40 lines
1.1 KiB
JavaScript
40 lines
1.1 KiB
JavaScript
|
const rateLimit = require('express-rate-limit');
|
||
|
|
const { limiterCache } = require('@librechat/api');
|
||
|
|
const { ViolationTypes } = require('librechat-data-provider');
|
||
|
|
const { removePorts } = require('~/server/utils');
|
||
|
|
const { logViolation } = require('~/cache');
|
||
|
|
|
||
|
|
const {
|
||
|
|
VERIFY_EMAIL_WINDOW = 2,
|
||
|
|
VERIFY_EMAIL_MAX = 2,
|
||
|
|
VERIFY_EMAIL_VIOLATION_SCORE: score,
|
||
|
|
} = process.env;
|
||
|
|
const windowMs = VERIFY_EMAIL_WINDOW * 60 * 1000;
|
||
|
|
const max = VERIFY_EMAIL_MAX;
|
||
|
|
const windowInMinutes = windowMs / 60000;
|
||
|
|
const message = `Too many attempts, please try again after ${windowInMinutes} minute(s)`;
|
||
|
|
|
||
|
|
const handler = async (req, res) => {
|
||
|
|
const type = ViolationTypes.VERIFY_EMAIL_LIMIT;
|
||
|
|
const errorMessage = {
|
||
|
|
type,
|
||
|
|
max,
|
||
|
|
windowInMinutes,
|
||
|
|
};
|
||
|
|
|
||
|
|
await logViolation(req, res, type, errorMessage, score);
|
||
|
|
return res.status(429).json({ message });
|
||
|
|
};
|
||
|
|
|
||
|
|
const limiterOptions = {
|
||
|
|
windowMs,
|
||
|
|
max,
|
||
|
|
handler,
|
||
|
|
keyGenerator: removePorts,
|
||
|
|
store: limiterCache('verify_email_limiter'),
|
||
|
|
};
|
||
|
|
|
||
|
|
const verifyEmailLimiter = rateLimit(limiterOptions);
|
||
|
|
|
||
|
|
module.exports = verifyEmailLimiter;
|