			`team_id,`
Update auth.ts 2024-08-12 13:42:09 -04:00			`api_key,`
Nick: hyper dx integration init 2024-05-20 13:36:34 -07:00			`});`
			`} catch (error) {`
feat(sentry): add error handles to try-catch blocks 2024-08-22 03:55:40 +02:00			`Sentry.captureException(error);`
added logger 2024-07-23 17:30:46 -03:00			Logger.error(`Error setting trace attributes: ${error.message}`);
Nick: hyper dx integration init 2024-05-20 13:36:34 -07:00			`}`
			`}`
Nick: removed redlock 2024-08-12 15:07:30 -04:00
			`async function getKeyAndPriceId(normalizedApi: string): Promise<{`
			`success: boolean;`
			`teamId?: string;`
			`priceId?: string;`
			`error?: string;`
			`status?: number;`
			`}> {`
			`const { data, error } = await supabase_service.rpc("get_key_and_price_id_2", {`
			`api_key: normalizedApi,`
			`});`
			`if (error) {`
feat(sentry): add error handles to try-catch blocks 2024-08-22 03:55:40 +02:00			`Sentry.captureException(error);`
Nick: removed redlock 2024-08-12 15:07:30 -04:00			Logger.error(`RPC ERROR (get_key_and_price_id_2): ${error.message}`);
			`return {`
			`success: false,`
			`error:`
			`"The server seems overloaded. Please contact hello@firecrawl.com if you aren't sending too many requests at once.",`
			`status: 500,`
			`};`
			`}`
			`if (!data \|\| data.length === 0) {`
fix(auth): fix error reporting 2024-08-22 14:08:09 +02:00			`if (error) {`
			Logger.warn(`Error fetching api key: ${error.message} or data is empty`);
			`Sentry.captureException(error);`
			`}`
Nick: removed redlock 2024-08-12 15:07:30 -04:00			`// TODO: change this error code ?`
			`return {`
			`success: false,`
			`error: "Unauthorized: Invalid token",`
			`status: 401,`
			`};`
			`} else {`
			`return {`
			`success: true,`
			`teamId: data[0].team_id,`
			`priceId: data[0].price_id,`
			`};`
			`}`
			`}`
Nick: cleaner functions to handle authenticated requests that dont require ifs everywhere 2024-04-21 10:36:48 -07:00			`export async function supaAuthenticateUser(`
Nick: 2024-04-20 16:38:05 -07:00			`req,`
			`res,`
			`mode?: RateLimiterMode`
			`): Promise<{`
			`success: boolean;`
			`team_id?: string;`
			`error?: string;`
			`status?: number;`
Nick: 2024-05-30 14:46:55 -07:00			`plan?: string;`
Nick: 2024-04-20 16:38:05 -07:00			`}> {`
			`const authHeader = req.headers.authorization;`
			`if (!authHeader) {`
			`return { success: false, error: "Unauthorized", status: 401 };`
			`}`
			`const token = authHeader.split(" ")[1]; // Extract the token from "Bearer <token>"`
			`if (!token) {`
			`return {`
			`success: false,`
			`error: "Unauthorized: Token missing",`
			`status: 401,`
			`};`
			`}`

added rate limits 2024-05-14 18:08:31 -03:00			`const incomingIP = (req.headers["x-forwarded-for"] \|\|`
			`req.socket.remoteAddress) as string;`
			`const iptoken = incomingIP + token;`

			`let rateLimiter: RateLimiterRedis;`
Update auth.ts 2024-08-12 13:42:09 -04:00			`let subscriptionData: { team_id: string; plan: string } \| null = null;`
added rate limits 2024-05-14 18:08:31 -03:00			`let normalizedApi: string;`

