Mirrors/cobalt
1
0
Fork 0
mirror of https://github.com/wukko/cobalt.git synced 2025-04-29 22:14:26 +02:00
Code Issues Packages Projects Releases Wiki Activity

api/core: customizable session rate limit params

Browse Source
This commit is contained in:
wukko 2025-03-31 22:32:21 +06:00
parent 59665af44a
commit f70f88bc4c
No known key found for this signature in database
GPG Key ID: 3E30B3F26C7B4AA2
2 changed files with 7 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
api/src/config.js
View File

@ -28,6 +28,9 @@ const env = {
rateLimitWindow: (process.env.RATELIMIT_WINDOW && parseInt(process.env.RATELIMIT_WINDOW)) || 60, rateLimitWindow: (process.env.RATELIMIT_WINDOW && parseInt(process.env.RATELIMIT_WINDOW)) || 60,
rateLimitMax: (process.env.RATELIMIT_MAX && parseInt(process.env.RATELIMIT_MAX)) || 20, rateLimitMax: (process.env.RATELIMIT_MAX && parseInt(process.env.RATELIMIT_MAX)) || 20,
sessionRateLimitWindow: (process.env.SESSION_RATELIMIT_WINDOW && parseInt(process.env.SESSION_RATELIMIT_WINDOW)) || 60,
sessionRateLimit: (process.env.SESSION_RATELIMIT && parseInt(process.env.SESSION_RATELIMIT)) || 10,
durationLimit: (process.env.DURATION_LIMIT && parseInt(process.env.DURATION_LIMIT)) || 10800, durationLimit: (process.env.DURATION_LIMIT && parseInt(process.env.DURATION_LIMIT)) || 10800,
streamLifespan: (process.env.TUNNEL_LIFESPAN && parseInt(process.env.TUNNEL_LIFESPAN)) || 90, streamLifespan: (process.env.TUNNEL_LIFESPAN && parseInt(process.env.TUNNEL_LIFESPAN)) || 90,

8
api/src/core/api.js
View File

@ -74,8 +74,8 @@ export const runAPI = async (express, app, __dirname, isPrimary = true) => {
const keyGenerator = (req) => hashHmac(getIP(req), 'rate').toString('base64url'); const keyGenerator = (req) => hashHmac(getIP(req), 'rate').toString('base64url');
const sessionLimiter = rateLimit({ const sessionLimiter = rateLimit({
windowMs: 60000, windowMs: env.sessionRateLimitWindow * 1000,
limit: 10, limit: env.sessionRateLimit,
standardHeaders: 'draft-6', standardHeaders: 'draft-6',
legacyHeaders: false, legacyHeaders: false,
keyGenerator, keyGenerator,
@ -91,7 +91,7 @@ export const runAPI = async (express, app, __dirname, isPrimary = true) => {
keyGenerator: req => req.rateLimitKey || keyGenerator(req), keyGenerator: req => req.rateLimitKey || keyGenerator(req),
store: await createStore('api'), store: await createStore('api'),
handler: handleRateExceeded handler: handleRateExceeded
}) });
const apiTunnelLimiter = rateLimit({ const apiTunnelLimiter = rateLimit({
windowMs: env.rateLimitWindow * 1000, windowMs: env.rateLimitWindow * 1000,
@ -103,7 +103,7 @@ export const runAPI = async (express, app, __dirname, isPrimary = true) => {
handler: (_, res) => { handler: (_, res) => {
return res.sendStatus(429) return res.sendStatus(429)
} }
}) });
app.set('trust proxy', ['loopback', 'uniquelocal']); app.set('trust proxy', ['loopback', 'uniquelocal']);