npm - cahita - Versions diffs - 1.2.2 → 1.2.3 - Mend

cahita 1.2.2 → 1.2.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/middlewares/rate-limit.d.ts +4 -1
package/dist/middlewares/rate-limit.d.ts.map +1 -1
package/dist/middlewares/rate-limit.js +27 -11
package/dist/middlewares/rate-limit.js.map +1 -1
package/package.json +1 -1

package/dist/middlewares/rate-limit.d.ts CHANGED Viewed

@@ -1,8 +1,11 @@
-import type { Middleware } from '../types';
+import type { Middleware, Request } from '../types';
 interface RateLimitOptions {
     windowMs: number;
     max: number;
     message?: string;
+    skip?: (req: Request) => boolean;
+    keyGenerator?: (req: Request) => string;
+    maxEntries?: number;
 }
 export declare const rateLimit: (options: RateLimitOptions) => Middleware;
 export {};

package/dist/middlewares/rate-limit.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"rate-limit.d.ts","sourceRoot":"","sources":["../../src/middlewares/rate-limit.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,~~EAAmC~~,MAAM,SAAS,CAAC;AAE3E,UAAU,gBAAgB;IACxB,QAAQ,EAAE,MAAM,CAAC;IACjB,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,CAAC,EAAE,MAAM,CAAC;~~CAClB~~;AAED,eAAO,MAAM,SAAS,GAAI,SAAS,gBAAgB,KAAG,~~UA2CrD~~,CAAC"}
1	+ {"version":3,"file":"rate-limit.d.ts","sourceRoot":"","sources":["../../src/middlewares/rate-limit.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAgB,OAAO,EAAY,MAAM,SAAS,CAAC;AAE3E,UAAU,gBAAgB;IACxB,QAAQ,EAAE,MAAM,CAAC;IACjB,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,OAAO,CAAC;IACjC,YAAY,CAAC,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,MAAM,CAAC;IACxC,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,eAAO,MAAM,SAAS,GAAI,SAAS,gBAAgB,KAAG,UAwErD,CAAC"}

package/dist/middlewares/rate-limit.js CHANGED Viewed

@@ -2,35 +2,51 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rateLimit = void 0;
 const rateLimit = (options) => {
-    const { windowMs, max, message = 'Too many requests, please try again later.' } = options;
+    const { windowMs, max, message = 'Too many requests, please try again later.', skip = () => false, keyGenerator, maxEntries = 100_000, } = options;
+    if (windowMs < 1000) {
+        console.warn('🌵 Cahita Warning: windowMs is very low (< 1s). This might cause precision issues.');
+    }
     const hits = new Map();
+    const cleanupInterval = Math.max(windowMs, 30_000);
     setInterval(() => {
         const now = Date.now();
-        for (const [ip, data] of hits.entries()) {
+        for (const [key, data] of hits.entries()) {
             if (now > data.resetTime)
-                hits.delete(ip);
+                hits.delete(key);
         }
-    }, windowMs);
+    }, cleanupInterval).unref();
     return (req, res, next) => {
+        if (skip(req))
+            return next();
         const forwarded = req.headers['x-forwarded-for'];
         const ip = typeof forwarded === 'string' ? forwarded.split(',')[0].trim() : (req.socket.remoteAddress ?? 'unknown');
+        const key = keyGenerator ? keyGenerator(req) : ip;
         const now = Date.now();
-        let clientData = hits.get(ip);
+        let clientData = hits.get(key);
         if (clientData && now > clientData.resetTime) {
-            hits.delete(ip);
+            hits.delete(key);
             clientData = undefined;
         }
         if (!clientData) {
             clientData = { count: 0, resetTime: now + windowMs };
         }
         clientData.count++;
-        hits.set(ip, clientData);
+        hits.set(key, clientData);
+        if (hits.size > maxEntries) {
+            hits.clear();
+        }
+        const remaining = Math.max(0, max - clientData.count);
+        const resetSeconds = Math.ceil((clientData.resetTime - now) / 1000);
         res.setHeader('X-RateLimit-Limit', String(max));
-        res.setHeader('X-RateLimit-Remaining', String(Math.max(0, max - clientData.count)));
-        res.setHeader('X-RateLimit-Reset', Math.ceil(clientData.resetTime / 1000));
+        res.setHeader('X-RateLimit-Remaining', String(remaining));
+        res.setHeader('X-RateLimit-Reset', String(resetSeconds));
         if (clientData.count > max) {
-            res.setHeader('Retry-After', Math.ceil((clientData.resetTime - now) / 1000));
-            res.status(429).json({ error: message });
+            res.setHeader('Retry-After', String(resetSeconds));
+            res.status(429).json({
+                error: 'Too Many Requests',
+                message,
+                retryAfterSeconds: resetSeconds,
+            });
             return;
         }
         next();

