Closed
Description
New Issue Checklist
- I am not disclosing a vulnerability.
- I am not just asking a question.
- I have searched through existing issues.
- I can reproduce the issue with the latest version of Parse Server.
Issue Description
When using a rate limiter, the rate limiter can fail when request.auth
is undefined. This can lead the rate limiter to reject all requests.
Steps to reproduce
Create a rate limiter and attempt to connect with auth
Actual Outcome
Rate limiter rejects all requests
Expected Outcome
Rate limiter passes
Environment
Server
- Parse Server version:
alpha
- Operating system:
FILL_THIS_OUT
- Local or remote host (AWS, Azure, Google Cloud, Heroku, Digital Ocean, etc):
FILL_THIS_OUT
Database
- System (MongoDB or Postgres):
FILL_THIS_OUT
- Database version:
FILL_THIS_OUT
- Local or remote host (MongoDB Atlas, mLab, AWS, Azure, Google Cloud, etc):
FILL_THIS_OUT
Client
- SDK (iOS, Android, JavaScript, PHP, Unity, etc):
FILL_THIS_OUT
- SDK version:
FILL_THIS_OUT