Setter rate limit per auth token med ip som fallback

navikt · Feb 18, 2025 · 567826a · 567826a
1 parent 261ab7b
commit 567826a
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/server/server.js b/server/server.js
@@ -70,7 +70,7 @@ const apiRateLimit = rateLimit({
     message: 'You have exceeded the 100 requests in 1s limit!',
     standardHeaders: true,
     legacyHeaders: false,
-    keyGenerator: (req) => req.headers?.authorization?.replace('Bearer', '') || req.ip,
+    keyGenerator: (req) => req.headers?.authorization?.replace('Bearer ', '') || req.ip,
     handler: (req, res, next, options) => {
         if (req.rateLimit.remaining === 0) {
             log.error(`Rate limit reached for client ${req.ip}`);