versia-pub/server
2
0
Fork 0
mirror of https://github.com/versia-pub/server.git synced 2026-03-13 05:49:16 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat(api): Implement rate limiting
Some checks failed
CodeQL Scan / Analyze (javascript-typescript) (push) Failing after 42s
Details
Build Docker Images / lint (push) Successful in 31s
Details
Build Docker Images / check (push) Successful in 1m3s
Details
Build Docker Images / tests (push) Failing after 6s
Details
Build Docker Images / build (server, Dockerfile, ${{ github.repository_owner }}/server) (push) Has been skipped
Details
Build Docker Images / build (worker, Worker.Dockerfile, ${{ github.repository_owner }}/worker) (push) Has been skipped
Details
Deploy Docs to GitHub Pages / build (push) Failing after 13s
Details
Mirror to Codeberg / Mirror (push) Failing after 0s
Details
Deploy Docs to GitHub Pages / Deploy (push) Has been skipped
Details
Nix Build / check (push) Failing after 33m18s
Details

Browse source
This commit is contained in:
Jesse Wierzbinski 2025-03-27 20:12:00 +01:00
parent 1993231663
commit 3d3e64edab
No known key found for this signature in database
15 changed files with 76 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

2
api/api/v1/accounts/familiar_followers/index.ts
View file

@ -9,6 +9,7 @@ import { User, db } from "@versia/kit/db";
import type { Users } from "@versia/kit/tables";
import { type InferSelectModel, sql } from "drizzle-orm";
import { ApiError } from "~/classes/errors/api-error";
import { rateLimit } from "~/middlewares/rate-limit";
const route = createRoute({
method: "get",
@ -26,6 +27,7 @@ const route = createRoute({
scopes: ["read:follows"],
permissions: [RolePermission.ManageOwnFollows],
}),
rateLimit(5),
qsQuery(),
] as const,
request: {

2
api/api/v1/accounts/index.ts
View file

@ -8,6 +8,7 @@ import { and, eq, isNull } from "drizzle-orm";
import ISO6391 from "iso-639-1";
import { ApiError } from "~/classes/errors/api-error";
import { config } from "~/config.ts";
import { rateLimit } from "~/middlewares/rate-limit";
const schema = z.object({
username: z.string().openapi({
@ -55,6 +56,7 @@ const route = createRoute({
scopes: ["write:accounts"],
challenge: true,
}),
rateLimit(5),
jsonOrForm(),
] as const,
request: {

2
api/api/v1/accounts/lookup/index.ts
View file

@ -7,6 +7,7 @@ import { Users } from "@versia/kit/tables";
import { and, eq, isNull } from "drizzle-orm";
import { ApiError } from "~/classes/errors/api-error";
import { config } from "~/config.ts";
import { rateLimit } from "~/middlewares/rate-limit";
const route = createRoute({
method: "get",
@ -19,6 +20,7 @@ const route = createRoute({
auth: false,
permissions: [RolePermission.Search],
}),
rateLimit(5),
] as const,
request: {
query: z.object({

2
api/api/v1/accounts/relationships/index.ts
View file

@ -8,6 +8,7 @@ import {
import { RolePermission } from "@versia/client/schemas";
import { Relationship } from "@versia/kit/db";
import { ApiError } from "~/classes/errors/api-error";
import { rateLimit } from "~/middlewares/rate-limit";
const route = createRoute({
method: "get",
@ -20,6 +21,7 @@ const route = createRoute({
},
tags: ["Accounts"],
middleware: [
rateLimit(10),
auth({
auth: true,
scopes: ["read:follows"],

2
api/api/v1/accounts/search/index.ts
View file

@ -7,6 +7,7 @@ import { Users } from "@versia/kit/tables";
import { eq, ilike, not, or, sql } from "drizzle-orm";
import stringComparison from "string-comparison";
import { ApiError } from "~/classes/errors/api-error";
import { rateLimit } from "~/middlewares/rate-limit";
export const route = createRoute({
method: "get",
@ -18,6 +19,7 @@ export const route = createRoute({
},
tags: ["Accounts"],
middleware: [
rateLimit(5),
auth({
auth: false,
permissions: [RolePermission.Search, RolePermission.ViewAccounts],

2
api/api/v1/accounts/update_credentials/index.ts
View file

@ -10,6 +10,7 @@ import { and, eq, isNull } from "drizzle-orm";
import { ApiError } from "~/classes/errors/api-error";
import { contentToHtml } from "~/classes/functions/status";
import { config } from "~/config.ts";
import { rateLimit } from "~/middlewares/rate-limit";
const route = createRoute({
method: "patch",
@ -21,6 +22,7 @@ const route = createRoute({
},
tags: ["Accounts"],
middleware: [
rateLimit(5),
auth({
auth: true,
permissions: [RolePermission.ManageOwnAccount],

3
api/api/v1/apps/index.ts
View file

@ -7,6 +7,7 @@ import {
} from "@versia/client/schemas";
import { Application } from "@versia/kit/db";
import { ApiError } from "~/classes/errors/api-error";
import { rateLimit } from "~/middlewares/rate-limit";
const route = createRoute({
method: "post",
@ -17,7 +18,7 @@ const route = createRoute({
url: "https://docs.joinmastodon.org/methods/apps/#create",
},
tags: ["Apps"],
middleware: [jsonOrForm()],
middleware: [jsonOrForm(), rateLimit(4)],
request: {
body: {
content: {

1
api/api/v1/emojis/index.ts
View file

@ -8,6 +8,7 @@ import { Emojis } from "@versia/kit/tables";
import { and, eq, isNull, or } from "drizzle-orm";
import { ApiError } from "~/classes/errors/api-error";
import { config } from "~/config.ts";
const schema = z.object({
shortcode: CustomEmojiSchema.shape.shortcode,
element: z