overleaf/services/web/app/src/Features/Security/LoginRateLimiter.js

const RateLimiter = require('../../infrastructure/RateLimiter')
const { promisifyAll } = require('../../util/promises')

const ONE_MIN = 60
const ATTEMPT_LIMIT = 10

function processLoginRequest(email, callback) {
  const opts = {
    endpointName: 'login',
    throttle: ATTEMPT_LIMIT,
    timeInterval: ONE_MIN * 2,
    subjectName: email
  }
  RateLimiter.addCount(opts, (err, shouldAllow) => callback(err, shouldAllow))
}

function recordSuccessfulLogin(email, callback) {
  if (callback == null) {
    callback = function() {}
  }
  RateLimiter.clearRateLimit('login', email, callback)
}

const LoginRateLimiter = {
  processLoginRequest,
  recordSuccessfulLogin
}
LoginRateLimiter.promises = promisifyAll(LoginRateLimiter)

module.exports = LoginRateLimiter
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`const RateLimiter = require('../../infrastructure/RateLimiter')`
add api rate limiting based on client_ip url param GitOrigin-RevId: 2fffcce053d5bf452508774b555959610db9a2c7 2019-11-20 15:28:42 -05:00			`const { promisifyAll } = require('../../util/promises')`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00
			`const ONE_MIN = 60`
			`const ATTEMPT_LIMIT = 10`

add api rate limiting based on client_ip url param GitOrigin-RevId: 2fffcce053d5bf452508774b555959610db9a2c7 2019-11-20 15:28:42 -05:00			`function processLoginRequest(email, callback) {`
			`const opts = {`
			`endpointName: 'login',`
			`throttle: ATTEMPT_LIMIT,`
			`timeInterval: ONE_MIN * 2,`
			`subjectName: email`
			`}`
			`RateLimiter.addCount(opts, (err, shouldAllow) => callback(err, shouldAllow))`
			`}`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00
add api rate limiting based on client_ip url param GitOrigin-RevId: 2fffcce053d5bf452508774b555959610db9a2c7 2019-11-20 15:28:42 -05:00			`function recordSuccessfulLogin(email, callback) {`
			`if (callback == null) {`
			`callback = function() {}`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`}`
add api rate limiting based on client_ip url param GitOrigin-RevId: 2fffcce053d5bf452508774b555959610db9a2c7 2019-11-20 15:28:42 -05:00			`RateLimiter.clearRateLimit('login', email, callback)`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`}`
add api rate limiting based on client_ip url param GitOrigin-RevId: 2fffcce053d5bf452508774b555959610db9a2c7 2019-11-20 15:28:42 -05:00
			`const LoginRateLimiter = {`
			`processLoginRequest,`
			`recordSuccessfulLogin`
			`}`
			`LoginRateLimiter.promises = promisifyAll(LoginRateLimiter)`

			`module.exports = LoginRateLimiter`