From f352618e5cc7d1f0065062f6084a6223d366eaa4 Mon Sep 17 00:00:00 2001
From: Daniel Ternyak <dternyak@gmail.com>
Date: Tue, 25 Jun 2019 11:02:44 -0400
Subject: [PATCH] Add rate limiting to auth endpoint

---
 backend/grant/user/views.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/backend/grant/user/views.py b/backend/grant/user/views.py
index 622e8959..4f43a7c9 100644
--- a/backend/grant/user/views.py
+++ b/backend/grant/user/views.py
@@ -122,6 +122,7 @@ def create_user(
 
 
 @blueprint.route("/auth", methods=["POST"])
+@limiter.limit("30/hour;5/minute")
 @body({
     "email": fields.Str(required=True),
     "password": fields.Str(required=True)