Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
java
/
diagbotcloud
2
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Prechádzať zdrojové kódy

限流和反爬虫机制

gaodm 5 rokov pred
rodič
bee3ff5bec
commit
2fe16f6640
7 zmenil súbory, kde vykonal 329 pridanie a 6 odobranie
Rozdelené zobrazenie Ukázať štatistiku rozdielnych dát
  1. 18 0
      config-server/src/main/resources/shared/gateway-service-local.yml
  2. 4 4
      gateway-service/pom.xml
  3. 37 0
      gateway-service/src/main/java/com/diagbot/config/RateLimiter/RateLimiterConf.java
  4. 44 0
      gateway-service/src/main/java/com/diagbot/config/RateLimiter/SysKeyResolver.java
  5. 35 0
      gateway-service/src/main/java/com/diagbot/config/RateLimiter/SysKeyResolverConfigurer.java
  6. 189 0
      gateway-service/src/main/java/com/diagbot/config/RateLimiter/SystemRedisRateLimiter.java
  7. 2 2
      gateway-service/src/main/java/com/diagbot/filter/GlobalGatewayFilter.java

+ 18 - 0
config-server/src/main/resources/shared/gateway-service-local.yml
Zobraziť súbor 

@@ -1,4 +1,18 @@
 
+ratelimiter-conf:
 
+  #配置限流参数与RateLimiterConf类映射
 
+  rateLimitMap:
 
+    #格式为:routeid(gateway配置routes时指定的).replenishRate(流速)/burstCapacity令牌桶大小
 
+    icss-service.replenishRate: 3
 
+    icss-service.burstCapacity: 1
 
+    data-service.replenishRate: 5
 
+    data-service.burstCapacity: 1
 
+
 
 spring:
 
+  #redis
 
+  redis:
 
+    host: 192.168.2.236  #Redis服务器地址
 
+    port: 6378 # Redis服务器连接端口(本地环境端口6378,其他环境端口是6379)
 
+    password: lantone # Redis服务器连接密码(默认为空)
 
   #mq
 
   rabbitmq:
 
     host: localhost
 
@@ -69,6 +83,10 @@ spring:
 
         filters:
 
 #        - SwaggerHeaderFilter
 
         - StripPrefix=2
 
+        - name: RequestRateLimiter
 
+          args:
 
+            rate-limiter: "#{@systemRedisRateLimiter}"
 
+            key-resolver: "#{@sysKeyResolver}"
 
       - id: icssman-service
 
         uri: lb://icssman-service
 
         predicates:

+ 4 - 4
gateway-service/pom.xml
Zobraziť súbor 

@@ -27,10 +27,10 @@
 
             <groupId>org.springframework.cloud</groupId>
 
             <artifactId>spring-cloud-starter-gateway</artifactId>
 
         </dependency>
 
-        <!--<dependency>-->
 
-            <!--<groupId>org.springframework.boot</groupId>-->
 
-            <!--<artifactId>spring-boot-starter-data-redis-reactive</artifactId>-->
 
-        <!--</dependency>-->
 
+        <dependency>
 
+            <groupId>org.springframework.boot</groupId>
 
+            <artifactId>spring-boot-starter-data-redis-reactive</artifactId>
 
+        </dependency>
 
         <!-- 配置-->
 
         <dependency>
 
             <groupId>org.springframework.cloud</groupId>

+ 37 - 0
gateway-service/src/main/java/com/diagbot/config/RateLimiter/RateLimiterConf.java
Zobraziť súbor 

@@ -0,0 +1,37 @@
 
+package com.diagbot.config.RateLimiter;
 
+
 
+import org.springframework.boot.context.properties.ConfigurationProperties;
 
+import org.springframework.stereotype.Component;
 
+
 
+import java.util.Map;
 
+import java.util.concurrent.ConcurrentHashMap;
 
+
 
+/**
 
+ * @Description:
 
+ * @author: gaodm
 
+ * @time: 2019/12/26 16:35
 
+ */
 
+@Component
 
+//使用配置文件的方式进行初始化
 
+@ConfigurationProperties(prefix = "ratelimiter-conf")
 
+public class RateLimiterConf {
 
+    //处理速度
 
+    private static final String DEFAULT_REPLENISHRATE="default.replenishRate";
 
+    //容量
 
+    private static final String DEFAULT_BURSTCAPACITY="default.burstCapacity";
 
+
 
+    private Map<String , Integer> rateLimitMap = new ConcurrentHashMap<String , Integer>(){
 
+        {
 
+            put(DEFAULT_REPLENISHRATE , 10);
 
+            put(DEFAULT_BURSTCAPACITY , 100);
 
+        }
 
+    };
 
