From 84bf2fe74a2ec2e932cd5084bd995c7b55300629 Mon Sep 17 00:00:00 2001
From: Matt Strapp <matt@mattstrapp.net>
Date: Mon, 14 Feb 2022 20:39:37 -0600
Subject: Reorder middleware for "security"

Signed-off-by: Matt Strapp <matt@mattstrapp.net>
---
 src/index.ts | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

(limited to 'src/index.ts')

diff --git a/src/index.ts b/src/index.ts
index 1bf018f..385aecc 100644
--- a/src/index.ts
+++ b/src/index.ts
@@ -12,6 +12,13 @@ const app = express();
 
 /* MIDDLEWARE */
 
+// Hide the software being used (helps security)
+app.use(helmet());
+
+// CSRF protection
+app.use(cookieParser());
+const csrf = csurf({ cookie: true });
+
 // Rate limiting
 const rateLimiter = rateLimit({
     windowMs: 1 * 60 * 1000, // 1 minute
@@ -21,13 +28,6 @@ const rateLimiter = rateLimit({
 });
 app.use(rateLimiter);
 
-// CSRF protection
-app.use(cookieParser());
-const csrf = csurf({ cookie: true });
-
-
-// Hide the software being used (helps security)
-app.use(helmet());
 
 // The API
 app.use('/api/v1/', api);
-- 
cgit v1.2.3