@mmmbuto/nexuscli 0.9.3 → 0.9.4
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +10 -2
- package/frontend/dist/assets/{index-Ci39i_2l.css → index-BAfxoAUN.css} +1 -1
- package/frontend/dist/assets/{index-x6Jl2qtq.js → index-CxYyVrH5.js} +9 -9
- package/frontend/dist/index.html +2 -2
- package/frontend/dist/sw.js +1 -1
- package/lib/server/middleware/rate-limit.js +63 -0
- package/lib/server/server.js +4 -3
- package/package.json +1 -1
package/frontend/dist/index.html
CHANGED
|
@@ -59,8 +59,8 @@
|
|
|
59
59
|
|
|
60
60
|
<!-- Prevent Scaling on iOS -->
|
|
61
61
|
<meta name="format-detection" content="telephone=no" />
|
|
62
|
-
<script type="module" crossorigin src="/assets/index-
|
|
63
|
-
<link rel="stylesheet" crossorigin href="/assets/index-
|
|
62
|
+
<script type="module" crossorigin src="/assets/index-CxYyVrH5.js"></script>
|
|
63
|
+
<link rel="stylesheet" crossorigin href="/assets/index-BAfxoAUN.css">
|
|
64
64
|
</head>
|
|
65
65
|
<body>
|
|
66
66
|
<div id="root"></div>
|
package/frontend/dist/sw.js
CHANGED
|
@@ -0,0 +1,63 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Rate Limiting Middleware for Chat Endpoints
|
|
3
|
+
*
|
|
4
|
+
* Protects AI chat endpoints from abuse by limiting requests per user.
|
|
5
|
+
* Uses express-rate-limit with user-based keying via JWT.
|
|
6
|
+
*/
|
|
7
|
+
|
|
8
|
+
const rateLimit = require('express-rate-limit');
|
|
9
|
+
|
|
10
|
+
/**
|
|
11
|
+
* Chat endpoints rate limiter
|
|
12
|
+
* - 10 requests per minute per user
|
|
13
|
+
* - Applies to: /api/v1/chat, /api/v1/codex, /api/v1/gemini
|
|
14
|
+
*/
|
|
15
|
+
const chatRateLimiter = rateLimit({
|
|
16
|
+
windowMs: 60 * 1000, // 1 minute window
|
|
17
|
+
max: 10, // 10 requests per window
|
|
18
|
+
standardHeaders: true, // Return rate limit info in headers
|
|
19
|
+
legacyHeaders: false,
|
|
20
|
+
|
|
21
|
+
// Key by user ID from JWT (set by authMiddleware)
|
|
22
|
+
keyGenerator: (req) => {
|
|
23
|
+
return req.user?.id || req.ip;
|
|
24
|
+
},
|
|
25
|
+
|
|
26
|
+
// Custom error response
|
|
27
|
+
handler: (req, res) => {
|
|
28
|
+
res.status(429).json({
|
|
29
|
+
error: 'Too many requests',
|
|
30
|
+
message: 'Rate limit exceeded. Please wait before sending more messages.',
|
|
31
|
+
retryAfter: Math.ceil(req.rateLimit.resetTime / 1000)
|
|
32
|
+
});
|
|
33
|
+
},
|
|
34
|
+
|
|
35
|
+
// Skip rate limiting for interrupt endpoints
|
|
36
|
+
skip: (req) => {
|
|
37
|
+
return req.path.endsWith('/interrupt');
|
|
38
|
+
}
|
|
39
|
+
});
|
|
40
|
+
|
|
41
|
+
/**
|
|
42
|
+
* General API rate limiter (for non-chat endpoints)
|
|
43
|
+
* - 60 requests per minute per IP
|
|
44
|
+
*/
|
|
45
|
+
const apiRateLimiter = rateLimit({
|
|
46
|
+
windowMs: 60 * 1000,
|
|
47
|
+
max: 60,
|
|
48
|
+
standardHeaders: true,
|
|
49
|
+
legacyHeaders: false,
|
|
50
|
+
keyGenerator: (req) => req.user?.id || req.ip,
|
|
51
|
+
handler: (req, res) => {
|
|
52
|
+
res.status(429).json({
|
|
53
|
+
error: 'Too many requests',
|
|
54
|
+
message: 'API rate limit exceeded.',
|
|
55
|
+
retryAfter: Math.ceil(req.rateLimit.resetTime / 1000)
|
|
56
|
+
});
|
|
57
|
+
}
|
|
58
|
+
});
|
|
59
|
+
|
|
60
|
+
module.exports = {
|
|
61
|
+
chatRateLimiter,
|
|
62
|
+
apiRateLimiter
|
|
63
|
+
};
|
package/lib/server/server.js
CHANGED
|
@@ -12,6 +12,7 @@ const pkg = require('../../package.json');
|
|
|
12
12
|
|
|
13
13
|
// Import middleware
|
|
14
14
|
const { authMiddleware } = require('./middleware/auth');
|
|
15
|
+
const { chatRateLimiter } = require('./middleware/rate-limit');
|
|
15
16
|
|
|
16
17
|
// Import routes
|
|
17
18
|
const authRouter = require('./routes/auth');
|
|
@@ -74,9 +75,9 @@ app.use('/api/v1/sessions', authMiddleware, sessionsRouter);
|
|
|
74
75
|
app.use('/api/v1/conversations', authMiddleware, conversationsRouter);
|
|
75
76
|
app.use('/api/v1/conversations', authMiddleware, messagesRouter);
|
|
76
77
|
app.use('/api/v1/jobs', authMiddleware, jobsRouter);
|
|
77
|
-
app.use('/api/v1/chat', authMiddleware, chatRouter);
|
|
78
|
-
app.use('/api/v1/codex', authMiddleware, codexRouter);
|
|
79
|
-
app.use('/api/v1/gemini', authMiddleware, geminiRouter);
|
|
78
|
+
app.use('/api/v1/chat', authMiddleware, chatRateLimiter, chatRouter);
|
|
79
|
+
app.use('/api/v1/codex', authMiddleware, chatRateLimiter, codexRouter);
|
|
80
|
+
app.use('/api/v1/gemini', authMiddleware, chatRateLimiter, geminiRouter);
|
|
80
81
|
app.use('/api/v1/upload', authMiddleware, uploadRouter); // File upload
|
|
81
82
|
|
|
82
83
|
// STT routes
|