oidc: add rate limit for login requests

2024-04-21 20:58:12 +02:00
parent 55db3ae517
commit c2326bc5cc
1 changed files with 6 additions and 0 deletions
--- a/src/nginxconfig.ejs
+++ b/src/nginxconfig.ejs
@@ -261,6 +261,12 @@ server {
        client_max_body_size 2m;
    }

+    location ~ ^/openid/interaction/.*/login$ {
+        proxy_pass   http://127.0.0.1:3005;
+        client_max_body_size 2m;
+        limit_req zone=admin_login burst=5;
+    }
+
    # graphite paths (uncomment block below and visit /graphite-web/)
    # remember to comment out the CSP policy as well to access the graphite dashboard
    # location ~ ^/graphite-web/ {