2020-10-27 11:27:17 +01:00
|
|
|
'use strict';
|
|
|
|
|
|
2021-10-08 11:42:13 +02:00
|
|
|
module.exports = (config, { strapi }) => async (ctx, next) => {
|
2021-09-03 11:11:37 +02:00
|
|
|
const ratelimit = require('koa2-ratelimit').RateLimit;
|
|
|
|
|
|
2019-08-21 12:10:23 +02:00
|
|
|
const message = [
|
|
|
|
|
{
|
|
|
|
|
messages: [
|
|
|
|
|
{
|
|
|
|
|
id: 'Auth.form.error.ratelimit',
|
|
|
|
|
message: 'Too many attempts, please try again in a minute.',
|
|
|
|
|
},
|
|
|
|
|
],
|
|
|
|
|
},
|
|
|
|
|
];
|
2018-08-01 14:56:31 +02:00
|
|
|
|
2021-09-03 11:11:37 +02:00
|
|
|
return ratelimit.middleware(
|
2019-04-05 16:11:09 +02:00
|
|
|
Object.assign(
|
|
|
|
|
{},
|
|
|
|
|
{
|
|
|
|
|
interval: 1 * 60 * 1000,
|
|
|
|
|
max: 5,
|
2020-06-15 10:34:59 +02:00
|
|
|
prefixKey: `${ctx.request.path}:${ctx.request.ip}`,
|
2019-04-05 16:11:09 +02:00
|
|
|
message,
|
|
|
|
|
},
|
2022-02-02 01:38:53 +01:00
|
|
|
strapi.config.get('plugin.users-permissions.ratelimit'),
|
|
|
|
|
config
|
2019-04-05 16:11:09 +02:00
|
|
|
)
|
|
|
|
|
)(ctx, next);
|
2018-08-01 14:56:31 +02:00
|
|
|
};
|
