mirror of
https://github.com/danny-avila/LibreChat.git
synced 2026-07-02 04:12:36 +00:00
* harden token and remote file handling * sort s3 storage imports * split token submission rate limits
39 lines
1.2 KiB
JavaScript
39 lines
1.2 KiB
JavaScript
const rateLimit = require('express-rate-limit');
|
|
const { ViolationTypes } = require('librechat-data-provider');
|
|
const { limiterCache, removePorts } = require('@librechat/api');
|
|
const { logViolation } = require('~/cache');
|
|
|
|
const {
|
|
RESET_PASSWORD_SUBMISSION_WINDOW = process.env.RESET_PASSWORD_WINDOW ?? 2,
|
|
RESET_PASSWORD_SUBMISSION_MAX = process.env.RESET_PASSWORD_MAX ?? 2,
|
|
RESET_PASSWORD_SUBMISSION_VIOLATION_SCORE: score,
|
|
} = process.env;
|
|
const windowMs = RESET_PASSWORD_SUBMISSION_WINDOW * 60 * 1000;
|
|
const max = RESET_PASSWORD_SUBMISSION_MAX;
|
|
const windowInMinutes = windowMs / 60000;
|
|
const message = `Too many attempts, please try again after ${windowInMinutes} minute(s)`;
|
|
|
|
const handler = async (req, res) => {
|
|
const type = ViolationTypes.RESET_PASSWORD_LIMIT;
|
|
const errorMessage = {
|
|
type,
|
|
max,
|
|
windowInMinutes,
|
|
limiter: 'submission',
|
|
};
|
|
|
|
await logViolation(req, res, type, errorMessage, score);
|
|
return res.status(429).json({ message });
|
|
};
|
|
|
|
const limiterOptions = {
|
|
windowMs,
|
|
max,
|
|
handler,
|
|
keyGenerator: removePorts,
|
|
store: limiterCache('reset_password_submission_limiter'),
|
|
};
|
|
|
|
const resetPasswordSubmissionLimiter = rateLimit(limiterOptions);
|
|
|
|
module.exports = resetPasswordSubmissionLimiter;
|