Update auth.ts 2024-08-12 13:42:09 -04:00			`let cacheKey = "";`
Nick: redlock cache in auth 2024-08-12 13:37:47 -04:00			`let redLockKey = "";`
Nick: removed redlock 2024-08-12 15:07:30 -04:00			`const lockTTL = 15000; // 10 seconds`
Nick: redlock cache in auth 2024-08-12 13:37:47 -04:00			`let teamId: string \| null = null;`
			`let priceId: string \| null = null;`
Nick: 2024-06-05 13:20:26 -07:00
added rate limits 2024-05-14 18:08:31 -03:00			`if (token == "this_is_just_a_preview_token") {`
Added e2e tests 2024-05-17 15:37:47 -03:00			`rateLimiter = getRateLimiter(RateLimiterMode.Preview, token);`
Nick: redlock cache in auth 2024-08-12 13:37:47 -04:00			`teamId = "preview";`
Added e2e tests 2024-05-17 15:37:47 -03:00			`} else {`
added rate limits 2024-05-14 18:08:31 -03:00			`normalizedApi = parseApi(token);`
Update auth.ts 2024-08-12 13:42:09 -04:00			`if (!normalizedApiIsUuid(normalizedApi)) {`
Nick: redlock cache in auth 2024-08-12 13:37:47 -04:00			`return {`
			`success: false,`
			`error: "Unauthorized: Invalid token",`
			`status: 401,`
			`};`
			`}`
Nick: removed redlock 2024-08-12 15:07:30 -04:00
Nick: redlock cache in auth 2024-08-12 13:37:47 -04:00			cacheKey = `api_key:${normalizedApi}`;

Update auth.ts 2024-08-12 13:42:09 -04:00			`try {`
Nick: removed redlock 2024-08-12 15:07:30 -04:00			`const teamIdPriceId = await getValue(cacheKey);`
			`if (teamIdPriceId) {`
			`const { team_id, price_id } = JSON.parse(teamIdPriceId);`
			`teamId = team_id;`
			`priceId = price_id;`
			`} else {`
			`const {`
			`success,`
			`teamId: tId,`
			`priceId: pId,`
			`error,`
			`status,`
			`} = await getKeyAndPriceId(normalizedApi);`
			`if (!success) {`
			`return { success, error, status };`
Nick: redlock cache in auth 2024-08-12 13:37:47 -04:00			`}`
Nick: removed redlock 2024-08-12 15:07:30 -04:00			`teamId = tId;`
			`priceId = pId;`
			`await setValue(`
			`cacheKey,`
			`JSON.stringify({ team_id: teamId, price_id: priceId }),`
Update auth.ts 2024-08-26 19:57:27 -03:00			`60`
Nick: removed redlock 2024-08-12 15:07:30 -04:00			`);`
Nick: redlock cache in auth 2024-08-12 13:37:47 -04:00			`}`
Update auth.ts 2024-08-12 13:42:09 -04:00			`} catch (error) {`
feat(sentry): add error handles to try-catch blocks 2024-08-22 03:55:40 +02:00			`Sentry.captureException(error);`
reverting delete, fixed express bug on checkCredits 2024-08-21 09:28:20 -03:00			Logger.error(`Error with auth function: ${error}`);
Nick: removed redlock 2024-08-12 15:07:30 -04:00			`// const {`
			`// success,`
			`// teamId: tId,`
			`// priceId: pId,`
			`// error: e,`
			`// status,`
			`// } = await getKeyAndPriceId(normalizedApi);`
			`// if (!success) {`
			`// return { success, error: e, status };`
			`// }`
			`// teamId = tId;`
			`// priceId = pId;`
			`// const {`
			`// success,`
			`// teamId: tId,`
			`// priceId: pId,`
			`// error: e,`
			`// status,`
			`// } = await getKeyAndPriceId(normalizedApi);`
			`// if (!success) {`
			`// return { success, error: e, status };`
			`// }`
			`// teamId = tId;`
			`// priceId = pId;`
Nick: redlock cache in auth 2024-08-12 13:37:47 -04:00			`}`
added rate limits 2024-05-14 18:08:31 -03:00
Added rpc definition 2024-05-15 08:40:21 -03:00			`// get_key_and_price_id_2 rpc definition:`
			`// create or replace function get_key_and_price_id_2(api_key uuid)`
			`// returns table(key uuid, team_id uuid, price_id text) as $$`
			`// begin`
			`// if api_key is null then`
			`// return query`
			`// select null::uuid as key, null::uuid as team_id, null::text as price_id;`
			`// end if;`

