Discource-C
/
discourse
mirror of https://github.com/discourse/discourse.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
discourse/plugins/discourse-narrative-bot
History
Roman Rizzi 835d2be4da
FIX: Rate limit and hijack certificate generation. (#8215) 
To eliminate a DDOS attack vector, we're taking the following measures:

The endpoint will be rate-limited to 3 requests every 60 seconds (per user).
A 24 hours max-age cache header is sent with the response.
The route will be hijacked to generate the certificate in the background.
 		2019-10-21 13:14:15 -03:00
..
assets/javascripts/initializers REFACTOR: Move `app-events:main` to `service:app-events` (#8152) 2019-10-04 10:06:08 -04:00
autoload/jobs DEV: Upgrading Discourse to Zeitwerk (#8098) 2019-10-02 14:01:53 +10:00
config Refactor `search_answer` to be dynamically inserted so it can be changed 2019-10-16 14:37:17 -04:00
db/fixtures DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00
lib/discourse_narrative_bot FIX: Rate limit and hijack certificate generation. (#8215) 2019-10-21 13:14:15 -03:00
public/images remove mistakenly checked file 2017-10-20 07:07:51 -07:00
spec FIX: Rate limit and hijack certificate generation. (#8215) 2019-10-21 13:14:15 -03:00
plugin.rb FIX: Rate limit and hijack certificate generation. (#8215) 2019-10-21 13:14:15 -03:00