Página Principal Explorar Ajuda
Iniciar Sessão
wiki
/
weseek__growi
mirror de https://github.com/weseek/growi
2
0
Fork 0
Ficheiros Problemas 0 Wiki
Árvore: 0998ecb831
Ramos Etiquetas
weseek__growi
/
packages
/
app
/
config
/
rate-limiter.ts

rate-limiter.ts 1.9 KB
Histórico Em bruto

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. export type IApiRateLimitConfig = {
    2. 

  2.   method: string,
    3. 

  3.   maxRequests: number,
    4. 

  4.   usersPerIpProspection?: number,
    5. 

  5. }
    6. 

  6. export type IApiRateLimitEndpointMap = {
    7. 

  7.   [endpoint: string]: IApiRateLimitConfig
    8. 

  8. }
    9. 

  9. 

  10. export const DEFAULT_MAX_REQUESTS = 500;
    11. 

  11. export const DEFAULT_DURATION_SEC = 60;
    12. 

  12. export const DEFAULT_USERS_PER_IP_PROSPECTION = 5;
    13. 

  13. 

  14. const MAX_REQUESTS_TIER_1 = 5;
    15. 

  15. const MAX_REQUESTS_TIER_2 = 20;
    16. 

  16. const MAX_REQUESTS_TIER_3 = 50;
    17. 

  17. const MAX_REQUESTS_TIER_4 = 100;
    18. 

  18. 

  19. // default config without reg exp
    20. 

  20. export const defaultConfig: IApiRateLimitEndpointMap = {
    21. 

  21.   '/_api/v3/healthcheck': {
    22. 

  22.     method: 'GET',
    23. 

  23.     maxRequests: 60,
    24. 

  24.     usersPerIpProspection: 1,
    25. 

  25.   },
    26. 

  26.   '/installer': {
    27. 

  27.     method: 'POST',
    28. 

  28.     maxRequests: MAX_REQUESTS_TIER_1,
    29. 

  29.     usersPerIpProspection: 1,
    30. 

  30.   },
    31. 

  31.   '/login': {
    32. 

  32.     method: 'POST',
    33. 

  33.     maxRequests: MAX_REQUESTS_TIER_1,
    34. 

  34.     usersPerIpProspection: 100,
    35. 

  35.   },
    36. 

  36.   '/invited': {
    37. 

  37.     method: 'POST',
    38. 

  38.     maxRequests: MAX_REQUESTS_TIER_2,
    39. 

  39.   },
    40. 

  40.   '/register': {
    41. 

  41.     method: 'POST',
    42. 

  42.     maxRequests: MAX_REQUESTS_TIER_1,
    43. 

  43.     usersPerIpProspection: 20,
    44. 

  44.   },
    45. 

  45.   '/user-activation/register': {
    46. 

  46.     method: 'POST',
    47. 

  47.     maxRequests: MAX_REQUESTS_TIER_1,
    48. 

  48.     usersPerIpProspection: 20,
    49. 

  49.   },
    50. 

  50.   '/_api/login/testLdap': {
    51. 

  51.     method: 'POST',
    52. 

  52.     maxRequests: MAX_REQUESTS_TIER_2,
    53. 

  53.     usersPerIpProspection: 1,
    54. 

  54.   },
    55. 

  55.   '/_api/check_username': {
    56. 

  56.     method: 'GET',
    57. 

  57.     maxRequests: MAX_REQUESTS_TIER_3,
    58. 

  58.   },
    59. 

  59. };
    60. 

  60. 

  61. // default config with reg exp
    62. 

  62. export const defaultConfigWithRegExp = {
    63. 

  63.   '/forgot-password/.*': {
    64. 

  64.     method: 'ALL',
    65. 

  65.     maxRequests: MAX_REQUESTS_TIER_1,
    66. 

  66.   },
    67. 

  67.   '/user-activation/.*': {
    68. 

  68.     method: 'GET',
    69. 

  69.     maxRequests: MAX_REQUESTS_TIER_1,
    70. 

  70.   },
    71. 

  71.   '/attachment/[0-9a-z]{24}': {
    72. 

  72.     method: 'GET',
    73. 

  73.     maxRequests: MAX_REQUESTS_TIER_4,
    74. 

  74.   },
    75. 

  75.   '/download/[0-9a-z]{24}': {
    76. 

  76.     method: 'GET',
    77. 

  77.     maxRequests: MAX_REQUESTS_TIER_4,
    78. 

  78.   },
    79. 

  79.   '/share/[0-9a-z]{24}': {
    80. 

  80.     method: 'GET',
    81. 

  81.     maxRequests: MAX_REQUESTS_TIER_4,
    82. 

  82.   },
    83. 

  83. };
    84.