How do I rate-limit some but not all endpoints?

[vgoklani]

Hi - Thank you for taking the time to create this!

How do I protect multiple endpoints in express?

const rateLimiter = RateLimiter(app, app.locals.redisClient0);
rateLimiter({
    path: '/api/fetch',
    method: 'post',
    lookup: 'headers.x-forwarded-for',
    total: 120,
    expire: 1000 * 60 * 60
});

It seems like the path is a string, not an array. Please let me know - thanks!

[vitorcamachoo]

https://github.com/ded/express-limiter#as-direct-middleware

[eljefedelrodeodeljefe]

Is doing this in the whitelist option with the request object an alternative? Asking because I absolutely want to avoid hitting the storage backend on maintenance and high frequency routes. Those are very small in number all others endpoints are not, which makes direct middleware unfeasible.

[eljefedelrodeodeljefe]

Just check the code: it is.