wonderlandpark/core
2
1
Fork 0
mirror of https://github.com/koreanbots/core.git synced 2025-12-16 06:20:24 +00:00
Code Issues Packages Projects Releases Wiki Activity

feat: added ratelimit for bot patch and clearing cache

Browse Source
This commit is contained in:
wonderlandpark 2021-03-25 15:55:13 +09:00
parent aeccd1ae1d
commit aefff0a349
1 changed files with 13 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
pages/api/v2/bots/[id]/index.ts
View File

@ -1,4 +1,5 @@
import { NextApiRequest } from 'next' import { NextApiRequest } from 'next'
import rateLimit from 'express-rate-limit'
import { get, put, update } from '@utils/Query' import { get, put, update } from '@utils/Query'
import ResponseWrapper from '@utils/ResponseWrapper' import ResponseWrapper from '@utils/ResponseWrapper'
@ -8,6 +9,16 @@ import RequestHandler from '@utils/RequestHandler'
import { User } from '@types' import { User } from '@types'
import { checkUserFlag } from '@utils/Tools' import { checkUserFlag } from '@utils/Tools'
const patchLimiter = rateLimit({
windowMs: 2 * 60 * 1000,
max: 2,
handler: (_req, res) => ResponseWrapper(res, { code: 429 }),
keyGenerator: (req) => req.headers['x-forwarded-for'] as string,
skip: (_req, res) => {
res.removeHeader('X-RateLimit-Global')
return false
}
})
const Bots = RequestHandler() const Bots = RequestHandler()
.get(async (req: GetApiRequest, res) => { .get(async (req: GetApiRequest, res) => {
const bot = await get.bot.load(req.query.id) const bot = await get.bot.load(req.query.id)
@ -61,7 +72,7 @@ const Bots = RequestHandler()
}) })
return ResponseWrapper(res, { code: 200, data: result }) return ResponseWrapper(res, { code: 200, data: result })
}) })
.patch(async (req: PatchApiRequest, res) => { .patch(patchLimiter).patch(async (req: PatchApiRequest, res) => {
const bot = await get.bot.load(req.query.id) const bot = await get.bot.load(req.query.id)
if(!bot) return ResponseWrapper(res, { code: 404, message: '존재하지 않는 봇입니다.' }) if(!bot) return ResponseWrapper(res, { code: 404, message: '존재하지 않는 봇입니다.' })
const user = await get.Authorization(req.cookies.token) const user = await get.Authorization(req.cookies.token)
@ -82,7 +93,7 @@ const Bots = RequestHandler()
const result = await update.bot(req.query.id, validated) const result = await update.bot(req.query.id, validated)
if(result === 0) return ResponseWrapper(res, { code: 400 }) if(result === 0) return ResponseWrapper(res, { code: 400 })
else { else {
get.user.clear(req.query.id) get.bot.clear(req.query.id)
return ResponseWrapper(res, { code: 200 }) return ResponseWrapper(res, { code: 200 })
} }