package/dist/middlewares/rate-limit.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"rate-limit.js","sourceRoot":"","sources":["../../src/middlewares/rate-limit.ts"],"names":[],"mappings":";;;~~AAQO~~,MAAM,SAAS,GAAG,CAAC,OAAyB,EAAc,EAAE;IACjE,MAAM,~~EAAE~~,QAAQ,~~EAAE~~,GAAG,~~EAAE~~,OAAO,GAAG,4CAA4C,EAAE,GAAG,OAAO,CAAC;~~IAE1F~~,MAAM,IAAI,GAAG,IAAI,GAAG,EAAgD,CAAC;IAErE,WAAW,CAAC,GAAG,EAAE;QACf,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,KAAK,MAAM,CAAC,~~EAAE~~,EAAE,IAAI,CAAC,IAAI,IAAI,CAAC,OAAO,EAAE,EAAE,CAAC;~~YACxC~~,IAAI,GAAG,GAAG,IAAI,CAAC,SAAS;gBAAE,IAAI,CAAC,MAAM,CAAC,~~EAAE~~,CAAC,CAAC;~~QAC5C~~,CAAC;IACH,CAAC,EAAE,~~QAAQ~~,CAAC,CAAC;~~IAEb~~,OAAO,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE;QACzD,MAAM,SAAS,GAAG,GAAG,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;QACjD,MAAM,EAAE,GAAG,OAAO,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,aAAa,IAAI,SAAS,CAAC,CAAC;QAEpH,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;~~QACvB~~,IAAI,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,~~EAAE~~,CAAC,CAAC;~~QAE9B~~,IAAI,UAAU,IAAI,GAAG,GAAG,UAAU,CAAC,SAAS,EAAE,CAAC;YAC7C,IAAI,CAAC,MAAM,CAAC,~~EAAE~~,CAAC,CAAC;~~YAChB~~,UAAU,GAAG,SAAS,CAAC;QACzB,CAAC;QAED,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,UAAU,GAAG,EAAE,KAAK,EAAE,CAAC,EAAE,SAAS,EAAE,GAAG,GAAG,QAAQ,EAAE,CAAC;QACvD,CAAC;QAED,UAAU,CAAC,KAAK,EAAE,CAAC;QACnB,IAAI,CAAC,GAAG,CAAC,~~EAAE~~,EAAE,UAAU,CAAC,CAAC;~~QAEzB~~,GAAG,CAAC,~~SAAS~~,CAAC,~~mBAAmB~~,EAAE,~~MAAM~~,CAAC,GAAG,CAAC,CAAC,CAAC~~;QAChD~~,GAAG,CAAC,~~SAAS~~,CAAC,~~uBAAuB~~,~~EAAE,~~MAAM,~~CAAC~~,IAAI,CAAC,~~GAAG~~,CAAC,CAAC,~~EAAE~~,GAAG,GAAG,~~UAAU,~~CAAC,~~KAAK~~,~~CAAC~~,CAAC,CAAC~~,CAAC~~;~~QACpF~~,GAAG,CAAC,SAAS,CAAC,mBAAmB,EAAE,~~IAAI~~,CAAC,~~IAAI~~,CAAC,~~UAAU~~,CAAC,~~SAAS,~~GAAG,~~IAAI,~~CAAC,~~CAAC~~,CAAC~~;QAE3E~~,~~IAAI~~,~~UAAU~~,CAAC,~~KAAK~~,~~GAAG~~,~~GAAG~~,~~EAAE,~~CAAC;~~YAC3B~~,GAAG,CAAC,SAAS,CAAC,~~aAAa~~,EAAE,~~IAAI~~,CAAC,~~IAAI~~,CAAC,CAAC,UAAU,CAAC,~~SAAS~~,GAAG,GAAG,CAAC,GAAG,~~IAAI~~,CAAC,CAAC,CAAC;~~YAC7E~~,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,~~EAAE,~~KAAK,EAAE,OAAO,EAAE,CAAC,CAAC;~~YACzC~~,OAAO;QACT,CAAC;QAED,IAAI,EAAE,CAAC;IACT,CAAC,CAAC;AACJ,CAAC,CAAC;~~AA3CW~~,QAAA,SAAS,~~aA2CpB~~"}
