svemagie/indiekit-endpoint-activitypub
1
0
Fork 0
mirror of https://github.com/svemagie/indiekit-endpoint-activitypub.git synced 2026-04-02 15:44:58 +02:00
Code Issues Packages Projects Releases Wiki Activity

fix(rate-limit): suppress ERR_ERL_PERMISSIVE_TRUST_PROXY behind nginx reverse proxy

Browse Source
This commit is contained in:
svemagie
2026-03-27 09:43:09 +01:00
parent 6f76ec45c4
commit 69ae731dab
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
lib/mastodon/router.js
View File

@@ -28,6 +28,7 @@ const apiLimiter = rateLimit({
max: 300,
standardHeaders: true,
legacyHeaders: false,
validate: { trustProxy: false }, // behind nginx reverse proxy; trust proxy is intentional
message: { error: "Too many requests, please try again later" },
});
@@ -36,6 +37,7 @@ const authLimiter = rateLimit({
max: 30,
standardHeaders: true,
legacyHeaders: false,
validate: { trustProxy: false },
message: { error: "Too many authentication attempts" },
});
@@ -44,6 +46,7 @@ const appRegistrationLimiter = rateLimit({
max: 25,
standardHeaders: true,
legacyHeaders: false,
validate: { trustProxy: false },
message: { error: "Too many app registrations" },
});