Test/prevent server block on rate limit (#421)

2025-07-10 07:07:21 +00:00 · 2025-06-24 10:55:38 +03:00
parent f5bf857071
commit f337e6c681
2 changed files with 18 additions and 15 deletions
--- a/src/app.module.ts
+++ b/src/app.module.ts
@ -1,7 +1,7 @@
 import { SeederModule } from '@app/common/seed/seeder.module';
 import { Module } from '@nestjs/common';
 import { ConfigModule } from '@nestjs/config';
-import { APP_INTERCEPTOR } from '@nestjs/core';
+import { APP_GUARD, APP_INTERCEPTOR } from '@nestjs/core';
 import { WinstonModule } from 'nest-winston';
 import { AuthenticationModule } from './auth/auth.module';
 import { AutomationModule } from './automation/automation.module';
@ -35,6 +35,8 @@ import { UserNotificationModule } from './user-notification/user-notification.mo
 import { UserModule } from './users/user.module';
 import { VisitorPasswordModule } from './vistor-password/visitor-password.module';

+import { ThrottlerGuard } from '@nestjs/throttler';
+import { ThrottlerModule } from '@nestjs/throttler/dist/throttler.module';
 import { winstonLoggerOptions } from '../libs/common/src/logger/services/winston.logger';
 import { AqiModule } from './aqi/aqi.module';
 import { OccupancyModule } from './occupancy/occupancy.module';
@ -44,9 +46,13 @@ import { WeatherModule } from './weather/weather.module';
    ConfigModule.forRoot({
      load: config,
    }),
-    /*   ThrottlerModule.forRoot({
-      throttlers: [{ ttl: 100000, limit: 30 }],
-    }), */
+    ThrottlerModule.forRoot({
+      throttlers: [{ ttl: 60000, limit: 30 }],
+      generateKey: (context) => {
+        const req = context.switchToHttp().getRequest();
+        return req.headers['x-forwarded-for'] || req.ip;
+      },
+    }),
    WinstonModule.forRoot(winstonLoggerOptions),
    ClientModule,
    AuthenticationModule,
@ -88,10 +94,10 @@ import { WeatherModule } from './weather/weather.module';
      provide: APP_INTERCEPTOR,
      useClass: LoggingInterceptor,
    },
-    /*  {
+    {
      provide: APP_GUARD,
      useClass: ThrottlerGuard,
-    }, */
+    },
  ],
 })
 export class AppModule {}
--- a/src/main.ts
+++ b/src/main.ts
@ -3,7 +3,6 @@ import { SeederService } from '@app/common/seed/services/seeder.service';
 import { Logger, ValidationPipe } from '@nestjs/common';
 import { NestFactory } from '@nestjs/core';
 import { json, urlencoded } from 'body-parser';
-import rateLimit from 'express-rate-limit';
 import helmet from 'helmet';
 import { WINSTON_MODULE_NEST_PROVIDER } from 'nest-winston';
 import { setupSwaggerAuthentication } from '../libs/common/src/util/user-auth.swagger.utils';
@ -22,15 +21,13 @@ async function bootstrap() {

  app.use(new RequestContextMiddleware().use);

-  app.use(
-    rateLimit({
-      windowMs: 5 * 60 * 1000,
-      max: 500,
-    }),
-  );
-
  app.use((req, res, next) => {
-    console.log('Real IP:', req.ip);
+    console.log(
+      'Real IP:',
+      req.ip,
+      req.headers['x-forwarded-for'],
+      req.connection.remoteAddress,
+    );
    next();
  });