diff --git a/routes/api/report-question.js b/routes/api/report-question.js index ea3daefd4..d6635c2cf 100644 --- a/routes/api/report-question.js +++ b/routes/api/report-question.js @@ -2,8 +2,15 @@ import { ObjectId } from 'mongodb'; import reportQuestion from '../../database/qbreader/report-question.js'; import { Router } from 'express'; +import rateLimit from 'express-rate-limit'; const router = Router(); +router.use(rateLimit({ + windowMs: 60 * 60 * 1000, // 1 hour + max: 30, // Limit each IP to 30 requests per window + standardHeaders: true, // Return rate limit info in the `RateLimit-*` headers + legacyHeaders: false // Disable the `X-RateLimit-*` headers +})); router.post('/', async (req, res) => { let _id;