Rate limit pre-emptive boots of users not even watching your cam
This commit is contained in:
parent
3ddb321bf4
commit
df4dd6a2b3
|
|
@ -37,6 +37,7 @@ func (dm DirectMessage) CreateTable() error {
|
||||||
);
|
);
|
||||||
|
|
||||||
CREATE INDEX IF NOT EXISTS idx_direct_messages_channel_id ON direct_messages(channel_id);
|
CREATE INDEX IF NOT EXISTS idx_direct_messages_channel_id ON direct_messages(channel_id);
|
||||||
|
CREATE INDEX IF NOT EXISTS idx_direct_messages_username ON direct_messages(username);
|
||||||
CREATE INDEX IF NOT EXISTS idx_direct_messages_timestamp ON direct_messages(timestamp);
|
CREATE INDEX IF NOT EXISTS idx_direct_messages_timestamp ON direct_messages(timestamp);
|
||||||
`)
|
`)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
|
|
|
||||||
61
src/App.vue
61
src/App.vue
|
|
@ -283,6 +283,17 @@ export default {
|
||||||
// and usernames are removed when we expressly re-open their
|
// and usernames are removed when we expressly re-open their
|
||||||
// video (e.g., by clicking their Who List video button).
|
// video (e.g., by clicking their Who List video button).
|
||||||
expresslyClosed: {}, // bool per username
|
expresslyClosed: {}, // bool per username
|
||||||
|
|
||||||
|
// Rate limit pre-emptive boots: to avoid a user coming thru the entire Who List
|
||||||
|
// and kicking everyone off their cam when they aren't even watching yet.
|
||||||
|
preemptBootRateLimit: {
|
||||||
|
counter: 0, // how many people have they booted so far
|
||||||
|
cooldownAt: null, // Date for cooldown once they reach the threshold
|
||||||
|
|
||||||
|
// Configuration settings:
|
||||||
|
maxFreeBoots: 10, // first 10 are free
|
||||||
|
cooldownTTL: 120, // then must wait this number of seconds before each boot
|
||||||
|
}
|
||||||
},
|
},
|
||||||
|
|
||||||
// Chat history.
|
// Chat history.
|
||||||
|
|
@ -2838,6 +2849,10 @@ export default {
|
||||||
return;
|
return;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Check if they are currently rate limited from pre-emptive boots of folks
|
||||||
|
// who are not even watching their camera yet.
|
||||||
|
if (this.rateLimitPreemptiveBoots(username, false)) return;
|
||||||
|
|
||||||
// Boot them off our webcam.
|
// Boot them off our webcam.
|
||||||
this.modalConfirm({
|
this.modalConfirm({
|
||||||
title: "Boot user",
|
title: "Boot user",
|
||||||
|
|
@ -2846,6 +2861,9 @@ export default {
|
||||||
`from seeing that your camera is active for the remainder of your ` +
|
`from seeing that your camera is active for the remainder of your ` +
|
||||||
`chat session.`
|
`chat session.`
|
||||||
}).then(() => {
|
}).then(() => {
|
||||||
|
// Ping their rate limiter.
|
||||||
|
if (this.rateLimitPreemptiveBoots(username, true)) return;
|
||||||
|
|
||||||
this.sendBoot(username);
|
this.sendBoot(username);
|
||||||
this.WebRTC.booted[username] = true;
|
this.WebRTC.booted[username] = true;
|
||||||
|
|
||||||
|
|
@ -2875,6 +2893,49 @@ export default {
|
||||||
this.whoMap[username] != undefined &&
|
this.whoMap[username] != undefined &&
|
||||||
this.whoMap[username].op;
|
this.whoMap[username].op;
|
||||||
},
|
},
|
||||||
|
rateLimitPreemptiveBoots(username, ping=false) {
|
||||||
|
// Rate limit abusive pre-emptive booting behavior: if the target is not even currently watching
|
||||||
|
// your camera, limit how many and how frequently you can boot them off.
|
||||||
|
//
|
||||||
|
// Returns true if limited, false otherwise.
|
||||||
|
|
||||||
|
let cooldownAt = this.WebRTC.preemptBootRateLimit.cooldownAt,
|
||||||
|
cooldownTTL = this.WebRTC.preemptBootRateLimit.cooldownTTL,
|
||||||
|
now = new Date().getTime();
|
||||||
|
|
||||||
|
if (!this.isWatchingMe(username)) {
|
||||||
|
// Within the 'free' boot limits?
|
||||||
|
if (this.WebRTC.preemptBootRateLimit.counter < this.WebRTC.preemptBootRateLimit.maxFreeBoots) {
|
||||||
|
if (!ping) return false;
|
||||||
|
this.WebRTC.preemptBootRateLimit.counter++;
|
||||||
|
}
|
||||||
|
|
||||||
|
// Begin enforcing a cooldown TTL after a while.
|
||||||
|
if (this.WebRTC.preemptBootRateLimit.counter >= this.WebRTC.preemptBootRateLimit.maxFreeBoots) {
|
||||||
|
|
||||||
|
// Currently throttled?
|
||||||
|
if (cooldownAt !== null) {
|
||||||
|
if (now < cooldownAt) {
|
||||||
|
let delta = cooldownAt - now;
|
||||||
|
this.modalAlert({
|
||||||
|
title: "You are doing that too often",
|
||||||
|
message: "You have been pre-emptively booting an unusual number of people who weren't even watching your camera yet.\n\n" +
|
||||||
|
`Please wait ${cooldownTTL} seconds between any additional pre-emptive boots.\n\n` +
|
||||||
|
`You may try again after ${delta/1000} seconds.`,
|
||||||
|
});
|
||||||
|
return true;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
// Refresh the timer on pings.
|
||||||
|
if (ping) {
|
||||||
|
this.WebRTC.preemptBootRateLimit.cooldownAt = now + (cooldownTTL * 1000);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
return false;
|
||||||
|
},
|
||||||
|
|
||||||
// Stop broadcasting.
|
// Stop broadcasting.
|
||||||
stopVideo() {
|
stopVideo() {
|
||||||
|
|
|
||||||
|
|
@ -353,7 +353,6 @@ export default {
|
||||||
|
|
||||||
<!-- Un-Boot button -->
|
<!-- Un-Boot button -->
|
||||||
<button type="button"
|
<button type="button"
|
||||||
v-if="isBooted"
|
|
||||||
class="button is-small px-2 ml-1 mb-1"
|
class="button is-small px-2 ml-1 mb-1"
|
||||||
@click="bootUser()" title="Boot user off your webcam">
|
@click="bootUser()" title="Boot user off your webcam">
|
||||||
<i class="fa fa-user-xmark mr-1" :class="{
|
<i class="fa fa-user-xmark mr-1" :class="{
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue
Block a user