+
 
+    public Map<String, Integer> getRateLimitMap() {
 
+        return rateLimitMap;
 
+    }
 
+
 
+    public void setRateLimitMap(Map<String, Integer> rateLimitMap) {
 
+        this.rateLimitMap = rateLimitMap;
 
+    }
 
+}

+ 44 - 0
gateway-service/src/main/java/com/diagbot/config/RateLimiter/SysKeyResolver.java
Zobraziť súbor 

@@ -0,0 +1,44 @@
 
+package com.diagbot.config.RateLimiter;
 
+
 
+import org.springframework.cloud.gateway.filter.ratelimit.KeyResolver;
 
+import org.springframework.cloud.gateway.support.ServerWebExchangeUtils;
 
+import org.springframework.http.server.reactive.ServerHttpRequest;
 
+import org.springframework.web.server.ServerWebExchange;
 
+import reactor.core.publisher.Mono;
 
+
 
+import java.net.URI;
 
+import java.util.Iterator;
 
+import java.util.LinkedHashSet;
 
+
 
+/**
 
+ * @Description:
 
+ * @author: gaodm
 
+ * @time: 2019/12/26 15:31
 
+ */
 
+public class SysKeyResolver implements KeyResolver {
 
+    private static final String GATE_WAY_PREFIX = "/api";
 
+
 
+    @Override
 
+    public Mono<String> resolve(ServerWebExchange exchange) {
 
+        LinkedHashSet requiredAttribute
 
+                = exchange.getRequiredAttribute(ServerWebExchangeUtils.GATEWAY_ORIGINAL_REQUEST_URL_ATTR);
 
+        String fullUrl = "";
 
+        if (requiredAttribute != null) {
 
+            Iterator<URI> iterator = requiredAttribute.iterator();
 
+            while (iterator.hasNext()) {
 
+                URI next = iterator.next();
 
+                if (next.getPath().startsWith(GATE_WAY_PREFIX)) {
 
+                    fullUrl = next.getPath();
 
+                }
 
+            }
 
+        }
 
+
 
+        String myKeyResolver = exchange.getRequest().getRemoteAddress().getHostName()
 
+                + "_" + fullUrl;
 
+        ServerHttpRequest.Builder builder = exchange.getRequest().mutate();
 
+        builder.header("myKeyResolver", myKeyResolver);
 
+        exchange.mutate().request(builder.build()).build();
 
+
 
+        return Mono.just(exchange.getRequest().getHeaders().getFirst("myKeyResolver"));
 
+    }
 
+}

+ 35 - 0
gateway-service/src/main/java/com/diagbot/config/RateLimiter/SysKeyResolverConfigurer.java
Zobraziť súbor 

@@ -0,0 +1,35 @@
 
+package com.diagbot.config.RateLimiter;
 
+
 
+import org.springframework.beans.factory.annotation.Qualifier;
 
+import org.springframework.context.annotation.Bean;
 
+import org.springframework.context.annotation.Configuration;
 
+import org.springframework.context.annotation.Primary;
 
+import org.springframework.data.redis.core.ReactiveRedisTemplate;
 
+import org.springframework.data.redis.core.script.RedisScript;
 
+import org.springframework.validation.Validator;
 
+
 
+import java.util.List;
 
+
 
+/**
 
+ * @Description:
 
+ * @author: gaodm
 
+ * @time: 2019/12/26 15:08
 
+ */
 
+@Configuration
 
+public class SysKeyResolverConfigurer {
 
+
 
+    @Bean
 
+    public SysKeyResolver sysKeyResolver() {
 
+        return new SysKeyResolver();
 
+    }
 
+
 
+    @Bean
 
+    @Primary
 
+    //使用自己定义的限流类
 
+    public SystemRedisRateLimiter systemRedisRateLimiter(
 
+            ReactiveRedisTemplate<String, String> redisTemplate,
 
+            @Qualifier(SystemRedisRateLimiter.REDIS_SCRIPT_NAME) RedisScript<List<Long>> script,
 
+            Validator validator){
 
+        return new SystemRedisRateLimiter(redisTemplate , script , validator);
 
+    }
 
+}

+ 189 - 0
gateway-service/src/main/java/com/diagbot/config/RateLimiter/SystemRedisRateLimiter.java
Zobraziť súbor 

@@ -0,0 +1,189 @@
 
+package com.diagbot.config.RateLimiter;
 
+
 
+import org.apache.commons.lang3.ObjectUtils;
 
+import org.springframework.beans.BeansException;
 
+import org.springframework.cloud.gateway.filter.ratelimit.AbstractRateLimiter;
 
+import org.springframework.cloud.gateway.filter.ratelimit.RateLimiter;
 
