spee.ch/server/middleware/autoblockPublishMiddleware.js

const fs = require('fs');

const logger = require('winston');
const {
  publishing: { publishingChannelWhitelist },
} = require('@config/siteConfig');
const ipBanFile = './site/config/ipBan.txt';
const ipWhitelist = './site/config/ipWhitelist.txt';
const forbiddenMessage =
  '<h1>Forbidden</h1>If you are seeing this by mistake, please contact us using <a href="https://chat.lbry.com/">https://chat.lbry.com/</a>';
const maxPublishesInTenMinutes = 20;
let ipCounts = {};
let blockedAddresses = [];
let whitelistedAddresses = [];

if (fs.existsSync(ipBanFile)) {
  const lineReader = require('readline').createInterface({
    input: require('fs').createReadStream(ipBanFile),
  });

  lineReader.on('line', line => {
    if (line && line !== '') {
      blockedAddresses.push(line);
    }
  });
}

// If a file called ipWhitelist.txt exists
// Please comment above each whitelisted IP why/who/when etc
// # Jim because he's awesome - January 2018
if (fs.existsSync(ipWhitelist)) {
  const lineReader = require('readline').createInterface({
    input: require('fs').createReadStream(ipWhitelist),
  });

  lineReader.on('line', line => {
    if (line && line !== '' && line[0] !== '#') {
      whitelistedAddresses.push(line);
    }
  });
}

const autoblockPublishMiddleware = (req, res, next) => {
  let ip = (req.headers['x-forwarded-for'] || req.connection.remoteAddress).split(/,\s?/)[0];

  if (whitelistedAddresses.indexOf(ip) !== -1) {
    next();
    return;
  }
  if (blockedAddresses.indexOf(ip) !== -1) {
    res.status(403).send(forbiddenMessage);
    res.end();

    return;
  }

  let count = (ipCounts[ip] = (ipCounts[ip] || 0) + 1);

  setTimeout(() => {
    if (ipCounts[ip]) {
      ipCounts[ip]--;
      if (ipCounts[ip] === 0) {
        delete ipCounts[ip];
      }
    }
  }, 600000 /* 10 minute retainer */);

  if (count === maxPublishesInTenMinutes) {
    logger.error(`Banning IP: ${ip}`);
    blockedAddresses.push(ip);
    res.status(403).send(forbiddenMessage);
    res.end();

    fs.appendFile(ipBanFile, ip + '\n', () => {});
  } else {
    next();
  }
};

const autoblockPublishBodyMiddleware = (req, res, next) => {
  if (req.body && publishingChannelWhitelist) {
    let ip = (req.headers['x-forwarded-for'] || req.connection.remoteAddress).split(/,\s?/)[0];
    const { channelName } = req.body;

    if (channelName && publishingChannelWhitelist.indexOf(channelName.toLowerCase()) !== -1) {
      delete ipCounts[ip];
    }
  }
  next();
};

module.exports = {
  autoblockPublishMiddleware,
  autoblockPublishBodyMiddleware,
};
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`const fs = require('fs');`

			`const logger = require('winston');`
changes lbry.io to lbry.com 2019-03-18 04:13:00 +01:00			`const {`
			`publishing: { publishingChannelWhitelist },`
			`} = require('@config/siteConfig');`
Update autoblockPublishMiddleware.js 2018-11-12 21:12:31 +01:00			`const ipBanFile = './site/config/ipBan.txt';`
adds ip whitelist 2019-07-03 23:21:58 +02:00			`const ipWhitelist = './site/config/ipWhitelist.txt';`
changes lbry.io to lbry.com 2019-03-18 04:13:00 +01:00			`const forbiddenMessage =`
			`'<h1>Forbidden</h1>If you are seeing this by mistake, please contact us using <a href="https://chat.lbry.com/">https://chat.lbry.com/</a>';`
changes max publishes to 20 2019-06-21 20:40:07 +02:00			`const maxPublishesInTenMinutes = 20;`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`let ipCounts = {};`
			`let blockedAddresses = [];`
adds ip whitelist 2019-07-03 23:21:58 +02:00			`let whitelistedAddresses = [];`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (fs.existsSync(ipBanFile)) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`const lineReader = require('readline').createInterface({`
			`input: require('fs').createReadStream(ipBanFile),`
			`});`

changes lbry.io to lbry.com 2019-03-18 04:13:00 +01:00			`lineReader.on('line', line => {`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (line && line !== '') {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`blockedAddresses.push(line);`
			`}`
			`});`
			`}`

adds ip whitelist 2019-07-03 23:21:58 +02:00			`// If a file called ipWhitelist.txt exists`
			`// Please comment above each whitelisted IP why/who/when etc`
			`// # Jim because he's awesome - January 2018`
			`if (fs.existsSync(ipWhitelist)) {`
			`const lineReader = require('readline').createInterface({`
			`input: require('fs').createReadStream(ipWhitelist),`
			`});`

			`lineReader.on('line', line => {`
			`if (line && line !== '' && line[0] !== '#') {`
			`whitelistedAddresses.push(line);`
			`}`
			`});`
			`}`

Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`const autoblockPublishMiddleware = (req, res, next) => {`
			`let ip = (req.headers['x-forwarded-for'] \|\| req.connection.remoteAddress).split(/,\s?/)[0];`

adds ip whitelist 2019-07-03 23:21:58 +02:00			`if (whitelistedAddresses.indexOf(ip) !== -1) {`
			`next();`
			`return;`
			`}`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (blockedAddresses.indexOf(ip) !== -1) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`res.status(403).send(forbiddenMessage);`
			`res.end();`

			`return;`
			`}`

changes lbry.io to lbry.com 2019-03-18 04:13:00 +01:00			`let count = (ipCounts[ip] = (ipCounts[ip] \|\| 0) + 1);`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00
			`setTimeout(() => {`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (ipCounts[ip]) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`ipCounts[ip]--;`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (ipCounts[ip] === 0) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`delete ipCounts[ip];`
			`}`
			`}`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`}, 600000 /* 10 minute retainer */);`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00
changes max publishes to 20 2019-06-21 20:40:07 +02:00			`if (count === maxPublishesInTenMinutes) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			logger.error(`Banning IP: ${ip}`);
			`blockedAddresses.push(ip);`
			`res.status(403).send(forbiddenMessage);`
			`res.end();`

			`fs.appendFile(ipBanFile, ip + '\n', () => {});`
			`} else {`
			`next();`
			`}`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`};`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00
			`const autoblockPublishBodyMiddleware = (req, res, next) => {`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`if (req.body && publishingChannelWhitelist) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`let ip = (req.headers['x-forwarded-for'] \|\| req.connection.remoteAddress).split(/,\s?/)[0];`
			`const { channelName } = req.body;`

Update autoblockPublishMiddleware.js 2018-11-12 21:21:07 +01:00			`if (channelName && publishingChannelWhitelist.indexOf(channelName.toLowerCase()) !== -1) {`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00			`delete ipCounts[ip];`
			`}`
			`}`
			`next();`
run eslint pre-hook 2018-11-11 01:11:12 +01:00			`};`
Add channel whitelisting support 2018-10-29 21:43:15 +01:00
			`module.exports = {`
			`autoblockPublishMiddleware,`
			`autoblockPublishBodyMiddleware,`
			`};`