Ratelimits to prevent mass nukes

piccolo-orm / piccolo_admin

A powerful web admin for your database.

https://piccolo-orm.com/ecosystem/

MIT License

316 stars 37 forks source link

Ratelimits to prevent mass nukes #63

Open cheesycod opened 3 years ago

cheesycod commented 3 years ago

It would be nice if piccolo admin allowed ratelimiting non super users to protect against account compromises.

dantownsend commented 3 years ago

There's currently an option in create_admin, which is rate_limit_provider. This is just applied to the login endpoint. It's not documented very well at the moment.

Were you thinking of just protecting the login endpoint, or all endpoints?

cheesycod commented 3 years ago

All endpoints