josh/TicketingSystem
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Remove login rate limiter (internal service only)
Build & Push / Test (client) (push) Successful in 22s
Details
Build & Push / Test (server) (push) Successful in 28s
Details
Build & Push / Build Client (push) Successful in 1m18s
Details
Build & Push / Build Server (push) Successful in 1m18s
Details

Browse Source 
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
This commit is contained in:
Josh Wright
2026-04-18 17:43:10 -04:00
parent b341c64b02
commit a9ba74f1af
4 changed files with 0 additions and 29 deletions
Download Patch File Download Diff File Expand all files Collapse all files
README.md
-2
View File
@@ -169,8 +169,6 @@ All endpoints (except `/api/auth/*` and `/healthz`) require authentication via o
Base URL: `https://tickets.thewrightserver.net/api` Base URL: `https://tickets.thewrightserver.net/api`
`POST /api/auth/login` is rate-limited to 10 attempts per 15 minutes per IP.
--- ---
### Authentication ### Authentication
server/package-lock.json
Generated
-16
View File
@@ -14,7 +14,6 @@
"dotenv": "^16.4.7", "dotenv": "^16.4.7",
"express": "^4.21.2", "express": "^4.21.2",
"express-async-errors": "^3.1.0", "express-async-errors": "^3.1.0",
"express-rate-limit": "^7.5.0",
"jsonwebtoken": "^9.0.2", "jsonwebtoken": "^9.0.2",
"multer": "^2.1.1", "multer": "^2.1.1",
"node-cron": "^3.0.3", "node-cron": "^3.0.3",
@@ -1917,21 +1916,6 @@
"express": "^4.16.2" "express": "^4.16.2"
} }
}, },
"node_modules/express-rate-limit": {
"version": "7.5.1",
"resolved": "https://registry.npmjs.org/express-rate-limit/-/express-rate-limit-7.5.1.tgz",
"integrity": "sha512-7iN8iPMDzOMHPUYllBEsQdWVB6fPDMPqwjBaFrgr4Jgr/+okjvzAy+UHlYYL/Vs0OsOrMkwS6PJDkFlJwoxUnw==",
"license": "MIT",
"engines": {
"node": ">= 16"
},
"funding": {
"url": "https://github.com/sponsors/express-rate-limit"
},
"peerDependencies": {
"express": ">= 4.11"
}
},
"node_modules/fast-copy": { "node_modules/fast-copy": {
"version": "4.0.3", "version": "4.0.3",
"resolved": "https://registry.npmjs.org/fast-copy/-/fast-copy-4.0.3.tgz", "resolved": "https://registry.npmjs.org/fast-copy/-/fast-copy-4.0.3.tgz",
server/package.json
-1
View File
@@ -20,7 +20,6 @@
"dotenv": "^16.4.7", "dotenv": "^16.4.7",
"express": "^4.21.2", "express": "^4.21.2",
"express-async-errors": "^3.1.0", "express-async-errors": "^3.1.0",
"express-rate-limit": "^7.5.0",
"jsonwebtoken": "^9.0.2", "jsonwebtoken": "^9.0.2",
"multer": "^2.1.1", "multer": "^2.1.1",
"node-cron": "^3.0.3", "node-cron": "^3.0.3",
server/src/index.ts
-10
View File
@@ -3,7 +3,6 @@ import express from 'express';
import cors from 'cors'; import cors from 'cors';
import dotenv from 'dotenv'; import dotenv from 'dotenv';
import pinoHttp from 'pino-http'; import pinoHttp from 'pino-http';
import rateLimit from 'express-rate-limit';
import authRoutes from './routes/auth'; import authRoutes from './routes/auth';
import ticketRoutes from './routes/tickets'; import ticketRoutes from './routes/tickets';
@@ -38,16 +37,7 @@ app.get('/healthz', (_req, res) => {
res.json({ status: 'ok' }); res.json({ status: 'ok' });
}); });
const loginLimiter = rateLimit({
windowMs: 15 * 60 * 1000,
max: 10,
standardHeaders: true,
legacyHeaders: false,
message: { error: 'Too many login attempts. Try again in 15 minutes.' },
});
// Public // Public
app.use('/api/auth/login', loginLimiter);
app.use('/api/auth', authRoutes); app.use('/api/auth', authRoutes);
// Protected // Protected