e115934061
Publish `@librechat/data-schemas` to NPM / pack (push) Failing after 8s
Publish `@librechat/client` to NPM / pack (push) Failing after 0s
GitNexus Index / index (push) Failing after 1s
Sync Locize Translations & Create Translation PR / Create Translation PR on Version Published (push) Has been skipped
Sync Helm Chart Tags / Sync chart tags (push) Failing after 2s
Publish `librechat-data-provider` to NPM / pack (push) Failing after 1s
Docker Dev Images Build / build (Dockerfile, librechat-dev, node) (push) Failing after 1s
Docker Dev Images Build / build (Dockerfile.multi, librechat-dev-api, api-build) (push) Failing after 0s
Sync Helm Chart Tags / Ignore non-main push (push) Has been skipped
Sync Locize Translations & Create Translation PR / Sync Translation Keys with Locize (push) Failing after 1s
Publish `@librechat/client` to NPM / publish-npm (push) Has been cancelled
Publish `librechat-data-provider` to NPM / publish-npm (push) Has been cancelled
GitNexus Index / post-index (push) Has been cancelled
Publish `@librechat/data-schemas` to NPM / publish-npm (push) Has been cancelled
39 lines
1.0 KiB
JavaScript
39 lines
1.0 KiB
JavaScript
const rateLimit = require('express-rate-limit');
|
|
const { ViolationTypes } = require('librechat-data-provider');
|
|
const { limiterCache, removePorts } = require('@librechat/api');
|
|
const { logViolation } = require('~/cache');
|
|
|
|
const {
|
|
RESET_PASSWORD_WINDOW = 2,
|
|
RESET_PASSWORD_MAX = 2,
|
|
RESET_PASSWORD_VIOLATION_SCORE: score,
|
|
} = process.env;
|
|
const windowMs = RESET_PASSWORD_WINDOW * 60 * 1000;
|
|
const max = RESET_PASSWORD_MAX;
|
|
const windowInMinutes = windowMs / 60000;
|
|
const message = `Too many attempts, please try again after ${windowInMinutes} minute(s)`;
|
|
|
|
const handler = async (req, res) => {
|
|
const type = ViolationTypes.RESET_PASSWORD_LIMIT;
|
|
const errorMessage = {
|
|
type,
|
|
max,
|
|
windowInMinutes,
|
|
};
|
|
|
|
await logViolation(req, res, type, errorMessage, score);
|
|
return res.status(429).json({ message });
|
|
};
|
|
|
|
const limiterOptions = {
|
|
windowMs,
|
|
max,
|
|
handler,
|
|
keyGenerator: removePorts,
|
|
store: limiterCache('reset_password_limiter'),
|
|
};
|
|
|
|
const resetPasswordLimiter = rateLimit(limiterOptions);
|
|
|
|
module.exports = resetPasswordLimiter;
|