BlueMoonDevelopment · TheJeterLP · Mar 28, 2024 · Mar 28, 2024
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -32,6 +32,7 @@
         "cookie-parser": "^1.4.6",
         "cors": "^2.8.5",
         "express": "^4.19.2",
+        "express-rate-limit": "^7.2.0",
         "express-session": "^1.18.0",
         "jsonwebtoken": "^9.0.2",
         "jwt-decode": "^4.0.0",

diff --git a/src/main/typescript/server.ts b/src/main/typescript/server.ts
@@ -2,6 +2,7 @@
  * Required external modules
  */
 import express, { Application } from 'express';
+import RateLimit from 'express-rate-limit';
 import cors from 'cors';
 import mongoose from 'mongoose';
 import session from 'express-session';
@@ -38,6 +39,11 @@ import path from 'node:path';
  * App Variables
  */
 const app: Application = express();
+const limiter = RateLimit({
+    // 15 minutes
+    windowMs: 15 * 60 * 1000,
+    limit: 100,
+});
 
 /**
  * Database connection
@@ -53,6 +59,7 @@ app.use(cors({
     origin: server_settings.frontend_url,
     credentials: true,
 }));
+app.use(limiter);
 app.use(cookies());
 app.use(express.json());
 app.use(express.urlencoded({ extended: true }));