			`// return query`
			`// select ak.key, ak.team_id, s.price_id`
			`// from api_keys ak`
			`// left join subscriptions s on ak.team_id = s.team_id`
			`// where ak.key = api_key;`
			`// end;`
			`// $$ language plpgsql;`
added rate limits 2024-05-14 18:08:31 -03:00
Nick: redlock cache in auth 2024-08-12 13:37:47 -04:00			`const plan = getPlanByPriceId(priceId);`
Nick: hyper dx integration init 2024-05-20 13:36:34 -07:00			`// HyperDX Logging`
Nick: redlock cache in auth 2024-08-12 13:37:47 -04:00			`setTrace(teamId, normalizedApi);`
added rate limits 2024-05-14 18:08:31 -03:00			`subscriptionData = {`
Nick: redlock cache in auth 2024-08-12 13:37:47 -04:00			`team_id: teamId,`
Update auth.ts 2024-08-12 13:42:09 -04:00			`plan: plan,`
			`};`
Feat: Provide more details for 429 error msg - Added better error code for when rate limit exceeded including consumed/remaining points, reset date and retry-after seconds 2024-05-25 11:57:49 -04:00			`switch (mode) {`
added rate limits 2024-05-14 18:08:31 -03:00			`case RateLimiterMode.Crawl:`
Update auth.ts 2024-08-12 13:42:09 -04:00			`rateLimiter = getRateLimiter(`
			`RateLimiterMode.Crawl,`
			`token,`
			`subscriptionData.plan`
			`);`
added rate limits 2024-05-14 18:08:31 -03:00			`break;`
			`case RateLimiterMode.Scrape:`
Update auth.ts 2024-08-12 13:42:09 -04:00			`rateLimiter = getRateLimiter(`
			`RateLimiterMode.Scrape,`
			`token,`
Nick: 2024-08-26 16:05:11 -03:00			`subscriptionData.plan,`
			`teamId`
Update auth.ts 2024-08-12 13:42:09 -04:00			`);`
added rate limits 2024-05-14 18:08:31 -03:00			`break;`
Nick: fixes 2024-05-30 14:42:32 -07:00			`case RateLimiterMode.Search:`
Update auth.ts 2024-08-12 13:42:09 -04:00			`rateLimiter = getRateLimiter(`
			`RateLimiterMode.Search,`
			`token,`
			`subscriptionData.plan`
			`);`
Nick: fixes 2024-05-30 14:42:32 -07:00			`break;`
Nick: fixed sdk types and map preview 2024-08-27 20:02:39 -03:00			`case RateLimiterMode.Map:`
			`rateLimiter = getRateLimiter(`
			`RateLimiterMode.Map,`
			`token,`
			`subscriptionData.plan`
			`);`
			`break;`
Update auth.ts 2024-05-14 14:47:36 -07:00			`case RateLimiterMode.CrawlStatus:`
Update auth.ts 2024-05-15 08:34:49 -03:00			`rateLimiter = getRateLimiter(RateLimiterMode.CrawlStatus, token);`
Update auth.ts 2024-05-14 14:47:36 -07:00			`break;`
Update auth.ts 2024-08-12 13:42:09 -04:00
Nick: improvements 2024-05-19 12:45:46 -07:00			`case RateLimiterMode.Preview:`
			`rateLimiter = getRateLimiter(RateLimiterMode.Preview, token);`
			`break;`
Update auth.ts 2024-05-14 14:47:36 -07:00			`default:`
Update auth.ts 2024-05-15 08:34:49 -03:00			`rateLimiter = getRateLimiter(RateLimiterMode.Crawl, token);`
Update auth.ts 2024-05-14 14:47:36 -07:00			`break;`
added rate limits 2024-05-14 18:08:31 -03:00			`// case RateLimiterMode.Search:`
			`// rateLimiter = await searchRateLimiter(RateLimiterMode.Search, token);`
			`// break;`
			`}`
			`}`

