newthuhole
/
hole_thu_backend
4
6
Fork 2
Code Issues 7 Pull Requests Projects Releases Wiki Activity
Browse Source

频率限制与最大pagesize

pull/7/head
hole-thu 5 years ago
parent
9b83df4974
commit
d4467bc592
1 changed files with 15 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 16
      hole.py

16
hole.py
Unescape View File

@ -26,9 +26,17 @@ CS_LOGIN_URL = Mastodon(api_base_url=app.config['MASTODON_URL']) \
redirect_uris = app.config['REDIRECT_URI'], redirect_uris = app.config['REDIRECT_URI'],
scopes = ['read:accounts'] scopes = ['read:accounts']
) )
limiter = Limiter(
app,
key_func=get_remote_address,
default_limits=["1000 / hour"],
)
PER_PAGE = 50 PER_PAGE = 50
@app.route('/_login') @app.route('/_login')
@limiter.limit("5 / minute")
def login(): def login():
provider = request.args.get('p') provider = request.args.get('p')
if(provider == 'cs'): if(provider == 'cs'):
@ -37,6 +45,7 @@ def login():
abort(404) abort(404)
@app.route('/_auth') @app.route('/_auth')
@limiter.limit("5 / minute")
def auth(): def auth():
# Currently, only for closed.social # Currently, only for closed.social
code = request.args.get('code') code = request.args.get('code')
@ -106,7 +115,7 @@ def search():
u = require_token() u = require_token()
page = get_num(request.args.get('page')) page = get_num(request.args.get('page'))
pagesize = get_num(request.args.get('pagesize')) pagesize = max(get_num(request.args.get('pagesize')), 200)
keywords = request.args.get('keywords') keywords = request.args.get('keywords')
pids = [tr.pid for tr in TagRecord.query.filter_by(tag=keywords).order_by(db.desc('pid')).paginate(page, pagesize).items] pids = [tr.pid for tr in TagRecord.query.filter_by(tag=keywords).order_by(db.desc('pid')).paginate(page, pagesize).items]
@ -124,6 +133,7 @@ def search():
@app.route('/_api/v1/dopost', methods=['POST']) @app.route('/_api/v1/dopost', methods=['POST'])
@limiter.limit("50 / hour; 1 / 3 second")
def do_post(): def do_post():
u = require_token() u = require_token()
@ -190,6 +200,7 @@ def get_comment():
} }
@app.route('/_api/v1/docomment', methods=['POST']) @app.route('/_api/v1/docomment', methods=['POST'])
@limiter.limit("50 / hour; 1 / 3 second")
def do_comment(): def do_comment():
u = require_token() u = require_token()
@ -216,6 +227,7 @@ def do_comment():
} }
@app.route('/_api/v1/attention', methods=['POST']) @app.route('/_api/v1/attention', methods=['POST'])
@limiter.limit("200 / hour; 1 / second")
def attention(): def attention():
u = require_token() u = require_token()
@ -259,6 +271,7 @@ def get_attention():
} }
@app.route('/_api/v1/delete', methods=['POST']) @app.route('/_api/v1/delete', methods=['POST'])
@limiter.limit("50 / hour; 1 / 3 second")
def delete(): def delete():
u = require_token() u = require_token()
@ -310,6 +323,7 @@ def system_log():
} }
@app.route('/_api/v1/report', methods=['POST']) @app.route('/_api/v1/report', methods=['POST'])
@limiter.limit("50 / hour; 1 / 3 second")
def report(): def report():
u = require_token() u = require_token()

Write Preview
Loading…
Cancel
Save