osr-plastic/osr-discourse-src
Archived
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
This repository has been archived on 2023-03-18. You can view files and clone it, but cannot push or open issues or pull requests.
690db4fd36
osr-discourse-src/plugins/discourse-narrative-bot/lib/discourse_narrative_bot
History
Roman Rizzi 835d2be4da
FIX: Rate limit and hijack certificate generation. (#8215) 
To eliminate a DDOS attack vector, we're taking the following measures:

The endpoint will be rate-limited to 3 requests every 60 seconds (per user).
A 24 hours max-age cache header is sent with the response.
The route will be hijacked to generate the certificate in the background.
2019-10-21 13:14:15 -03:00
..
templates FIX: Narrative Bot certificates are ERB templates (#8174) 2019-10-09 17:45:01 +11:00
actions.rb DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00
advanced_user_narrative.rb DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00
base.rb DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00
certificate_generator.rb FIX: Rate limit and hijack certificate generation. (#8215) 2019-10-21 13:14:15 -03:00
dice.rb Fix the build take 2. 2019-05-13 11:22:48 +08:00
magic_8_ball.rb DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00
new_user_narrative.rb Refactor search_answer to be dynamically inserted so it can be changed 2019-10-16 14:37:17 -04:00
quote_generator.rb FIX: Use the quote generator in the example text 2019-10-16 13:40:44 -04:00
track_selector.rb FIX: Use the quote generator in the example text 2019-10-16 13:40:44 -04:00
welcome_post_type_site_setting.rb DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00