feat(security): add request rate limiter on authentication endpoint (#1866)

2025-07-22 23:09:41 +02:00 · 2018-05-07 20:01:39 +02:00 · 2018-05-07 20:01:39 +02:00 · 55a96767bb
commit 55a96767bb
parent 6360e6a20b
4 changed files with 122 additions and 3 deletions
--- a/api/http/handler/auth.go
+++ b/api/http/handler/auth.go
@ -37,14 +37,14 @@ const (
 )

 // NewAuthHandler returns a new instance of AuthHandler.
-func NewAuthHandler(bouncer *security.RequestBouncer, authDisabled bool) *AuthHandler {
+func NewAuthHandler(bouncer *security.RequestBouncer, rateLimiter *security.RateLimiter, authDisabled bool) *AuthHandler {
 	h := &AuthHandler{
 		Router:       mux.NewRouter(),
 		Logger:       log.New(os.Stderr, "", log.LstdFlags),
 		authDisabled: authDisabled,
 	}
 	h.Handle("/auth",
-		bouncer.PublicAccess(http.HandlerFunc(h.handlePostAuth))).Methods(http.MethodPost)
+		rateLimiter.LimitAccess(bouncer.PublicAccess(http.HandlerFunc(h.handlePostAuth)))).Methods(http.MethodPost)

 	return h
 }