1	+ {"version":3,"file":"rate-limit.js","sourceRoot":"","sources":["../../src/middlewares/rate-limit.ts"],"names":[],"mappings":";;;AAWO,MAAM,SAAS,GAAG,CAAC,OAAyB,EAAc,EAAE;IACjE,MAAM,EACJ,QAAQ,EACR,GAAG,EACH,OAAO,GAAG,4CAA4C,EACtD,IAAI,GAAG,GAAG,EAAE,CAAC,KAAK,EAClB,YAAY,EACZ,UAAU,GAAG,OAAO,GACrB,GAAG,OAAO,CAAC;IAEZ,IAAI,QAAQ,GAAG,IAAI,EAAE,CAAC;QACpB,OAAO,CAAC,IAAI,CAAC,oFAAoF,CAAC,CAAC;IACrG,CAAC;IAED,MAAM,IAAI,GAAG,IAAI,GAAG,EAAgD,CAAC;IAErE,MAAM,eAAe,GAAG,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAEnD,WAAW,CAAC,GAAG,EAAE;QACf,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,KAAK,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,IAAI,IAAI,CAAC,OAAO,EAAE,EAAE,CAAC;YACzC,IAAI,GAAG,GAAG,IAAI,CAAC,SAAS;gBAAE,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QAC7C,CAAC;IACH,CAAC,EAAE,eAAe,CAAC,CAAC,KAAK,EAAE,CAAC;IAE5B,OAAO,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE;QACzD,IAAI,IAAI,CAAC,GAAG,CAAC;YAAE,OAAO,IAAI,EAAE,CAAC;QAE7B,MAAM,SAAS,GAAG,GAAG,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;QACjD,MAAM,EAAE,GAAG,OAAO,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,aAAa,IAAI,SAAS,CAAC,CAAC;QAEpH,MAAM,GAAG,GAAG,YAAY,CAAC,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QAClD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAEvB,IAAI,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAE/B,IAAI,UAAU,IAAI,GAAG,GAAG,UAAU,CAAC,SAAS,EAAE,CAAC;YAC7C,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YACjB,UAAU,GAAG,SAAS,CAAC;QACzB,CAAC;QAED,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,UAAU,GAAG,EAAE,KAAK,EAAE,CAAC,EAAE,SAAS,EAAE,GAAG,GAAG,QAAQ,EAAE,CAAC;QACvD,CAAC;QAED,UAAU,CAAC,KAAK,EAAE,CAAC;QACnB,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,UAAU,CAAC,CAAC;QAE1B,IAAI,IAAI,CAAC,IAAI,GAAG,UAAU,EAAE,CAAC;YAC3B,IAAI,CAAC,KAAK,EAAE,CAAC;QACf,CAAC;QAED,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC;QACtD,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,SAAS,GAAG,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC;QAEpE,GAAG,CAAC,SAAS,CAAC,mBAAmB,EAAE,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC;QAChD,GAAG,CAAC,SAAS,CAAC,uBAAuB,EAAE,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC;QAC1D,GAAG,CAAC,SAAS,CAAC,mBAAmB,EAAE,MAAM,CAAC,YAAY,CAAC,CAAC,CAAC;QAEzD,IAAI,UAAU,CAAC,KAAK,GAAG,GAAG,EAAE,CAAC;YAC3B,GAAG,CAAC,SAAS,CAAC,aAAa,EAAE,MAAM,CAAC,YAAY,CAAC,CAAC,CAAC;YAEnD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,KAAK,EAAE,mBAAmB;gBAC1B,OAAO;gBACP,iBAAiB,EAAE,YAAY;aAChC,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,IAAI,EAAE,CAAC;IACT,CAAC,CAAC;AACJ,CAAC,CAAC;AAxEW,QAAA,SAAS,aAwEpB"}

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "cahita",
-  "version": "1.2.2",
+  "version": "1.2.3",
   "description": "A high-performance, async-first web framework for Node.js",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",