Update auth.ts 2024-08-12 13:42:09 -04:00			`const team_endpoint_token =`
			`token === "this_is_just_a_preview_token" ? iptoken : teamId;`
Nick: 2024-06-05 13:20:26 -07:00
Nick: 2024-04-20 16:38:05 -07:00			`try {`
Nick: 2024-06-05 13:20:26 -07:00			`await rateLimiter.consume(team_endpoint_token);`
Nick: 2024-04-20 16:38:05 -07:00			`} catch (rateLimiterRes) {`
added logger 2024-07-23 17:30:46 -03:00			Logger.error(`Rate limit exceeded: ${rateLimiterRes}`);
Feat: Provide more details for 429 error msg - Added better error code for when rate limit exceeded including consumed/remaining points, reset date and retry-after seconds 2024-05-25 11:57:49 -04:00			`const secs = Math.round(rateLimiterRes.msBeforeNext / 1000) \|\| 1;`
			`const retryDate = new Date(Date.now() + rateLimiterRes.msBeforeNext);`
Nick: 2024-06-05 13:20:26 -07:00
			`// We can only send a rate limit email every 7 days, send notification already has the date in between checking`
			`const startDate = new Date();`
			`const endDate = new Date();`
			`endDate.setDate(endDate.getDate() + 7);`
Update auth.ts 2024-08-12 13:42:09 -04:00
Nick: removing rate limit emails for now 2024-06-07 10:39:11 -07:00			`// await sendNotification(team_id, NotificationType.RATE_LIMIT_REACHED, startDate.toISOString(), endDate.toISOString());`
Nick: removed redlock 2024-08-12 15:07:30 -04:00			`// Cache longer for 429s`
Update auth.ts 2024-08-12 13:42:09 -04:00			`if (teamId && priceId && mode !== RateLimiterMode.Preview) {`
			`await setValue(`
			`cacheKey,`
			`JSON.stringify({ team_id: teamId, price_id: priceId }),`
Nick: removed redlock 2024-08-12 15:07:30 -04:00			`60 // 10 seconds, cache for everything`
Update auth.ts 2024-08-12 13:42:09 -04:00			`);`
Nick: redlock cache in auth 2024-08-12 13:37:47 -04:00			`}`

Nick: 2024-04-20 16:38:05 -07:00			`return {`
			`success: false,`
Nick: 2024-08-21 21:51:54 -03:00			error: `Rate limit exceeded. Consumed (req/min): ${rateLimiterRes.consumedPoints}, Remaining (req/min): ${rateLimiterRes.remainingPoints}. Upgrade your plan at https://firecrawl.dev/pricing for increased rate limits or please retry after ${secs}s, resets at ${retryDate}`,
Nick: 2024-04-20 16:38:05 -07:00			`status: 429,`
			`};`
			`}`

			`if (`
			`token === "this_is_just_a_preview_token" &&`
Update auth.ts 2024-08-12 13:42:09 -04:00			`(mode === RateLimiterMode.Scrape \|\|`
			`mode === RateLimiterMode.Preview \|\|`
Nick: fixed sdk types and map preview 2024-08-27 20:02:39 -03:00			`mode === RateLimiterMode.Map \|\|`
			`// mode === RateLimiterMode.Crawl \|\|`
Update auth.ts 2024-08-12 13:42:09 -04:00			`mode === RateLimiterMode.Search)`
Nick: 2024-04-20 16:38:05 -07:00			`) {`
			`return { success: true, team_id: "preview" };`
Update auth.ts 2024-04-26 12:57:49 -07:00			`// check the origin of the request and make sure its from firecrawl.dev`
			`// const origin = req.headers.origin;`
			`// if (origin && origin.includes("firecrawl.dev")){`
			`// return { success: true, team_id: "preview" };`
			`// }`
			`// if(process.env.ENV !== "production") {`
			`// return { success: true, team_id: "preview" };`
			`// }`

			`// return { success: false, error: "Unauthorized: Invalid token", status: 401 };`
Nick: 2024-04-20 16:38:05 -07:00			`}`