+import org.springframework.context.ApplicationContext;
 
+import org.springframework.context.ApplicationContextAware;
 
+import org.springframework.data.redis.core.ReactiveRedisTemplate;
 
+import org.springframework.data.redis.core.script.RedisScript;
 
+import org.springframework.validation.Validator;
 
+import org.springframework.validation.annotation.Validated;
 
+import reactor.core.publisher.Flux;
 
+import reactor.core.publisher.Mono;
 
+
 
+import javax.validation.constraints.Min;
 
+import java.time.Instant;
 
+import java.util.ArrayList;
 
+import java.util.Arrays;
 
+import java.util.HashMap;
 
+import java.util.List;
 
+import java.util.Map;
 
+import java.util.concurrent.atomic.AtomicBoolean;
 
+
 
+/**
 
+ * @Description:
 
+ * @author: gaodm
 
+ * @time: 2019/12/26 16:34
 
+ */
 
+public class SystemRedisRateLimiter extends AbstractRateLimiter<SystemRedisRateLimiter.Config> implements ApplicationContextAware {
 
+    //这些变量全部从RedisRateLimiter复制的,都会用到。
 
+    public static final String REPLENISH_RATE_KEY = "replenishRate";
 
+
 
+    public static final String BURST_CAPACITY_KEY = "burstCapacity";
 
+
 
+    public static final String CONFIGURATION_PROPERTY_NAME = "sys-redis-rate-limiter";
 
+    public static final String REDIS_SCRIPT_NAME = "redisRequestRateLimiterScript";
 
+    public static final String REMAINING_HEADER = "X-RateLimit-Remaining";
 
+    public static final String REPLENISH_RATE_HEADER = "X-RateLimit-Replenish-Rate";
 
+    public static final String BURST_CAPACITY_HEADER = "X-RateLimit-Burst-Capacity";
 
+
 
+    //处理速度
 
+    private static final String DEFAULT_REPLENISHRATE = "default.replenishRate";
 
+    //容量
 
+    private static final String DEFAULT_BURSTCAPACITY = "default.burstCapacity";
 
+
 
+    private ReactiveRedisTemplate<String, String> redisTemplate;
 
+    private RedisScript<List<Long>> script;
 
+    private AtomicBoolean initialized = new AtomicBoolean(false);
 
+
 
+    private String remainingHeader = REMAINING_HEADER;
 
+
 
+    /**
 
+     * The name of the header that returns the replenish rate configuration.
 
+     */
 
+    private String replenishRateHeader = REPLENISH_RATE_HEADER;
 
+
 
+    /**
 
+     * The name of the header that returns the burst capacity configuration.
 
+     */
 
+    private String burstCapacityHeader = BURST_CAPACITY_HEADER;
 
+
 
+    private Config defaultConfig;
 
+
 
+    public SystemRedisRateLimiter(ReactiveRedisTemplate<String, String> redisTemplate,
 
+                                  RedisScript<List<Long>> script, Validator validator) {
 
+        super(Config.class, CONFIGURATION_PROPERTY_NAME, validator);
 
+        this.redisTemplate = redisTemplate;
 
+        this.script = script;
 
+        initialized.compareAndSet(false, true);
 
+    }
 
+
 
+    //    public SystemRedisRateLimiter(int defaultReplenishRate, int defaultBurstCapacity){
 
+    //        super(Config.class , CONFIGURATION_PROPERTY_NAME , null);
 
+    //        defaultConfig = new Config()
 
+    //                .setReplenishRate(defaultReplenishRate)
 
+    //                .setBurstCapacity(defaultBurstCapacity);
 
+    //
 
+    //    }
 
+    //具体限流实现,此处调用的是lua脚本
 
+    @Override
 
+    public Mono<Response> isAllowed(String routeId, String id) {
 
+        if (!this.initialized.get()) {
 
+            throw new IllegalStateException("RedisRateLimiter is not initialized");
 
+        }
 
+        if (ObjectUtils.isEmpty(rateLimiterConf)) {
 
+            throw new IllegalArgumentException("No Configuration found for route " + routeId);
 
+        }
 
+        //获取的是自定义的map
 
+        Map<String, Integer> rateLimitMap = rateLimiterConf.getRateLimitMap();
 
+        //缓存的key
 
+        String replenishRateKey = routeId + "." + REPLENISH_RATE_KEY;
 
+        //若map中不存在则采用默认值,存在则取值。
 
+        int replenishRate = ObjectUtils.isEmpty(rateLimitMap.get(replenishRateKey)) ? rateLimitMap.get(DEFAULT_REPLENISHRATE) : rateLimitMap.get(replenishRateKey);
 
+        //容量key
 
+        String burstCapacityKey = routeId + "." + BURST_CAPACITY_KEY;
 
+        //若map中不存在则采用默认值,存在则取值。
 
+        int burstCapacity = ObjectUtils.isEmpty(rateLimitMap.get(burstCapacityKey)) ? rateLimitMap.get(DEFAULT_BURSTCAPACITY) : rateLimitMap.get(burstCapacityKey);
 
+
 
+        try {
 
+            List<String> keys = getKeys(id);
 
+
 
+            List<String> scriptArgs = Arrays.asList(replenishRate + "", burstCapacity + "",
 
+                    Instant.now().getEpochSecond() + "", "1");
 
+            Flux<List<Long>> flux = this.redisTemplate.execute(this.script, keys, scriptArgs);
 
+
 
+            return flux.onErrorResume(throwable -> Flux.just(Arrays.asList(1L, -1L)))
 
+                    .reduce(new ArrayList<Long>(), (longs, l) -> {
 
+                        longs.addAll(l);
 
+                        return longs;
 
+                    }).map(results -> {
 
+                        boolean allowed = results.get(0) == 1L;
 
+                        Long tokensLeft = results.get(1);
 
+
 
+                        RateLimiter.Response response = new RateLimiter.Response(allowed, getHeaders(replenishRate, burstCapacity, tokensLeft));
 
+
 
+                        return response;
 
+                    });
 
+        } catch (Exception e) {
 
+            e.printStackTrace();
 
+        }
 
+
 
+        return Mono.just(new RateLimiter.Response(true, getHeaders(replenishRate, burstCapacity, -1L)));
 
+    }
 
+
 
+    private RateLimiterConf rateLimiterConf;
 
+
 
+    @Override
 
+    public void setApplicationContext(ApplicationContext applicationContext) throws BeansException {
 
+        this.rateLimiterConf = applicationContext.getBean(RateLimiterConf.class);
 
+    }
 
+
 
+    public HashMap<String, String> getHeaders(Integer replenishRate, Integer burstCapacity, Long tokensLeft) {
 
+        HashMap<String, String> headers = new HashMap<>();
 
+        headers.put(this.remainingHeader, tokensLeft.toString());
 
+        headers.put(this.replenishRateHeader, String.valueOf(replenishRate));
 
+        headers.put(this.burstCapacityHeader, String.valueOf(burstCapacity));
 
+        return headers;
 
+    }
 
+
 
+    static List<String> getKeys(String id) {
 
+        // use `{}` around keys to use Redis Key hash tags
 
+        // this allows for using redis cluster
 
+
 
+        // Make a unique key per user.
 
+        //此处可以自定义redis前缀信息
 
+        String prefix = "request_sys_rate_limiter.{" + id;
 
+
 
+        // You need two Redis keys for Token Bucket.
 
+        String tokenKey = prefix + "}.tokens";
 
+        String timestampKey = prefix + "}.timestamp";
 
+        return Arrays.asList(tokenKey, timestampKey);
 
+    }
 
+
 
+
 
+    @Validated
 
+    public static class Config {
 
+        @Min(1)
 
+        private int replenishRate;
 
+        @Min(1)
 
+        private int burstCapacity = 1;
 
+
 
+        public int getReplenishRate() {
 
+            return replenishRate;
 
+        }
 
+
 
+        public Config setReplenishRate(int replenishRate) {
 
+            this.replenishRate = replenishRate;
 
+            return this;
 
+        }
 
+
 
+        public int getBurstCapacity() {
 
+            return burstCapacity;
 
+        }
 
+
 
+        public Config setBurstCapacity(int burstCapacity) {
 
+            this.burstCapacity = burstCapacity;
 
+            return this;
 
+        }
 
+
 
+        @Override
 
+        public String toString() {
 
+            return "Config{" +
 
+                    "replenishRate=" + replenishRate +
 
+                    ", burstCapacity=" + burstCapacity +
 
+                    '}';
 
+        }
 
+    }
 
+}

+ 2 - 2
gateway-service/src/main/java/com/diagbot/filter/GlobalGatewayFilter.java
Zobraziť súbor 

@@ -76,8 +76,8 @@ public class GlobalGatewayFilter implements GlobalFilter {
 
                 }
 
             }
 
         }
 
-        log.info("APIURL:{}", requestUri);
 
-        log.info("SERVICENAME:{}", serviceName);
 
+        //        log.info("APIURL:{}", requestUri);
 
+        //        log.info("SERVICENAME:{}", serviceName);
 
 
         //        if(!IS_GENERATE) {
 
         //            RespDTO<List<ServiceFilter>> filter = diagbotmanServiceClient.getAll();