Strona główna Odkrywaj Pomoc
Zaloguj się
wiki
/
weseek__growi
kopia lustrzana https://github.com/weseek/growi
2
0
Forkuj 0
Pliki Problemy 0 Wiki
Przeglądaj źródła

remove express-rate-limit method

yuken 3 lat temu
rodzic
c6f643299d
commit
bc84c904f8
2 zmienionych plików z 1 dodań i 17 usunięć
Widok podzielony Pokaż statystyki zmian
  1. 1 9
      packages/app/src/server/routes/apiv3/forgot-password.js
  2. 0 8
      packages/app/src/server/routes/index.js

+ 1 - 9
packages/app/src/server/routes/apiv3/forgot-password.js
Wyświetl plik 

@@ -1,5 +1,4 @@
 
 import { format, subSeconds } from 'date-fns';
 
-import rateLimit from 'express-rate-limit';
 
 
 import injectResetOrderByTokenMiddleware from '~/server/middlewares/inject-reset-order-by-token-middleware';
 
 import PasswordResetOrder from '~/server/models/password-reset-order';
 
@@ -38,13 +37,6 @@ module.exports = (crowi) => {
 
     ],
 
   };
 
 
-  const apiLimiter = rateLimit({
 
-    windowMs: 15 * 60 * 1000, // 15 minutes
 
-    max: 10, // limit each IP to 10 requests per windowMs
 
-    message:
 
-      'Too many requests were sent from this IP. Please try a password reset request again on the password reset request form',
 
-  });
 
-
 
   const checkPassportStrategyMiddleware = checkForgotPasswordEnabledMiddlewareFactory(crowi, true);
 
 
   async function sendPasswordResetEmail(txtFileName, i18n, email, url, expiredAt) {
 
@@ -92,7 +84,7 @@ module.exports = (crowi) => {
 
   });
 
 
   // eslint-disable-next-line max-len
 
-  router.put('/', apiLimiter, checkPassportStrategyMiddleware, injectResetOrderByTokenMiddleware, csrf, validator.password, apiV3FormValidator, async(req, res) => {
 
+  router.put('/', checkPassportStrategyMiddleware, injectResetOrderByTokenMiddleware, csrf, validator.password, apiV3FormValidator, async(req, res) => {
 
     const { passwordResetOrder } = req;
 
     const { email } = passwordResetOrder;
 
     const grobalLang = configManager.getConfig('crowi', 'app:globalLang');

+ 0 - 8
packages/app/src/server/routes/index.js
Wyświetl plik 

@@ -15,17 +15,9 @@ import * as forgotPassword from './forgot-password';
 
 import * as privateLegacyPages from './private-legacy-pages';
 
 import * as userActivation from './user-activation';
 
 
-// const rateLimit = require('express-rate-limit');
 
 const multer = require('multer');
 
 const autoReap = require('multer-autoreap');
 
 
-// const apiLimiter = rateLimit({
 
-//   windowMs: 15 * 60 * 1000, // 15 minutes
 
-//   max: 10, // limit each IP to 10 requests per windowMs
 
-//   message:
 
-//     'Too many requests sent from this IP, please try again after 15 minutes',
 
-// });
 
-
 
 autoReap.options.reapOnError = true; // continue reaping the file even if an error occurs
 
 
 module.exports = function(crowi, app) {