add rate limiting for /auth/mfa
This commit is contained in:
parent
a662ef4aee
commit
9dc7cff87f
|
@ -7,11 +7,13 @@ from app.api.base import api_bp
|
||||||
from app.config import FLASK_SECRET
|
from app.config import FLASK_SECRET
|
||||||
from app.db import Session
|
from app.db import Session
|
||||||
from app.email_utils import send_invalid_totp_login_email
|
from app.email_utils import send_invalid_totp_login_email
|
||||||
|
from app.extensions import limiter
|
||||||
from app.log import LOG
|
from app.log import LOG
|
||||||
from app.models import User, ApiKey
|
from app.models import User, ApiKey
|
||||||
|
|
||||||
|
|
||||||
@api_bp.route("/auth/mfa", methods=["POST"])
|
@api_bp.route("/auth/mfa", methods=["POST"])
|
||||||
|
@limiter.limit("10/minute")
|
||||||
def auth_mfa():
|
def auth_mfa():
|
||||||
"""
|
"""
|
||||||
Validate the OTP Token
|
Validate the OTP Token
|
||||||
|
|
Loading…
Reference in a new issue