yujunjun/strapi
1
0
Fork 0
mirror of https://github.com/strapi/strapi.git synced 2025-10-30 01:17:28 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add rate limit configs

Browse Source
This commit is contained in:
Jim LAURIE 2018-08-08 14:29:10 +02:00
parent 738cbf656a
commit 0afe2eceac
2 changed files with 8 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
packages/strapi-plugin-users-permissions/config/policies/rateLimit.js
View File

@ -3,10 +3,10 @@ const RateLimit = require('koa2-ratelimit').RateLimit;
module.exports = async (ctx, next) => { module.exports = async (ctx, next) => {
const message = ctx.request.admin ? [{ messages: [{ id: 'Auth.form.error.ratelimit' }] }] : 'Too many attempts, please try again in a minute.'; const message = ctx.request.admin ? [{ messages: [{ id: 'Auth.form.error.ratelimit' }] }] : 'Too many attempts, please try again in a minute.';
return RateLimit.middleware({ return RateLimit.middleware(Object.assign({}, {
interval: 1*60*1000, interval: 1*60*1000,
max: 5, max: 5,
prefixKey: `${ctx.request.url}:${ctx.request.ip}`, prefixKey: `${ctx.request.url}:${ctx.request.ip}`,
message message
})(ctx, next); }, strapi.plugins['users-permissions'].config.ratelimit))(ctx, next);
}; };

6
packages/strapi-plugin-users-permissions/config/request.json Normal file
View File

@ -0,0 +1,6 @@
{
"ratelimit": {
"interval": 60000,
"max": 10
}
}