pahmiudahgede
/
MIF_E31222379_BE
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
MIF_E31222379_BE/internal/middleware/api_secure.go

55 lines
1.1 KiB
Go
Raw Blame History

package middleware
import (
"context"
"fmt"
"os"
"time"
"github.com/gofiber/fiber/v2"
"github.com/pahmiudahgede/senggoldong/config"
"github.com/pahmiudahgede/senggoldong/utils"
)
func APIKeyMiddleware(c *fiber.Ctx) error {
apiKey := c.Get("x-api-key")
expectedAPIKey := os.Getenv("API_KEY")
if apiKey != expectedAPIKey {
return c.Status(fiber.StatusUnauthorized).JSON(utils.FormatResponse(
fiber.StatusUnauthorized,
"Invalid API Key",
nil,
))
}
return c.Next()
}
func RateLimitMiddleware(c *fiber.Ctx) error {
apiKey := c.Get("x-api-key")
if apiKey == "" {
return c.Status(fiber.StatusUnauthorized).JSON(utils.FormatResponse(
fiber.StatusUnauthorized,
"API Key is missing",
nil,
))
}
ctx := context.Background()
rateLimitKey := fmt.Sprintf("rate_limit:%s", apiKey)
count, _ := config.RedisClient.Incr(ctx, rateLimitKey).Result()
if count > 100 {
return c.Status(fiber.StatusTooManyRequests).JSON(utils.FormatResponse(
fiber.StatusTooManyRequests,
"Rate limit exceeded",
nil,
))
}
config.RedisClient.Expire(ctx, rateLimitKey, time.Minute)
return c.Next()
}
Reference in New Issue View Git Blame Copy Permalink