7eaa8eb961
* feat: Put request rate limit at application server This PR contains implementation for a blanket rate limiter at application server level. Currently the allowed throughput is set high only to be changed later as per the actual data gathered. * Simplify implementation 1. Remove shutdown handler to purge rate limiter keys 2. Have separate keys for default and custom(route-based) rate limiters 3. Do not kill default rate limiter because it is not needed anymore due to (2) above * Set 60s as default for rate limiting window * Fix env types
91 lines
2.8 KiB
TypeScript
91 lines
2.8 KiB
TypeScript
import Koa from "koa";
|
|
import bodyParser from "koa-body";
|
|
import Router from "koa-router";
|
|
import env from "@server/env";
|
|
import { NotFoundError } from "@server/errors";
|
|
import errorHandling from "@server/middlewares/errorHandling";
|
|
import methodOverride from "@server/middlewares/methodOverride";
|
|
import { rateLimiter } from "@server/middlewares/rateLimiter";
|
|
import apiKeys from "./apiKeys";
|
|
import attachments from "./attachments";
|
|
import auth from "./auth";
|
|
import authenticationProviders from "./authenticationProviders";
|
|
import collections from "./collections";
|
|
import utils from "./cron";
|
|
import developer from "./developer";
|
|
import documents from "./documents";
|
|
import events from "./events";
|
|
import fileOperationsRoute from "./fileOperations";
|
|
import groups from "./groups";
|
|
import hooks from "./hooks";
|
|
import integrations from "./integrations";
|
|
import apiWrapper from "./middlewares/apiWrapper";
|
|
import editor from "./middlewares/editor";
|
|
import notificationSettings from "./notificationSettings";
|
|
import pins from "./pins";
|
|
import revisions from "./revisions";
|
|
import searches from "./searches";
|
|
import shares from "./shares";
|
|
import stars from "./stars";
|
|
import team from "./team";
|
|
import users from "./users";
|
|
import views from "./views";
|
|
import webhookSubscriptions from "./webhookSubscriptions";
|
|
|
|
const api = new Koa();
|
|
const router = new Router();
|
|
|
|
// middlewares
|
|
api.use(errorHandling());
|
|
api.use(
|
|
bodyParser({
|
|
multipart: true,
|
|
formidable: {
|
|
maxFieldsSize: 10 * 1024 * 1024,
|
|
},
|
|
})
|
|
);
|
|
api.use(methodOverride());
|
|
api.use(apiWrapper());
|
|
api.use(editor());
|
|
|
|
// routes
|
|
router.use("/", auth.routes());
|
|
router.use("/", authenticationProviders.routes());
|
|
router.use("/", events.routes());
|
|
router.use("/", users.routes());
|
|
router.use("/", collections.routes());
|
|
router.use("/", documents.routes());
|
|
router.use("/", pins.routes());
|
|
router.use("/", revisions.routes());
|
|
router.use("/", views.routes());
|
|
router.use("/", hooks.routes());
|
|
router.use("/", apiKeys.routes());
|
|
router.use("/", searches.routes());
|
|
router.use("/", shares.routes());
|
|
router.use("/", stars.routes());
|
|
router.use("/", team.routes());
|
|
router.use("/", integrations.routes());
|
|
router.use("/", notificationSettings.routes());
|
|
router.use("/", attachments.routes());
|
|
router.use("/", utils.routes());
|
|
router.use("/", groups.routes());
|
|
router.use("/", fileOperationsRoute.routes());
|
|
router.use("/", webhookSubscriptions.routes());
|
|
|
|
if (env.ENVIRONMENT === "development") {
|
|
router.use("/", developer.routes());
|
|
}
|
|
|
|
router.post("*", (ctx) => {
|
|
ctx.throw(NotFoundError("Endpoint not found"));
|
|
});
|
|
|
|
api.use(rateLimiter());
|
|
|
|
// Router is embedded in a Koa application wrapper, because koa-router does not
|
|
// allow middleware to catch any routes which were not explicitly defined.
|
|
api.use(router.routes());
|
|
|
|
export default api;
|