Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Test code [no version update] #60

Merged
merged 1 commit into from
Jun 3, 2024
Merged

Test code [no version update] #60

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
61 changes: 36 additions & 25 deletions src/middlewares/rateLimit.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,44 +23,55 @@ import Users from '../models/schemas/User.js';
*/
const createRateLimiter = () => {
/**
* Default rate limiting options.
* @typedef {Object} RateLimitOptions
* @property {number} [windowMs=60 * 1000] - The time window for which the requests are checked/metered (in milliseconds).
* @property {function|number} [max=20] - The maximum number of allowed requests within the windowMs time frame. Can be a function that receives the request object.
* @property {string|object} [message] - The message sent in the response when the limit is exceeded.
* @property {number} [windowMs=60000] - The time window for which the requests are checked/metered (in milliseconds).
* @property {number} [max=20] - The maximum number of allowed requests within the windowMs time frame.
* @property {Object} message - The message sent in the response when the limit is exceeded.
* @property {number} [message.status=429] - The HTTP status code to be set in the response.
* @property {string} [message.message='You've exhausted your ratelimit, please try again later.'] - The message to be sent in the response.
*/

/**
* @type {RateLimitOptions}
*/
const defaultOptions = {
windowMs: 60 * 1000, // 1 minute
max: async (req) => {
try {
// Get the user's token from the request headers
const token = req.headers.authorization;

// Fetch user data from the database based on the token
const user = await Users.findOne({ token });

// Return the user's rate limit from the database or default to 20 if not found
return user ? user.rateLimit : 20;
} catch (error) {
console.error('Error fetching user data:', error.message);
return 20; // Default to 20 if there is an error
}
},
max: 20, // Default rate limit
message: {
status: 429,
message: 'You\'ve exhausted your ratelimit, please try again later.',
message: "You've exhausted your ratelimit, please try again later.",
},
};

// Create and configure the rate limiter middleware
// Create rate limiter middleware with default options
const limiter = rateLimit(defaultOptions);

return limiter;
/**
* Express middleware function for rate limiting.
* @param {Object} req - Express request object.
* @param {Object} res - Express response object.
* @param {Function} next - Express next function.
*/
return async (req, res, next) => {
try {
// Extract token from request headers
const token = req.headers.authorization;

// Find user data from the database based on token
const user = await Users.findOne({ token });

// Override default rate limit if user's rate limit is defined
if (user && user.rateLimit) {
limiter.options.max = user.rateLimit;
}

// Apply rate limiting
limiter(req, res, next);
} catch (error) {
// Handle errors when fetching user data
console.error('Error fetching user data:', error.message);

// Apply rate limiting as a fallback
limiter(req, res, next);
}
};
};

export default createRateLimiter;
Loading