blitzwing/cobalt-7
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

api/core: move ratelimiters before authentication handler

Browse source
This commit is contained in:
dumbmoron 2024-09-09 14:21:15 +00:00
parent 3317726afe
commit 57c9836f56
No known key found for this signature in database
1 changed files with 3 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

6
api/src/core/api.js
View file

@ -102,6 +102,9 @@ export const runAPI = (express, app, __dirname) => {
...corsConfig, ...corsConfig,
})); }));
app.post('/', apiLimiter);
app.use('/tunnel', apiLimiterStream);
app.post('/', (req, res, next) => { app.post('/', (req, res, next) => {
if (!env.turnstileSecret || !env.jwtSecret) { if (!env.turnstileSecret || !env.jwtSecret) {
return next(); return next();
@ -140,9 +143,6 @@ export const runAPI = (express, app, __dirname) => {
next(); next();
}); });
app.post('/', apiLimiter);
app.use('/tunnel', apiLimiterStream);
app.use('/', express.json({ limit: 1024 })); app.use('/', express.json({ limit: 1024 }));
app.use('/', (err, _, res, next) => { app.use('/', (err, _, res, next) => {
if (err) { if (err) {