spee.ch/server/middleware/autoblockPublishMiddleware.js

const fs = require('fs');

const logger = require('winston');
const { publishing: { publishingChannelWhitelist } } = require('@config/siteConfig');
const ipBanFile = './site/config/ipBan.txt';
const forbiddenMessage = '<h1>Forbidden</h1>If you are seeing this by mistake, please contact us using <a href="https://chat.lbry.io/">https://chat.lbry.io/</a>';

let ipCounts = {};
let blockedAddresses = [];

if (fs.existsSync(ipBanFile)) {
  const lineReader = require('readline').createInterface({
    input: require('fs').createReadStream(ipBanFile),
  });

  lineReader.on('line', (line) => {
    if (line && line !== '') {
      blockedAddresses.push(line);
    }
  });
}

const autoblockPublishMiddleware = (req, res, next) => {
  let ip = (req.headers['x-forwarded-for'] || req.connection.remoteAddress).split(/,\s?/)[0];

  if (blockedAddresses.indexOf(ip) !== -1) {
    res.status(403).send(forbiddenMessage);
    res.end();

    return;
  }

  let count = ipCounts[ip] = (ipCounts[ip] || 0) + 1;

  setTimeout(() => {
    if (ipCounts[ip]) {
      ipCounts[ip]--;
      if (ipCounts[ip] === 0) {
        delete ipCounts[ip];
      }
    }
  }, 600000 /* 10 minute retainer */);

  if (count === 10) {
    logger.error(`Banning IP: ${ip}`);
    blockedAddresses.push(ip);
    res.status(403).send(forbiddenMessage);
    res.end();

    fs.appendFile(ipBanFile, ip + '\n', () => {});
  } else {
    next();
  }
};

const autoblockPublishBodyMiddleware = (req, res, next) => {
  if (req.body && publishingChannelWhitelist) {
    let ip = (req.headers['x-forwarded-for'] || req.connection.remoteAddress).split(/,\s?/)[0];
    const { channelName } = req.body;

    if (channelName && publishingChannelWhitelist.indexOf(channelName) !== -1) {
      delete ipCounts[ip];
    }
  }
  next();
};

module.exports = {
  autoblockPublishMiddleware,
  autoblockPublishBodyMiddleware,
};
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`const fs = require('fs');`

			`const logger = require('winston');`
			`const { publishing: { publishingChannelWhitelist } } = require('@config/siteConfig');`
Update autoblockPublishMiddleware.js 2018-11-12 21:12:31 +01:00			`const ipBanFile = './site/config/ipBan.txt';`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`const forbiddenMessage = '<h1>Forbidden</h1>If you are seeing this by mistake, please contact us using <a href="https://chat.lbry.io/">https://chat.lbry.io/</a>';`

			`let ipCounts = {};`
			`let blockedAddresses = [];`

run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (fs.existsSync(ipBanFile)) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`const lineReader = require('readline').createInterface({`
			`input: require('fs').createReadStream(ipBanFile),`
			`});`

			`lineReader.on('line', (line) => {`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (line && line !== '') {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`blockedAddresses.push(line);`
			`}`
			`});`
			`}`

			`const autoblockPublishMiddleware = (req, res, next) => {`
			`let ip = (req.headers['x-forwarded-for'] \|\| req.connection.remoteAddress).split(/,\s?/)[0];`

run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (blockedAddresses.indexOf(ip) !== -1) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`res.status(403).send(forbiddenMessage);`
			`res.end();`

			`return;`
			`}`

			`let count = ipCounts[ip] = (ipCounts[ip] \|\| 0) + 1;`

			`setTimeout(() => {`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (ipCounts[ip]) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`ipCounts[ip]--;`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (ipCounts[ip] === 0) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`delete ipCounts[ip];`
			`}`
			`}`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`}, 600000 /* 10 minute retainer */);`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (count === 10) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			logger.error(`Banning IP: ${ip}`);
			`blockedAddresses.push(ip);`
			`res.status(403).send(forbiddenMessage);`
			`res.end();`

			`fs.appendFile(ipBanFile, ip + '\n', () => {});`
			`} else {`
			`next();`
			`}`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`};`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00
			`const autoblockPublishBodyMiddleware = (req, res, next) => {`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (req.body && publishingChannelWhitelist) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`let ip = (req.headers['x-forwarded-for'] \|\| req.connection.remoteAddress).split(/,\s?/)[0];`
			`const { channelName } = req.body;`

run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (channelName && publishingChannelWhitelist.indexOf(channelName) !== -1) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`delete ipCounts[ip];`
			`}`
			`}`
			`next();`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`};`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00
			`module.exports = {`
			`autoblockPublishMiddleware,`
			`autoblockPublishBodyMiddleware,`
			`};`