feat: re-enabled rate limiting

niftylettuce · niftylettuce · commit d0db3b190d45 · 2019-12-06T01:25:46.000-06:00
diff --git a/.env.defaults b/.env.defaults
@@ -19,6 +19,8 @@ DNSBL_REMOVALS=https://www.spamhaus.org/lookup/,https://www.spamcop.net/bl.shtml
 SPAM_SCORE_THRESHOLD=5
 MAX_FORWARDED_ADDRESSES=5
 TXT_RECORD_PREFIX=forward-email
-BLACKLIST=biz-catalogs.com
+BLACKLIST=biz-catalogs.com,tiproulette.com,mail.tiproulette.com
 CERTBOT_WELL_KNOWN_NAME=
 CERTBOT_WELL_KNOWN_CONTENTS=
+RATELIMIT_DURATION=3600000
+RATELIMIT_MAX=300
diff --git a/.env.schema b/.env.schema
@@ -22,3 +22,5 @@ DNSBL_REMOVALS=
 BLACKLIST=
 CERTBOT_WELL_KNOWN_NAME=
 CERTBOT_WELL_KNOWN_CONTENTS=
+RATELIMIT_DURATION=
+RATELIMIT_MAX=
diff --git a/README.md b/README.md
@@ -520,7 +520,7 @@ Yes! As of October 2, 2018 we have added this feature.  See [Send Mail As Using
 
 ### Can I forward unlimited emails with this
 
-Practically yes - the only current restriction is that senders are limited to sending `200` emails per hour through the system.
+Practically yes - the only current restriction is that senders (by unique email address) are limited to sending `300` emails per hour through the system.
 
 If this limit is exceeded we send a `451` response code which tells the senders mail server to retry later.
 
diff --git a/index.js b/index.js
@@ -160,14 +160,12 @@ class ForwardEmail {
     );
 
     // setup rate limiting with redis
-    /*
     if (this.config.rateLimit) {
       this.limiter = {
         db: client,
         ...this.config.rateLimit
       };
     }
-    */
 
     // expose client
     this.client = client;
@@ -944,18 +942,28 @@ class ForwardEmail {
     return new Promise((resolve, reject) => {
       if (email === this.config.noReply || !this.limiter) return resolve();
       const id = email;
-      const limit = new Limiter({ id, ...this.limiter });
+      const limit = new Limiter({ ...this.limiter, id });
       limit.get((err, limit) => {
         if (err) {
           err.responseCode = 421;
           return reject(err);
         }
 
-        if (limit.remaining) return resolve();
+        if (limit.remaining) {
+          logger.info(
+            `Rate limit for ${email} is now ${limit.remaining - 1}/${
+              limit.total
+            }`
+          );
+          return resolve();
+        }
+
         const delta = (limit.reset * 1000 - Date.now()) | 0;
         reject(
           new CustomError(
-            `Rate limit exceeded, retry in ${ms(delta, { long: true })}`,
+            `Rate limit exceeded for ${id}, retry in ${ms(delta, {
+              long: true
+            })}`,
             451
           )
         );