			`// make sure api key is valid, based on the api_keys table in supabase`
added rate limits 2024-05-14 18:08:31 -03:00			`if (!subscriptionData) {`
			`normalizedApi = parseApi(token);`

			`const { data, error } = await supabase_service`
Feat: Provide more details for 429 error msg - Added better error code for when rate limit exceeded including consumed/remaining points, reset date and retry-after seconds 2024-05-25 11:57:49 -04:00			`.from("api_keys")`
			`.select("*")`
			`.eq("key", normalizedApi);`
added rate limits 2024-05-14 18:08:31 -03:00
Update auth.ts 2024-07-29 18:44:18 -04:00			`if (error \|\| !data \|\| data.length === 0) {`
feat(sentry): add error handles to try-catch blocks 2024-08-22 03:55:40 +02:00			`if (error) {`
			`Sentry.captureException(error);`
fix(auth): fix error reporting 2024-08-22 14:08:09 +02:00			Logger.warn(`Error fetching api key: ${error.message} or data is empty`);
feat(sentry): add error handles to try-catch blocks 2024-08-22 03:55:40 +02:00			`}`
added rate limits 2024-05-14 18:08:31 -03:00			`return {`
			`success: false,`
			`error: "Unauthorized: Invalid token",`
			`status: 401,`
			`};`
			`}`

			`subscriptionData = data[0];`
Nick: 2024-04-20 16:38:05 -07:00			`}`

Update auth.ts 2024-08-12 13:42:09 -04:00			`return {`
			`success: true,`
			`team_id: subscriptionData.team_id,`
			`plan: subscriptionData.plan ?? "",`
			`};`
Nick: 2024-04-20 16:38:05 -07:00			`}`
added rate limits 2024-05-14 18:08:31 -03:00			`function getPlanByPriceId(price_id: string) {`
			`switch (price_id) {`
Nick: new limits, new pricing 2024-05-30 14:31:36 -07:00			`case process.env.STRIPE_PRICE_ID_STARTER:`
Update auth.ts 2024-08-12 13:42:09 -04:00			`return "starter";`
added rate limits 2024-05-14 18:08:31 -03:00			`case process.env.STRIPE_PRICE_ID_STANDARD:`
Update auth.ts 2024-08-12 13:42:09 -04:00			`return "standard";`
added rate limits 2024-05-14 18:08:31 -03:00			`case process.env.STRIPE_PRICE_ID_SCALE:`
Update auth.ts 2024-08-12 13:42:09 -04:00			`return "scale";`
Update auth.ts 2024-07-30 10:37:33 -03:00			`case process.env.STRIPE_PRICE_ID_HOBBY:`
			`case process.env.STRIPE_PRICE_ID_HOBBY_YEARLY:`
Update auth.ts 2024-08-12 13:42:09 -04:00			`return "hobby";`
Update auth.ts 2024-07-30 10:37:33 -03:00			`case process.env.STRIPE_PRICE_ID_STANDARD_NEW:`
			`case process.env.STRIPE_PRICE_ID_STANDARD_NEW_YEARLY:`
Update auth.ts 2024-08-12 13:42:09 -04:00			`return "standardnew";`
Update auth.ts 2024-07-30 10:37:33 -03:00			`case process.env.STRIPE_PRICE_ID_GROWTH:`
			`case process.env.STRIPE_PRICE_ID_GROWTH_YEARLY:`
Update auth.ts 2024-08-12 13:42:09 -04:00			`return "growth";`
Nick: added growth-2x plan 2024-08-15 18:37:19 -04:00			`case process.env.STRIPE_PRICE_ID_GROWTH_DOUBLE_MONTHLY:`
			`return "growthdouble";`
added rate limits 2024-05-14 18:08:31 -03:00			`default:`
Update auth.ts 2024-08-12 13:42:09 -04:00			`return "free";`
added rate limits 2024-05-14 18:08:31 -03:00			`}`
Update auth.ts 2024-08-12 13:42:09 -04:00			`}`