mirror/UNIT3D-Community-Edition
1
0
Fork 0
mirror of https://github.com/HDInnovations/UNIT3D-Community-Edition.git synced 2026-03-20 04:11:02 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
development
UNIT3D-Community-Edition/app/Providers/RouteServiceProvider.php

118 lines
4.6 KiB
PHP
Raw Permalink Blame History

<?php
declare(strict_types=1);
/**
* NOTICE OF LICENSE.
*
* UNIT3D Community Edition is open-sourced software licensed under the GNU Affero General Public License v3.0
* The details is bundled with this project in the file LICENSE.txt.
*
* @project UNIT3D Community Edition
*
* @author HDVinnie <hdinnovations@protonmail.com>
* @license https://www.gnu.org/licenses/agpl-3.0.en.html/ GNU Affero General Public License v3.0
*/
namespace App\Providers;
use App\Enums\GlobalRateLimit;
use App\Enums\MiddlewareGroup;
use Illuminate\Auth\Middleware\RedirectIfAuthenticated;
use Illuminate\Cache\RateLimiting\Limit;
use Illuminate\Foundation\Support\Providers\RouteServiceProvider as ServiceProvider;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\RateLimiter;
use Illuminate\Support\Facades\Route;
class RouteServiceProvider extends ServiceProvider
{
/**
* The path to the "home" route for your application.
*
* This is used by Laravel authentication to redirect users after login.
*
* @var string
*/
final public const HOME = '/';
/**
* Define your route model bindings, pattern filters, etc.
*/
public function boot(): void
{
$this->configureRateLimiting();
$this->removeIndexPhpFromUrl();
$this->routes(function (): void {
Route::prefix('api')
->middleware(MiddlewareGroup::CHAT->value)
->group(base_path('routes/chat.php'));
Route::middleware(MiddlewareGroup::WEB->value)
->group(base_path('routes/web.php'));
Route::prefix('api')
->middleware(MiddlewareGroup::API->value)
->group(base_path('routes/api.php'));
Route::prefix('announce')
->middleware(MiddlewareGroup::ANNOUNCE->value)
->group(base_path('routes/announce.php'));
Route::middleware(MiddlewareGroup::RSS->value)
->group(base_path('routes/rss.php'));
});
RedirectIfAuthenticated::redirectUsing(fn () => self::HOME);
}
/**
* Configure the rate limiters for the application.
*/
protected function configureRateLimiting(): void
{
RateLimiter::for(GlobalRateLimit::WEB, function (Request $request): Limit {
$user = $request->user();
return $user ? Limit::perMinute(
cache()->flexible(
'group:'.$user->group_id.':is_modo',
[5, 10],
fn () => $user->group()->value('is_modo')
)
? 60
: 30
)
->by('web'.$user->id)
: Limit::perMinute(8)->by('web'.$request->ip());
});
RateLimiter::for(GlobalRateLimit::API, fn (Request $request) => Limit::perMinute(30)->by('api'.$request->user()->id));
RateLimiter::for(GlobalRateLimit::ANNOUNCE, fn (Request $request) => Limit::perMinute(500)->by('announce'.$request->ip()));
RateLimiter::for(GlobalRateLimit::CHAT, fn (Request $request) => Limit::perMinute(60)->by('chat'.$request->user()->id));
RateLimiter::for(GlobalRateLimit::RSS, fn (Request $request) => Limit::perMinute(30)->by('rss'.$request->user()->id));
RateLimiter::for(GlobalRateLimit::AUTHENTICATED_IMAGES, fn (Request $request): Limit => Limit::perMinute(200)->by('authenticated-images:'.$request->user()->id));
RateLimiter::for(GlobalRateLimit::SEARCH, fn (Request $request): Limit => Limit::perMinute(100)->by('search:'.$request->user()->id));
RateLimiter::for(GlobalRateLimit::TMDB, fn (): Limit => Limit::perSecond(2));
RateLimiter::for(GlobalRateLimit::IGDB, fn (): Limit => Limit::perSecond(2));
RateLimiter::for(GlobalRateLimit::FORGOT_PASSWORD, fn (Request $request) => Limit::perMinute(5)->by('forgot-password'.$request->ip()));
RateLimiter::for(GlobalRateLimit::RESET_PASSWORD, fn (Request $request) => Limit::perMinute(5)->by('reset-password'.$request->ip()));
RateLimiter::for(GlobalRateLimit::REGISTER, fn (Request $request) => Limit::perMinute(5)->by('register'.$request->ip()));
RateLimiter::for(GlobalRateLimit::EMAIL_VERIFICATION, fn (Request $request) => Limit::perMinute(5)->by('email-verification'.$request->user()->id));
}
protected function removeIndexPhpFromUrl(): void
{
if (str_contains(request()->getRequestUri(), '/index.php/')) {
$url = str_replace('index.php/', '', request()->getRequestUri());
if ($url !== '') {
header("Location: {$url}", true, 301);
exit;
}
}
}
}
Reference in New Issue View Git Blame Copy Permalink