search

kawa-kokosowa / bubblebbs

Text BBS 🗣️ with authenticated 🔒🆔 posts 🗨️ and no registration 🚫✍️
http://bubblebbs.cafe
MIT License
17 stars 3 forks source link

Disable bursting exploit in too-simple limits #95

Closed kawa-kokosowa closed 6 years ago

kawa-kokosowa commented 6 years ago

You can counteract bursting as in maxing out a limit all in one second, for example, simply by having multiple limiters:

@app.route("....")
@limiter.limit("100/day")
@limiter.limit("10/hour")
@limiter.limit("1/minute")
def my_route():
  ...

http://flask-limiter.readthedocs.io/en/stable/

kawa-kokosowa commented 6 years ago

i think you can do a list? that would be nice...