81a3db1564
- Rate limit login attempts by target account - Rate limit password resets and e-mail re-confirmations by target account - Rate limit sign-up/login attempts, password resets, and e-mail re-confirmations by IP like before
8 lines
343 B
Ruby
8 lines
343 B
Ruby
ActiveSupport::Notifications.subscribe(/rack_attack/) do |_name, _start, _finish, _request_id, payload|
|
|
req = payload[:request]
|
|
|
|
next unless [:throttle, :blacklist].include? req.env['rack.attack.match_type']
|
|
|
|
Rails.logger.info("Rate limit hit (#{req.env['rack.attack.match_type']}): #{req.ip} #{req.request_method} #{req.fullpath}")
|
|
end
|