Skip to content

Comments

Fix proxy authentication flows by adjusting bare server rate limiting#21

Draft
Copilot wants to merge 3 commits intomainfrom
copilot/fix-proxy-systems-recaptcha-cloudflare
Draft

Fix proxy authentication flows by adjusting bare server rate limiting#21
Copilot wants to merge 3 commits intomainfrom
copilot/fix-proxy-systems-recaptcha-cloudflare

Conversation

Copy link
Contributor

Copilot AI commented Nov 16, 2025
edited
Loading

The bare server rate limiting was blocking legitimate authentication flows for reCAPTCHA, Cloudflare verification, and Google Sign-in due to overly aggressive connection throttling.

Changes

Server Configuration (server/index.ts)

  • Increased windowDuration 10s → 60s to accommodate OAuth handshakes
  • Removed validateConnection function that incorrectly rejected keepalive connections
  • Set filterRemote: undefined to allow authentication service endpoints
const bareServer = createBareServer("/bare/", {
    connectionLimiter: {
        maxConnectionsPerIP: parseInt(process.env.BARE_MAX_CONNECTIONS_PER_IP as string) || 500,
        windowDuration: parseInt(process.env.BARE_WINDOW_DURATION as string) || 60,
        blockDuration: parseInt(process.env.BARE_BLOCK_DURATION as string) || 30,
    },
    filterRemote: undefined
});

Documentation

  • Added AUTHENTICATION.md documenting built-in Ultraviolet/Scramjet support for authentication flows
  • Updated README.md with authentication capabilities and configuration defaults

Technical Context

Ultraviolet includes native CAPTCHA/OAuth support via proper iframe handling, CORS headers, and cookie management. The issue was server-side, not client-side - authentication flows require multiple rapid requests that were being rate-limited out.

Warning

Firewall rules blocked me from connecting to one or more addresses (expand for details)

I tried to connect to the following addresses, but was blocked by firewall rules:

  • telemetry.astro.build
    • Triggering command: node /home/REDACTED/work/Radius/Radius/node_modules/.bin/astro build (dns block)

If you need me to access, download, or install something from one of these locations, you can either:

Original prompt

fix the proxy systems to alow for recaptia and cloudflare varaficaition, as well as google sign in support but be shure to keep all of the core functions and fetures in tacked

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

@codesandbox
Copy link

codesandbox bot commented Nov 16, 2025

Review or Edit in CodeSandbox

Open the branch in Web EditorVS CodeInsiders

Open Preview

Copilot AI and others added 2 commits November 16, 2025 02:13
@sriail
Improve bare server configuration for auth flows and add documentation
88f3f89 
Co-authored-by: sriail <225764385+sriail@users.noreply.github.com>
@sriail
Update README with authentication support information
335a62e 
Co-authored-by: sriail <225764385+sriail@users.noreply.github.com>
Copilot AI changed the title [WIP] Fix proxy systems for reCAPTCHA and Cloudflare verification Fix proxy authentication flows by adjusting bare server rate limiting Nov 16, 2025
Copilot AI requested a review from sriail November 16, 2025 02:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sriail sriail Awaiting requested review from sriail

Assignees

Copilot code review Copilot

@sriail sriail

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@sriail