Cohee b2fa6a0afb Add rate limit to basic auth middleware (#5504) ...

* feat: add rate limiting to basic auth flow

* fix: round up retry-after duration

* feat: enhance point consume logic

* fix: move unauthorized webpage reading inside response function

* refactor: move getIpAddress to express-common

* fix: check for rate limit before checking creds

* fix: use correct rate limit pattern in /recover-step2

* feat: handle CF forwarded IP header in rate limit, whitelist and access logger

* feat: add individual config toggles for forwarded headers

* feat: enhance IP address retrieval to include forwarded IP for access logging

* chore: clean-up diff

* fix: don't consume points for missing credentials

* feat: log rate limited method and URL

Co-authored-by: Copilot <copilot@github.com>

* feat: make rate limiter points configurable

Co-authored-by: Copilot <copilot@github.com>

* feat: implement retry-after header for rate limiting responses

Co-authored-by: Copilot <copilot@github.com>

---------

Co-authored-by: Copilot <copilot@github.com>

2026-05-01 00:09:24 +03:00

..

content

feat: add MiniMax as a chat completion provider (#5452)

2026-04-24 00:43:05 +03:00

scaffold

#2227 Implement content scaffolding

2024-05-17 02:43:14 +03:00

!DO-NOT-EDIT-THESE-FILES.txt

Add /default do-not-edit notice

2025-02-22 12:41:09 +02:00

config.yaml

Add rate limit to basic auth middleware (#5504)

2026-05-01 00:09:24 +03:00