Skip to content

Commit 9f3d497

Browse files
luucvanderzeeluucvanderzee
committed
Add helmet and rate limiting
1 parent 74af19b commit 9f3d497

File tree

3 files changed

+38
-0
lines changed

3 files changed

+38
-0
lines changed

app.js

Lines changed: 12 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -3,11 +3,23 @@ var express = require("express");
33
var path = require("path");
44
var cookieParser = require("cookie-parser");
55
var logger = require("morgan");
6+
var helmet = require("helmet");
67

78
var indexRouter = require("./routes/index");
89

910
var app = express();
1011

12+
app.use(helmet());
13+
14+
const RateLimit = require("express-rate-limit");
15+
const limiter = RateLimit({
16+
windowMs: 1 * 60 * 1000, // 1 minute
17+
max: 20,
18+
});
19+
20+
// Apply rate limiter to all requests
21+
app.use(limiter);
22+
1123
// view engine setup
1224
app.set("views", path.join(__dirname, "views"));
1325
app.set("view engine", "ejs");

package-lock.json

Lines changed: 24 additions & 0 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

package.json

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -11,6 +11,8 @@
1111
"dotenv": "^16.4.5",
1212
"ejs": "~2.6.1",
1313
"express": "~4.16.1",
14+
"express-rate-limit": "^7.4.0",
15+
"helmet": "^7.1.0",
1416
"http-errors": "~1.6.3",
1517
"jose": "^5.6.3",
1618
"morgan": "~1.9.1",

0 commit comments

Comments
 (0)