implement config option to disable ratelimit

2025-09-25 08:19:07 +00:00 · 2022-12-16 10:42:28 -07:00 · 2022-12-16 10:42:28 -07:00 · b75e8a1d10
commit b75e8a1d10
parent 68a4ec7729
1 changed files with 24 additions and 12 deletions
--- a/packages/core/admin/server/middlewares/rateLimit.js
+++ b/packages/core/admin/server/middlewares/rateLimit.js
@ -8,18 +8,30 @@ const { RateLimitError } = utils.errors;
 module.exports =
  (config, { strapi }) =>
  async (ctx, next) => {
-    const ratelimit = require('koa2-ratelimit').RateLimit;
+    let ratelimitConfig = strapi.config.get('admin.ratelimit');

-    const userEmail = toLower(ctx.request.body.email) || 'unknownEmail';
+    if (!ratelimitConfig || !ratelimitConfig.enabled) {
+      ratelimitConfig = {
+        enabled: true,
+      };
+    }

-    return ratelimit.middleware({
-      interval: { min: 5 },
-      max: 5,
-      prefixKey: `${userEmail}:${ctx.request.path}:${ctx.request.ip}`,
-      handler() {
-        throw new RateLimitError();
-      },
-      ...strapi.config.get('admin.ratelimit'),
-      ...config,
-    })(ctx, next);
+    if (ratelimitConfig.enabled === true) {
+      const ratelimit = require('koa2-ratelimit').RateLimit;
+
+      const userEmail = toLower(ctx.request.body.email) || 'unknownEmail';
+
+      return ratelimit.middleware({
+        interval: { min: 5 },
+        max: 5,
+        prefixKey: `${userEmail}:${ctx.request.path}:${ctx.request.ip}`,
+        handler() {
+          throw new RateLimitError();
+        },
+        ...ratelimitConfig,
+        ...config,
+      })(ctx, next);
+    }
+
+    return next();
  };