mirror of
https://github.com/overleaf/overleaf.git
synced 2024-12-11 20:42:00 -05:00
f32ecc744c
Add rate limit on project upload GitOrigin-RevId: e2da5fb1815d85d8e82fe2f4498786f1fc5b5727
35 lines
1.1 KiB
CoffeeScript
35 lines
1.1 KiB
CoffeeScript
AuthorizationMiddlewear = require('../Authorization/AuthorizationMiddlewear')
|
|
AuthenticationController = require('../Authentication/AuthenticationController')
|
|
ProjectUploadController = require "./ProjectUploadController"
|
|
RateLimiterMiddlewear = require('../Security/RateLimiterMiddlewear')
|
|
Settings = require('settings-sharelatex')
|
|
multer = require('multer')
|
|
|
|
upload = multer(
|
|
dest: Settings.path.uploadFolder
|
|
limits: fileSize: Settings.maxUploadSize
|
|
)
|
|
|
|
module.exports =
|
|
apply: (webRouter, apiRouter) ->
|
|
webRouter.post '/project/new/upload',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddlewear.rateLimit({
|
|
endpointName: "project-upload"
|
|
maxRequests: 20
|
|
timeInterval: 60
|
|
}),
|
|
upload.single('qqfile'),
|
|
ProjectUploadController.uploadProject
|
|
|
|
webRouter.post '/Project/:Project_id/upload',
|
|
RateLimiterMiddlewear.rateLimit({
|
|
endpointName: "file-upload"
|
|
params: ["Project_id"]
|
|
maxRequests: 200
|
|
timeInterval: 60 * 30
|
|
}),
|
|
AuthenticationController.requireLogin(),
|
|
AuthorizationMiddlewear.ensureUserCanWriteProjectContent,
|
|
upload.single('qqfile'),
|
|
ProjectUploadController.uploadFile
|