Sharkey/packages/backend/src/server/api/limiter.ts

78 lines
1.7 KiB
TypeScript
Raw Normal View History

2022-02-27 06:21:25 +01:00
import Limiter from 'ratelimiter';
import { CacheableLocalUser, User } from '@/models/entities/user.js';
import Logger from '@/services/logger.js';
2022-06-14 11:01:23 +02:00
import { redisClient } from '../../db/redis.js';
import { IEndpointMeta } from './endpoints.js';
2016-12-28 23:49:51 +01:00
2019-02-03 08:45:13 +01:00
const logger = new Logger('limiter');
2017-01-23 10:25:52 +01:00
export const limiter = (limitation: IEndpointMeta['limit'] & { key: NonNullable<string> }, actor: string) => new Promise<void>((ok, reject) => {
if (process.env.NODE_ENV === 'test') ok();
const hasShortTermLimit = typeof limitation.minInterval === 'number';
2016-12-28 23:49:51 +01:00
2017-03-01 14:33:43 +01:00
const hasLongTermLimit =
typeof limitation.duration === 'number' &&
typeof limitation.max === 'number';
2016-12-28 23:49:51 +01:00
2017-03-01 14:33:43 +01:00
if (hasShortTermLimit) {
2016-12-28 23:49:51 +01:00
min();
2017-03-01 14:33:43 +01:00
} else if (hasLongTermLimit) {
2016-12-28 23:49:51 +01:00
max();
} else {
ok();
}
// Short-term limit
2022-01-21 09:15:14 +01:00
function min(): void {
2016-12-28 23:49:51 +01:00
const minIntervalLimiter = new Limiter({
id: `${actor}:${limitation.key}:min`,
2017-03-01 14:33:43 +01:00
duration: limitation.minInterval,
2016-12-28 23:49:51 +01:00
max: 1,
2021-12-09 15:58:30 +01:00
db: redisClient,
2016-12-28 23:49:51 +01:00
});
2017-01-23 10:25:52 +01:00
minIntervalLimiter.get((err, info) => {
if (err) {
return reject('ERR');
}
logger.debug(`${actor} ${limitation.key} min remaining: ${info.remaining}`);
2017-01-23 10:25:52 +01:00
if (info.remaining === 0) {
2016-12-28 23:49:51 +01:00
reject('BRIEF_REQUEST_INTERVAL');
} else {
2017-03-01 14:33:43 +01:00
if (hasLongTermLimit) {
2016-12-28 23:49:51 +01:00
max();
} else {
ok();
}
}
});
}
// Long term limit
2022-01-21 09:15:14 +01:00
function max(): void {
2016-12-28 23:49:51 +01:00
const limiter = new Limiter({
id: `${actor}:${limitation.key}`,
2017-03-01 14:33:43 +01:00
duration: limitation.duration,
max: limitation.max,
2021-12-09 15:58:30 +01:00
db: redisClient,
2016-12-28 23:49:51 +01:00
});
2017-01-23 10:25:52 +01:00
limiter.get((err, info) => {
if (err) {
return reject('ERR');
}
logger.debug(`${actor} ${limitation.key} max remaining: ${info.remaining}`);
2017-01-23 10:25:52 +01:00
if (info.remaining === 0) {
2016-12-28 23:49:51 +01:00
reject('RATE_LIMIT_EXCEEDED');
} else {
ok();
}
});
}
});