fix(api): Implement rate limiting for refresh token endpoint

- Added rate limiting middleware to enforce usage limits based on IP address. - Allowed up to 150 requests every 5 minutes per IP address.
MPC-Lab-X · Oct 14, 2024 · f7fe841 · f7fe841
1 parent 8ffc839
commit f7fe841
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/src/routes/authRoutes.js b/src/routes/authRoutes.js
@@ -26,7 +26,7 @@ router.post(
   rateLimiter(15, 60 * 60 * 1000),
   authController.loginUser
 );
-router.post("/refresh-token", authController.refreshToken);
+router.post("/refresh-token", rateLimiter(), authController.refreshToken);
 
 router.post(
   "/reset-password",