serverest 2.29.3 → 2.29.4

package/README.md

@@ -6,7 +6,7 @@
 <p align="center">
   <a href="https://npmjs.com/package/serverest"><img alt="serverest version" src="https://img.shields.io/npm/v/serverest?style=for-the-badge"></a>
   <a href="https://hub.docker.com/r/paulogoncalvesbh/serverest"><img alt="Docker Pulls" src="https://img.shields.io/docker/pulls/paulogoncalvesbh/serverest?style=for-the-badge"></a>
-  <a href="https://dashboard.stryker-mutator.io/reports/github.com/ServeRest/ServeRest/trunk"><img alt="Mutation test score" src="https://img.shields.io/endpoint?style=for-the-badge&url=https%3A%2F%2Fbadge-api.stryker-mutator.io%2Fgithub.com%2FServeRest%2FServeRest%2Ftrunk"></a>
+  <a href="https://sonarcloud.io/summary/overall?id=ServeRest"><img alt="Sonar code coverage score" src="https://img.shields.io/sonar/coverage/ServeRest?server=https%3A%2F%2Fsonarcloud.io&style=for-the-badge"></a>
   <a href="https://npm-stat.com/charts.html?package=serverest"><img alt="serverest total downloads" src="https://img.shields.io/npm/dt/serverest?color=blue&style=for-the-badge"></a>
 </p>
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "serverest",
-  "version": "2.29.3",
+  "version": "2.29.4",
   "description": "Servidor REST local de forma rápida e simples para estudo de testes de API",
   "author": "Paulo Gonçalves <author@serverest.dev> (https://www.linkedin.com/in/paulo-goncalves/)",
   "license": "GPL-3.0",
@@ -32,6 +32,7 @@
     "prepare": "is-ci || husky install",
     "commit": "cz",
     "start": "node ./src/server.js",
+    "start:debug": "node --inspect=0.0.0.0 ./src/server.js",
     "dev": "nodemon --legacy-watch -e json,js ./src/server.js --nodoc",
     "test:mutation": "stryker run ./test/stryker.conf.js",
     "test:mutation:diff": "stryker-diff-runner --path ./test/stryker.conf.js --branch trunk",
@@ -66,6 +67,7 @@
     "morgan": "^1.10.0",
     "nedb-promises": "^5.0.0",
     "open": "^8.0.6",
+    "rate-limiter-flexible": "^5.0.3",
     "swagger-ui-express": "^4.1.4",
     "yargs": "^16.2.0"
   },

package/src/app.js

@@ -23,6 +23,7 @@ const errorHandler = require('./middlewares/error-handler')
 const moesifMiddleware = require('./middlewares/moesif-monitor-middleware')
 const { version } = require('../package.json')
 const swaggerDocument = require('../docs/swagger.json')
+const rateLimiter = require('./middlewares/rate-limiter')
 const packageJson = require('../package.json')
 
 const app = express()
@@ -48,6 +49,7 @@ app.use(queryParser())
 app.use(timeout())
 app.use(cors())
 app.use(moesifMiddleware)
+app.use(rateLimiter)
 
 app.disable('etag')
 

package/src/middlewares/rate-limiter.js

@@ -0,0 +1,28 @@
+/* istanbul ignore file */
+
+const { RateLimiterMemory } = require('rate-limiter-flexible')
+
+const {
+  aplicacaoExecutandoLocalmente,
+  ehAmbienteDeTestes
+} = require('../utils/ambiente')
+const { LOAD_TEST_DETECTED } = require('../utils/constants')
+
+const rateLimiter = new RateLimiterMemory({
+  points: 600, // requests
+  duration: 30 // segundo por IP
+})
+
+module.exports = async (req, res, next) => {
+  if (aplicacaoExecutandoLocalmente() || ehAmbienteDeTestes) {
+    return next()
+  }
+
+  await rateLimiter.consume(req.ip)
+    .then(() => next())
+    .catch(() => {
+      return res.status(429).send({
+        message: LOAD_TEST_DETECTED
+      })
+    })
+}

package/src/utils/constants.js

@@ -22,5 +22,6 @@ module.exports = {
   REPLENISHED_STOCK: 'Estoque dos produtos reabastecido',
   USER_NOT_FOUND: 'Usuário não encontrado',
   CART_NOT_FOUND: 'Carrinho não encontrado',
-  PRODUCT_NOT_FOUND: 'Produto não encontrado'
+  PRODUCT_NOT_FOUND: 'Produto não encontrado',
+  LOAD_TEST_DETECTED: 'Foi detectado comportamento equivalente a teste de carga, não execute teste de carga nesse ambiente. Leia a documentação: https://github.com/ServeRest/ServeRest#teste-de-carga'
 }