Paths

Table of Contentst

Differential D16732

[token-server] Make sure we are rate limiting by client IP address
ClosedPublic
Actions

Authored by bytesofman on Fri, Sep 6, 16:11.

Tags

None

Subscribers

None

Details

Reviewers

Group Reviewers

Restricted Project

Commits

rABC2ada4e35622f: [token-server] Make sure we are rate limiting by client IP address

Summary

Because token-server is deployed on docker, req.ip is the address of the actual server and the address of the client making an API endpoint request (e.g. for a token reward or a Cashtab reward).

So, right now, the rate limiting "works" -- but it rate limits all users instead of by IP address of individual users. This is causing normal users to get rate limit errors.

Ref https://stackoverflow.com/questions/62494060/express-rate-limit-not-working-when-deployed-to-heroku

Test Plan

Will need to review logs on deployed instance. Have confirmed can still run this locally.

Diff Detail

Repository

rABC Bitcoin ABC

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

bytesofman created this revision.Fri, Sep 6, 16:11

Herald added a reviewer: Restricted Project. · View Herald TranscriptFri, Sep 6, 16:11

bytesofman published this revision for review.Fri, Sep 6, 16:12

bytesofman edited the summary of this revision. (Show Details)

Harbormaster completed remote builds in B30210: Diff 49534.Fri, Sep 6, 16:14

johnkuney accepted this revision.Fri, Sep 6, 16:45

This revision is now accepted and ready to land.Fri, Sep 6, 16:45

Closed by commit rABC2ada4e35622f: [token-server] Make sure we are rate limiting by client IP address (authored by bytesofman). · Explain WhyFri, Sep 6, 16:46

This revision was automatically updated to reflect the committed changes.

bytesofman added a commit: rABC2ada4e35622f: [token-server] Make sure we are rate limiting by client IP address.

Revision Contents
Changeset List

Path

Size

apps/

token-server/

src/

5 lines

Diff 49535

apps/token-server/src/routes.ts

Loading...