ngn/libremdb
1
0
Fork 0
Code Issues 1 Pull Requests 10 Actions Packages Activity

feat: IP ratelimit for media proxy

Browse Source
This commit is contained in:
httpjamesm 2022-10-31 18:05:19 -04:00
parent 9bce8a2dd5
commit 720f2b6acb
1 changed files with 47 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

47
src/pages/api/media_proxy.ts
View File

@ -9,6 +9,50 @@ export default async function handler(
req: NextApiRequest, req: NextApiRequest,
res: NextApiResponse res: NextApiResponse
) { ) {
const userIp =
(req.headers['cf-connecting-ip'] as string) ||
(req.headers['x-real-ip'] as string) ||
req.socket.remoteAddress ||
null
if (!userIp) {
res.status(500)
res.json({
success: false,
message: 'Unable to enforce ratelimit',
})
return
}
// hash ip with md5 (for speed)
const ipHash = crypto.createHash('md5').update(userIp).digest('hex')
const key = `ip_ratelimit:${ipHash}`
// check if ip is in redis
let ipInRedis = await redis.get(key)
if (!ipInRedis) {
// if not, set it to 1
await redis.setex(key, 30, '1')
ipInRedis = '1'
}
const ipReqNumber = Number(ipInRedis)
if (ipReqNumber > 60) {
res.status(429)
res.setHeader('x-cringe', 'stop abusing a FOSS service')
res.json({
success: false,
message: 'Too many requests',
})
return
}
// increment ip in redis
await redis.set(key, String(ipReqNumber + 1))
// get query param // get query param
const mediaUrl = (req.query as { url: string }).url const mediaUrl = (req.query as { url: string }).url
@ -89,10 +133,13 @@ export default async function handler(
if (cachedMedia) { if (cachedMedia) {
res.status(302) res.status(302)
res.setHeader('x-cached', 'true')
res.send(cachedMedia) res.send(cachedMedia)
return return
} }
res.setHeader('x-cached', 'false')
// download media // download media
const mediaRes = await fetch(mediaUrl) const mediaRes = await fetch(mediaUrl)