github/overleaf
1
0
Fork 0
mirror of https://github.com/overleaf/overleaf.git synced 2024-12-29 05:43:30 +00:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request #552 from sharelatex/sk-rate-limit-password-change

Browse source 
Add rate-limit to change-password action
This commit is contained in:
Shane Kilkelly 2017-07-24 13:58:24 +01:00 committed by GitHub
commit 47c8ca82fa
1 changed files with 8 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
services/web/app/coffee/router.coffee
View file

@ -94,7 +94,14 @@ module.exports = class Router
SudoModeMiddlewear.protectPage,
UserPagesController.settingsPage
webRouter.post '/user/settings', AuthenticationController.requireLogin(), UserController.updateUserSettings
webRouter.post '/user/password/update', AuthenticationController.requireLogin(), UserController.changePassword
webRouter.post '/user/password/update',
AuthenticationController.requireLogin(),
RateLimiterMiddlewear.rateLimit({
endpointName: "change-password"
maxRequests: 10
timeInterval: 60
}),
UserController.changePassword
webRouter.get '/user/sessions',
AuthenticationController.requireLogin(),