mirror of
https://github.com/danny-avila/LibreChat.git
synced 2025-09-22 08:12:00 +02:00
36 lines
943 B
JavaScript
36 lines
943 B
JavaScript
|
const rateLimit = require('express-rate-limit');
|
||
|
|
const { ViolationTypes } = require('librechat-data-provider');
|
||
|
|
const { removePorts } = require('~/server/utils');
|
||
|
|
const { logViolation } = require('~/cache');
|
||
|
|
|
||
|
|
const {
|
||
|
|
VERIFY_EMAIL_WINDOW = 2,
|
||
|
|
VERIFY_EMAIL_MAX = 2,
|
||
|
|
VERIFY_EMAIL_VIOLATION_SCORE: score,
|
||
|
|
} = process.env;
|
||
|
|
const windowMs = VERIFY_EMAIL_WINDOW * 60 * 1000;
|
||
|
|
const max = VERIFY_EMAIL_MAX;
|
||
|
|
const windowInMinutes = windowMs / 60000;
|
||
|
|
const message = `Too many attempts, please try again after ${windowInMinutes} minute(s)`;
|
||
|
|
|
||
|
|
const handler = async (req, res) => {
|
||
|
|
const type = ViolationTypes.VERIFY_EMAIL_LIMIT;
|
||
|
|
const errorMessage = {
|
||
|
|
type,
|
||
|
|
max,
|
||
|
|
windowInMinutes,
|
||
|
|
};
|
||
|
|
|
||
|
|
await logViolation(req, res, type, errorMessage, score);
|
||
|
|
return res.status(429).json({ message });
|
||
|
|
};
|
||
|
|
|
||
|
|
const verifyEmailLimiter = rateLimit({
|
||
|
|
windowMs,
|
||
|
|
max,
|
||
|
|
handler,
|
||
|
|
keyGenerator: removePorts,
|
||
|
|
});
|
||
|
|
|
||
|
|
module.exports = verifyEmailLimiter;
|