From 4336d8941d9f79c68e4673fda09717c6d836e141 Mon Sep 17 00:00:00 2001
From: Lukasz niemkiewicz <lukasz.niemkiewicz@gmail.com>
Date: Tue, 4 Oct 2022 10:06:32 +0200
Subject: [PATCH 1/2] docs(docs.nestjs.com) show example of enabling Throttle
 rate limiting behind proxies with express

the documentation was unsufficient to succesfuly implement the throttling since the external link
to express suggested using 'app.set' method,  wich by default  throws
'property set does not exist` error
---
 .swp                              | Bin 0 -> 12288 bytes
 content/security/rate-limiting.md |  18 +++++++++++++++++-
 2 files changed, 17 insertions(+), 1 deletion(-)
 create mode 100644 .swp

diff --git a/.swp b/.swp
new file mode 100644
index 0000000000000000000000000000000000000000..2cab0a0dc2524e21d670623d88491f5894f84db4
GIT binary patch
literal 12288
zcmeI%u};G<5C&iu#DEw;@B#-6U1(KW26zMpB!(7NT<6kQP2<QutL?;_@Ju`sPH6{_
z+O?|mTS`v8Sa<d(Wr#BFy*<CsW4Eu;xM*&_!+)QsG8!E=i5+pZt}`rbHGS1tXZY~c
z+p!vtAOL~=2%L@v{rlC+d3$qBSC^yxYy({(009U<00Izz00bZafxQSw-BO>a^U=Ed
z@jABt#q|^c0uX=z1Rwwb2tWV=5P$##AOL{_6wsMcXXi={($)O`-+cdnrTP0Ne}L!0
zmLUKE2tWV=5P$##AOHafKmY<;1xOt6qV^mDg*a)~-qq}7Nr8nj$AKy*v?a|88{~u7
zd*{{PLK6<c8O30$3AJ@ycT>SO%~%ST-4V^LDQLW;jB_1JA(Fzoc_1YPr@ki6xDqYa
zRW#RuVijVZTVqqU*>Z@+aL8l1Bs;51ZdRufyecD7HeFL|(<C?@P}o<xq?DhkALvtT
AHUIzs

literal 0
HcmV?d00001

diff --git a/content/security/rate-limiting.md b/content/security/rate-limiting.md
index d2b1e86fa8..57548dc5d7 100644
--- a/content/security/rate-limiting.md
+++ b/content/security/rate-limiting.md
@@ -72,7 +72,23 @@ findAll() {
 
 #### Proxies
 
-If your application runs behind a proxy server, check the specific HTTP adapter options ([express](http://expressjs.com/en/guide/behind-proxies.html) and [fastify](https://www.fastify.io/docs/latest/Reference/Server/#trustproxy)) for the `trust proxy` option and enable it. Doing so will allow you to get the original IP address from the `X-Forwarded-For` header, and you can override the `getTracker()` method to pull the value from the header rather than from `req.ip`. The following example works with both express and fastify:
+If your application runs behind a proxy server, check the specific HTTP adapter options ([express](http://expressjs.com/en/guide/behind-proxies.html) and [fastify](https://www.fastify.io/docs/latest/Reference/Server/#trustproxy)) for the `trust proxy` option and enable it. 
+Following example enables `trust proxy` for express adapter:
+
+```typescript
+//main.ts
+import { NestFactory } from '@nestjs/core';
+import { AppModule } from './app.module';
+import { NestExpressApplication } from "@nestjs/platform-express"
+async function bootstrap() {
+  const app = await NestFactory.create<NestExpressApplication>(AppModule);
+  app.set('trust proxy', 'loopback') // specify a single subnet
+  await app.listen(3000)
+}
+bootstrap();
+```
+
+Doing so will allow you to get the original IP address from the `X-Forwarded-For` header, and you can override the `getTracker()` method to pull the value from the header rather than from `req.ip`. The following example works with both express and fastify:
 
 ```typescript
 // throttler-behind-proxy.guard.ts

From a1a767edd2235d28e94dd335a5f992a46548f1b4 Mon Sep 17 00:00:00 2001
From: Kamil Mysliwiec <mail@kamilmysliwiec.com>
Date: Fri, 18 Oct 2024 12:56:03 +0200
Subject: [PATCH 2/2] Update content/security/rate-limiting.md

Co-authored-by: Jackie McDoniel <me@jaymcdoniel.dev>
---
 content/security/rate-limiting.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/security/rate-limiting.md b/content/security/rate-limiting.md
index 57548dc5d7..1fad9116d4 100644
--- a/content/security/rate-limiting.md
+++ b/content/security/rate-limiting.md
@@ -73,7 +73,7 @@ findAll() {
 #### Proxies
 
 If your application runs behind a proxy server, check the specific HTTP adapter options ([express](http://expressjs.com/en/guide/behind-proxies.html) and [fastify](https://www.fastify.io/docs/latest/Reference/Server/#trustproxy)) for the `trust proxy` option and enable it. 
-Following example enables `trust proxy` for express adapter:
+The following example enables `trust proxy` for the `express` adapter:
 
 ```typescript
 //main.ts