From 67c3fa6930f1582628f3515a2717ce80dabb769f Mon Sep 17 00:00:00 2001
From: bearz314 <wongchoonjie@gmail.com>
Date: Tue, 11 Feb 2025 00:48:27 +1100
Subject: [PATCH] [fix] limiter: prevent loading cached index html when
 redirected

The redirection to index lets client requests CSS token, if somehow they haven't been.
We need to ensure the html isn't cached so the latest token can be retrieved.
---
 searx/botdetection/ip_limit.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/searx/botdetection/ip_limit.py b/searx/botdetection/ip_limit.py
index b4c6825b3..161a9826e 100644
--- a/searx/botdetection/ip_limit.py
+++ b/searx/botdetection/ip_limit.py
@@ -123,7 +123,9 @@ def filter_request(
         )
         if c > SUSPICIOUS_IP_MAX:
             logger.error("BLOCK: too many request from %s in SUSPICIOUS_IP_WINDOW (redirect to /)", network)
-            return flask.redirect(flask.url_for('index'), code=302)
+            response = flask.redirect(flask.url_for('index'), code=302)
+            response.headers["Cache-Control"] = "no-store, max-age=0"
+            return response
 
         c = incr_sliding_window(redis_client, 'ip_limit.BURST_WINDOW' + network.compressed, BURST_WINDOW)
         if c > BURST_MAX_SUSPICIOUS: