stackoom
  简体   繁体   中英

How to whitelist one GAE service on another within the same project Node.js

 原文  2021-01-07 22:09:45       node.js/ google-app-engine/ ip/ whitelist/ local-network

Question

I have two servers. The first is a backend using Apollo Server, and the other is my frontend server using Next.js

The backend is hosted at api.example.com, and the frontend is hosted at www.example.com . Both servers are running on Google App Engine as two different services in the same app.

The problem I've run into is that I have used graphql-query-complexity to apply rate limiting to my application, and it is also rate limiting my frontend server because the frontend server is using server-side rendering to preload the request data.

My question is this: How can I whitelist my frontend server so that it can make as many requests as it needs, without having to manually update an environment variable with the server IP address everytime I push new code to production on the frontend server? I also am unsure if my frontends requests to the backend are using the local network or if they are using www?

Here is the code related to rate limiting my server:

if (config.NODE_ENV !== 'test') {
        // If the cost of the query is more than 500 throw an error
        if (cost > 500) {
          throw new Error(`Query cost exceeds single request token limit. The limit is 500 tokens and the query has a cost of ${cost} tokens. Please reduce the query cost and try again.`);
        }

        // Ensure that the IP Address is present on the request
        if (context && context.req && context.req.connection && context.req.connection.remoteAddress && context.req.connection.remoteAddress !== ---- not sure what to do about this ----) {
          // Check if there is a token allotment already in the database for that IP Address
          const tokens = await redis.get(context.req.connection.remoteAddress);

          console.log(tokens, cost);

          if (tokens !== null) {
            // If the request would exceed the token allotment
            if (tokens - cost < 0) {
              throw new Error('This request would exceed your token allotment. Please reduce the query cost or wait one minute and try again.');
            }
            // Decrement the token allotmetment by the cost of the query
            await redis.decrby(context.req.connection.remoteAddress, cost);
          } else {
            // Set the value and time-to-live of the token allotment
            await redis.setex(context.req.connection.remoteAddress, 60, 5000 - cost);
          }
        } else {
          throw new Error('An error occured within the request cost calculator. Please try again.');
        }
      }

1 answers

solution1
 0  2021-01-08 00:22:47

You can check for the header X-Appengine-Inbound-Appid . App engine automatically adds it when you issue http requests between your services/projects (NOTE: you have to send the requests to that service's appspot.com url).

https://cloud.google.com/appengine/docs/standard/python/appidentity/#asserting_identity_to_other_app_engine_apps

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Node.js Express: require/use one app within another How to run Node.js and Ruby tests within one project on Travis CI Does anyone know how to open another query within a same session in BigQuery using node.js? In Node.js, referring to one function from another within the same file results in a 'ReferenceError: -function- is not defined' error Python + Node.js on GAE How do I run a Node.js script from within another Node.js script How to mix Node.js and Typescript in the same Visual Studio project? how to use one function within multiple files node.js How to pass one Schema into another using MongoDB & Node.js How to get Node.js processes communicate with one another
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM