james/howfeed
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

removed rate limiter, added cors support in case of protocol switching

Browse Source
This commit is contained in:
scoliono 2020-08-14 09:14:44 -07:00
parent 137d449af3
commit 6574a4efb6
3 changed files with 18 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
package-lock.json generated
View File

@ -2313,6 +2313,15 @@
"resolved": "https://registry.npmjs.org/core-util-is/-/core-util-is-1.0.2.tgz", "resolved": "https://registry.npmjs.org/core-util-is/-/core-util-is-1.0.2.tgz",
"integrity": "sha1-tf1UIgqivFq1eqtxQMlAdUUDwac=" "integrity": "sha1-tf1UIgqivFq1eqtxQMlAdUUDwac="
}, },
"cors": {
"version": "2.8.5",
"resolved": "https://registry.npmjs.org/cors/-/cors-2.8.5.tgz",
"integrity": "sha512-KIHbLJqu73RGr/hnbrO9uBeixNGuvSQjul/jdFvS/KFSIH1hWVd1ng7zOHx+YrEfInLG7q4n6GHQ9cDtxv/P6g==",
"requires": {
"object-assign": "^4",
"vary": "^1"
}
},
"create-ecdh": { "create-ecdh": {
"version": "4.0.3", "version": "4.0.3",
"resolved": "https://registry.npmjs.org/create-ecdh/-/create-ecdh-4.0.3.tgz", "resolved": "https://registry.npmjs.org/create-ecdh/-/create-ecdh-4.0.3.tgz",
@ -3844,9 +3853,9 @@
} }
}, },
"lodash": { "lodash": {
"version": "4.17.15", "version": "4.17.20",
"resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.15.tgz", "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.20.tgz",
"integrity": "sha512-8xOcRHvCjnocdS5cpwXQXVzmmh5e5+saE2QGoeQmbKmRS6J3VQppPOIt0MnmE+4xlZoumy0GPG0D0MVIQbNA1A==", "integrity": "sha512-PlhdFcillOINfeV7Ni6oF1TAEayyZBoZ8bcshTHqOYJYlrqzRK5hagpagky5o4HfCzzd1TRkXPMFq6cKk9rGmA==",
"dev": true "dev": true
}, },
"loose-envify": { "loose-envify": {

1
package.json
View File

@ -19,6 +19,7 @@
"cl-editor": "^2.0.0", "cl-editor": "^2.0.0",
"compression": "^1.7.1", "compression": "^1.7.1",
"cookie-parser": "^1.4.5", "cookie-parser": "^1.4.5",
"cors": "^2.8.5",
"dotenv": "^8.2.0", "dotenv": "^8.2.0",
"express": "^4.17.1", "express": "^4.17.1",
"express-fileupload": "^1.1.6", "express-fileupload": "^1.1.6",

6
src/server.js
View File

@ -10,6 +10,7 @@ import sessionFileStore from 'session-file-store';
import { RateLimiterMemory } from 'rate-limiter-flexible'; import { RateLimiterMemory } from 'rate-limiter-flexible';
import fileUpload from 'express-fileupload'; import fileUpload from 'express-fileupload';
import fs from 'fs'; import fs from 'fs';
import cors from 'cors';
import helmet from 'helmet'; import helmet from 'helmet';
import crypto from 'crypto'; import crypto from 'crypto';
import Article from './models/article.js'; import Article from './models/article.js';
@ -108,6 +109,7 @@ const isAuthor = function(req, res, next) {
express() express()
.use(helmet()) .use(helmet())
.use(cors())
.use(bodyParser.json()) .use(bodyParser.json())
.use(bodyParser.urlencoded({ extended: true })) .use(bodyParser.urlencoded({ extended: true }))
.use(fileUpload({ .use(fileUpload({
@ -178,6 +180,7 @@ express()
})); }));
return false; return false;
} }
/*
try { try {
await registerRateLimiter.consume(); await registerRateLimiter.consume();
} catch (err) { } catch (err) {
@ -189,6 +192,7 @@ express()
})); }));
return false; return false;
} }
*/
try { try {
const user = await User.findOne({ username: req.body.username }); const user = await User.findOne({ username: req.body.username });
if (user) { if (user) {
@ -222,7 +226,7 @@ express()
) )
.post('/cms/login', .post('/cms/login',
rateLimiterMiddleware(loginAttemptRateLimiter), // rateLimiterMiddleware(loginAttemptRateLimiter),
passport.authenticate('local', { failWithError: true }), passport.authenticate('local', { failWithError: true }),
function(req, res, next) { function(req, res, next) {
// handle success // handle success