Merge branch 'develop' into merge/2024-02-03

# Conflicts: # packages/backend/src/server/ActivityPubServerService.ts # pnpm-lock.yaml
author: Hazelnoot <acomputerdog@gmail.com> 2025-02-08 13:16:17 -0500
committer: Hazelnoot <acomputerdog@gmail.com> 2025-02-08 13:16:37 -0500
commit: 7e1b4b259a4efd383dac368178a9c4ed0cd9fc20 (patch)
tree: 0068429295e31528d356c74a8dcae28bb04bae42 /packages/backend/src/server/api/ApiCallService.ts
parent: Merge remote-tracking branch 'fEmber/merge/2024-02-03' into merge/2024-02-03 (diff)
parent: merge: Rework rate limit factors and add caching (resolves #884) (!884) (diff)
download: sharkey-7e1b4b259a4efd383dac368178a9c4ed0cd9fc20.tar.gz
sharkey-7e1b4b259a4efd383dac368178a9c4ed0cd9fc20.tar.bz2
sharkey-7e1b4b259a4efd383dac368178a9c4ed0cd9fc20.zip
1 files changed, 17 insertions, 22 deletions
diff --git a/packages/backend/src/server/api/ApiCallService.ts b/packages/backend/src/server/api/ApiCallService.ts
index 03f25a51fe..5ce358d68f 100644
--- a/packages/backend/src/server/api/ApiCallService.ts
+++ b/packages/backend/src/server/api/ApiCallService.ts
@@ -19,7 +19,7 @@ import { bindThis } from '@/decorators.js';
 import { RoleService } from '@/core/RoleService.js';
 import type { Config } from '@/config.js';
 import { sendRateLimitHeaders } from '@/misc/rate-limit-utils.js';
-import { SkRateLimiterService } from '@/server/api/SkRateLimiterService.js';
+import { SkRateLimiterService } from '@/server/SkRateLimiterService.js';
 import { ApiError } from './error.js';
 import { ApiLoggerService } from './ApiLoggerService.js';
 import { AuthenticateService, AuthenticationError } from './AuthenticateService.js';
@@ -313,35 +313,30 @@ export class ApiCallService implements OnApplicationShutdown {
 		// eslint-disable-next-line @typescript-eslint/no-unnecessary-condition
 		if (endpointLimit) {
 			// koa will automatically load the `X-Forwarded-For` header if `proxy: true` is configured in the app.
-			let limitActor: string;
+			let limitActor: string | MiLocalUser;
 			if (user) {
-				limitActor = user.id;
+				limitActor = user;
 			} else {
 				limitActor = getIpHash(request.ip);
 			}
 
-			// TODO: 毎リクエスト計算するのもあれだしキャッシュしたい
-			const factor = user ? (await this.roleService.getUserPolicies(user.id)).rateLimitFactor : 1;
+			const limit = {
+				key: ep.name,
+				...endpointLimit,
+			};
 
-			if (factor > 0) {
-				const limit = {
-					key: ep.name,
-					...endpointLimit,
-				};
+			// Rate limit
+			const info = await this.rateLimiterService.limit(limit, limitActor);
 
-				// Rate limit
-				const info = await this.rateLimiterService.limit(limit, limitActor, factor);
+			sendRateLimitHeaders(reply, info);
 
-				sendRateLimitHeaders(reply, info);
-
-				if (info.blocked) {
-					throw new ApiError({
-						message: 'Rate limit exceeded. Please try again later.',
-						code: 'RATE_LIMIT_EXCEEDED',
-						id: 'd5826d14-3982-4d2e-8011-b9e9f02499ef',
-						httpStatusCode: 429,
-					}, info);
-				}
+			if (info.blocked) {
+				throw new ApiError({
+					message: 'Rate limit exceeded. Please try again later.',
+					code: 'RATE_LIMIT_EXCEEDED',
+					id: 'd5826d14-3982-4d2e-8011-b9e9f02499ef',
+					httpStatusCode: 429,
+				}, info);
 			}
 		}
author	Hazelnoot <acomputerdog@gmail.com>	2025-02-08 13:16:17 -0500
committer	Hazelnoot <acomputerdog@gmail.com>	2025-02-08 13:16:37 -0500
commit	7e1b4b259a4efd383dac368178a9c4ed0cd9fc20 (patch)
tree	0068429295e31528d356c74a8dcae28bb04bae42 /packages/backend/src/server/api/ApiCallService.ts
parent	Merge remote-tracking branch 'fEmber/merge/2024-02-03' into merge/2024-02-03 (diff)
parent	merge: Rework rate limit factors and add caching (resolves #884) (!884) (diff)
download	sharkey-7e1b4b259a4efd383dac368178a9c4ed0cd9fc20.tar.gz sharkey-7e1b4b259a4efd383dac368178a9c4ed0cd9fc20.tar.bz2 sharkey-7e1b4b259a4efd383dac368178a9c4ed0cd9fc20.zip