supertokens-core icon indicating copy to clipboard operation
supertokens-core copied to clipboard

Published 20 hours ago verified publisher icon supertokens

Add rate limiting to certain APIs

Open rishabhpoddar opened this issue 4 years ago • 1 comments

The above should be enforced per device / session?

  • Email verification APIs
  • Password reset APIs
  • Sign up / sign in per email
  • Email exists API

rishabhpoddar avatar Jan 16 '21 06:01 rishabhpoddar

I'm working on adding rate limiting to an existing Remix application, and I was thinking of adding my findings to the remix-supertokens repo in case it would be of interest. (I'm using a package for this, so the example code for Remix + SuperTokens will still be pretty simple -- which benefits developers trying to understand how the integration works.)

If SuperTokens somehow supports this out of the box (including for its withoutRequestResponse functions), that would be amazing. If it supports this, but not for withoutRequestResponse functions, then a way to identify devices could potentially be helpful (if it wouldn't be a burden or out of scope for the SuperTokens team).

Not pushing this Github Issue as an emergency. Just sharing my thoughts and what I'm currently working on.

ITenthusiasm avatar Jan 26 '24 21:01 ITenthusiasm