Rate Limiting for Email Sign-In in NextAuth #12259
Unanswered
hamedyosefian
asked this question in
Help
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hi everyone,
I’m facing an issue with NextAuth’s email sign-in feature. Currently, there’s no rate limiting on the /api/auth/signin/email endpoint. This means that someone could use Postman to send unlimited email requests, which could lead to spam.
Has anyone dealt with this? What are some effective ways to implement rate limiting for this functionality?
Thanks for your help!
Beta Was this translation helpful? Give feedback.
All reactions