diff options
| author | nsfisis <nsfisis@gmail.com> | 2026-02-13 23:31:19 +0900 |
|---|---|---|
| committer | nsfisis <nsfisis@gmail.com> | 2026-02-13 23:31:19 +0900 |
| commit | 7757f26295cbf19c4d6fa068e2cb6bdc2589d01a (patch) | |
| tree | 48d1145bacad99018378f20aa9826b04e7fa2832 /backend/go.mod | |
| parent | 470b7235b80d082009ad350e2b33ef6637209e02 (diff) | |
| download | phperkaigi-2026-albatross-7757f26295cbf19c4d6fa068e2cb6bdc2589d01a.tar.gz phperkaigi-2026-albatross-7757f26295cbf19c4d6fa068e2cb6bdc2589d01a.tar.zst phperkaigi-2026-albatross-7757f26295cbf19c4d6fa068e2cb6bdc2589d01a.zip | |
feat(auth): add login rate limiting per IP
Prevent brute-force attacks by limiting POST /login to 5 requests per
minute per IP address using golang.org/x/time/rate. Unused entries are
cleaned up after 10 minutes of inactivity.
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Diffstat (limited to 'backend/go.mod')
| -rw-r--r-- | backend/go.mod | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/backend/go.mod b/backend/go.mod index 2d38926..374c3df 100644 --- a/backend/go.mod +++ b/backend/go.mod @@ -1,6 +1,6 @@ module albatross-2026-backend -go 1.23.6 +go 1.24.0 require ( github.com/getkin/kin-openapi v0.129.0 @@ -16,6 +16,7 @@ require ( github.com/oapi-codegen/runtime v1.1.1 github.com/sqlc-dev/sqlc v1.28.0 golang.org/x/crypto v0.36.0 + golang.org/x/time v0.14.0 ) require ( @@ -247,7 +248,6 @@ require ( golang.org/x/sys v0.31.0 // indirect golang.org/x/term v0.30.0 // indirect golang.org/x/text v0.23.0 // indirect - golang.org/x/time v0.11.0 // indirect golang.org/x/tools v0.31.0 // indirect google.golang.org/genproto/googleapis/api v0.0.0-20250303144028-a0af3efb3deb // indirect google.golang.org/genproto/googleapis/rpc v0.0.0-20250303144028-a0af3efb3deb // indirect |