Kharec/goyco
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(middleware): add mutex for rapid-request counter

Browse Source
This commit is contained in:
Sandro CURY CAZZANIGA
2026-05-06 16:47:35 +02:00
parent 12db6409ce
commit 5d145613d2
1 changed files with 19 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files
internal/middleware/security_logging.go
+19 -7
View File
@@ -5,6 +5,7 @@ import (
"net/http" "net/http"
"os" "os"
"strings" "strings"
"sync"
"time" "time"
) )
@@ -220,18 +221,29 @@ func isSuspiciousUserAgent(userAgent string) bool {
return false return false
} }
var requestCounts = make(map[string]int) type rapidRequestTracker struct {
var lastReset = time.Now() mu sync.Mutex
counts map[string]int
lastReset time.Time
}
var rapidRequests = rapidRequestTracker{
counts: make(map[string]int),
lastReset: time.Now(),
}
func isRapidRequest(ip string) bool { func isRapidRequest(ip string) bool {
rapidRequests.mu.Lock()
defer rapidRequests.mu.Unlock()
now := time.Now() now := time.Now()
if now.Sub(lastReset) > time.Minute { if now.Sub(rapidRequests.lastReset) > time.Minute {
requestCounts = make(map[string]int) rapidRequests.counts = make(map[string]int)
lastReset = now rapidRequests.lastReset = now
} }
requestCounts[ip]++ rapidRequests.counts[ip]++
return requestCounts[ip] > 100 return rapidRequests.counts[ip] > 100
} }