wisecolt/q-buffer
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(api): merkezi rate limiting sistemi ekle

Browse Source 
Yeni rate-limiter middleware modülü oluşturuldu. loginLimiter (5 istek/dakika),
apiLimiter (30 istek/dakika) ve uploadLimiter (10 istek/dakika) tanımlandı.
Auth, loop, timer ve torrent rotalarına rate limiting uygulandı.
Torrent rotalarında SHA-1 hash validasyonu eklendi.
This commit is contained in:
wisecolt
2026-01-04 23:38:15 +03:00
parent b7a460596e
commit 377971411a
5 changed files with 68 additions and 24 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
apps/server/src/timer/timer.routes.ts
View File

@@ -4,6 +4,7 @@ import { readDb, writeDb } from "../storage/jsondb";
import { TimerRule } from "../types";
import { nowIso } from "../utils/time";
import { z } from "zod";
import { apiLimiter } from "../middleware/rate-limiter";
const router = Router();
@@ -17,7 +18,7 @@ router.get("/rules", async (_req, res) => {
res.json(db.timerRules ?? []);
});
router.post("/rules", async (req, res) => {
router.post("/rules", apiLimiter, async (req, res) => {
const parsed = ruleSchema.safeParse(req.body);
if (!parsed.success) {
return res.status(400).json({ error: parsed.error.flatten() });
@@ -34,7 +35,7 @@ router.post("/rules", async (req, res) => {
res.json(rule);
});
router.delete("/rules/:ruleId", async (req, res) => {
router.delete("/rules/:ruleId", apiLimiter, async (req, res) => {
const db = await readDb();
const next = (db.timerRules ?? []).filter((rule) => rule.id !== req.params.ruleId);
if (next.length === (db.timerRules ?? []).length) {