From 18c5c820368e2441e041dfc3de4abbda0e989384 Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Wed, 25 Mar 2026 13:08:28 +0000 Subject: [PATCH] fix: add rate limiter to user/me endpoint Co-authored-by: qinfendebingshuo <207279273+qinfendebingshuo@users.noreply.github.com> Agent-Logs-Url: https://github.com/qinfendebingshuo/guanghulab/sessions/38d62fa6-b645-4f42-92dd-00d327337c17 --- writing-platform/backend/src/routes/user.ts | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/writing-platform/backend/src/routes/user.ts b/writing-platform/backend/src/routes/user.ts index 25104845..d23ed9ca 100644 --- a/writing-platform/backend/src/routes/user.ts +++ b/writing-platform/backend/src/routes/user.ts @@ -1,10 +1,11 @@ import { Router, Response } from 'express'; import { authMiddleware, AuthRequest } from '../middleware/authMiddleware'; +import { rateLimiter } from '../middleware/rateLimiter'; const router = Router(); // Get current user profile -router.get('/me', authMiddleware, (req: AuthRequest, res: Response): void => { +router.get('/me', rateLimiter(30, 60000), authMiddleware, (req: AuthRequest, res: Response): void => { if (!req.user) { res.status(401).json({ error: true, code: 'UNAUTHORIZED', message: '未认证' }); return;