diff options
| author | nsfisis <nsfisis@gmail.com> | 2025-12-30 22:08:47 +0900 |
|---|---|---|
| committer | nsfisis <nsfisis@gmail.com> | 2025-12-30 22:08:47 +0900 |
| commit | c2eb7513834eeb5adfa53fff897f585de87e4821 (patch) | |
| tree | 9e914051ca67e2f9e1fa301119bdec398ec9e55f /src/server/index.ts | |
| parent | b839cae49efd4b9d35c2868a4137101a4d71bd7f (diff) | |
| download | kioku-c2eb7513834eeb5adfa53fff897f585de87e4821.tar.gz kioku-c2eb7513834eeb5adfa53fff897f585de87e4821.tar.zst kioku-c2eb7513834eeb5adfa53fff897f585de87e4821.zip | |
feat(security): add rate limiting and CORS middleware
- Add rate limiting to login endpoint (5 requests/minute per IP)
- Configure CORS middleware with environment-based origin control
- Expose rate limit headers in CORS for client visibility
- Update hono to 4.11.3 for rate limiter peer dependency
🤖 Generated with [Claude Code](https://claude.ai/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Diffstat (limited to 'src/server/index.ts')
| -rw-r--r-- | src/server/index.ts | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/src/server/index.ts b/src/server/index.ts index a2a3a77..ad7f48a 100644 --- a/src/server/index.ts +++ b/src/server/index.ts @@ -1,12 +1,13 @@ import { serve } from "@hono/node-server"; import { Hono } from "hono"; import { logger } from "hono/logger"; -import { errorHandler } from "./middleware/index.js"; +import { createCorsMiddleware, errorHandler } from "./middleware/index.js"; import { auth, cards, decks, study, sync } from "./routes/index.js"; const app = new Hono(); app.use("*", logger()); +app.use("/api/*", createCorsMiddleware()); app.onError(errorHandler); // Chain routes for RPC type inference |