diff --git a/backend/src/index.ts b/backend/src/index.ts index 1511da0..2ffb48f 100644 --- a/backend/src/index.ts +++ b/backend/src/index.ts @@ -31,7 +31,7 @@ app.use(express.json({ limit: '10mb' })); // Rate limiting const limiter = rateLimit({ windowMs: 15 * 60 * 1000, // 15 minutes - max: 100, + max: 300, standardHeaders: true, legacyHeaders: false, message: { error: 'Too many requests', message: 'Please try again later' }, @@ -41,7 +41,7 @@ app.use('/api/', limiter); // Stricter rate limit for auth endpoints const authLimiter = rateLimit({ windowMs: 15 * 60 * 1000, - max: 20, + max: 50, standardHeaders: true, legacyHeaders: false, message: { error: 'Too many login attempts', message: 'Please try again later' },