From 25cfa659c750816a87243172794988f6fa651351 Mon Sep 17 00:00:00 2001
From: Kshitij <kshitijk@tuta.io>
Date: Fri, 18 Jul 2025 01:17:53 +0530
Subject: [PATCH] Added rate limiting logic in middleware.

---
 Backend/Middlewares/rateLimiter.js | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 Backend/Middlewares/rateLimiter.js

diff --git a/Backend/Middlewares/rateLimiter.js b/Backend/Middlewares/rateLimiter.js
new file mode 100644
index 0000000..196d55e
--- /dev/null
+++ b/Backend/Middlewares/rateLimiter.js
@@ -0,0 +1,11 @@
+const rateLimit = require("express-rate-limit");
+
+const loginLimiter = rateLimit({
+  windowMs: 15 * 60 * 1000, // 15 minutes
+  max: 5, // limit each IP to 5 login requests per windowMs
+  message: "Too many login attempts. Try again in 15 minutes.",
+  standardHeaders: true,
+  legacyHeaders: false,
+});
+
+module.exports = { loginLimiter };