feat: 增加ip跳动检测

src/main/java/com/sqx/modules/app/interceptor/AuthorizationInterceptor.java

@@ -1,14 +1,20 @@
 package com.sqx.modules.app.interceptor;
 
 
+import com.baomidou.mybatisplus.core.conditions.update.LambdaUpdateWrapper;
+import com.sqx.common.exception.CzgException;
 import com.sqx.common.exception.SqxException;
 import com.sqx.common.utils.DateUtils;
+import com.sqx.common.utils.IPUtils;
 import com.sqx.modules.app.entity.UserEntity;
 import com.sqx.modules.app.service.UserService;
 import com.sqx.modules.app.utils.JwtUtils;
+import com.sqx.modules.redisService.RedisService;
 import io.jsonwebtoken.Claims;
 import com.sqx.modules.app.annotation.Login;
 import org.apache.commons.lang.StringUtils;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.http.HttpStatus;
 import org.springframework.stereotype.Component;
@@ -24,13 +30,20 @@ import java.util.Date;
  */
 @Component
 public class AuthorizationInterceptor extends HandlerInterceptorAdapter {
+    private static final Logger log = LoggerFactory.getLogger(AuthorizationInterceptor.class);
     @Autowired
     private JwtUtils jwtUtils;
     @Autowired
     private UserService userService;
 
+    private final RedisService redisService;
+
     public static final String USER_KEY = "userId";
 
+    public AuthorizationInterceptor(RedisService redisService) {
+        this.redisService = redisService;
+    }
+
     @Override
     public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
         Login annotation;
@@ -44,13 +57,13 @@ public class AuthorizationInterceptor extends HandlerInterceptorAdapter {
             return true;
         }
 
-        //获取用户凭证
+        // 获取用户凭证
         String token = request.getHeader(jwtUtils.getHeader());
         if (StringUtils.isBlank(token)) {
             token = request.getParameter(jwtUtils.getHeader());
         }
 
-        //凭证为空
+        // 凭证为空
         if (StringUtils.isBlank(token)) {
             throw new SqxException(jwtUtils.getHeader() + "不能为空", HttpStatus.UNAUTHORIZED.value());
         }
@@ -60,18 +73,35 @@ public class AuthorizationInterceptor extends HandlerInterceptorAdapter {
             throw new SqxException(jwtUtils.getHeader() + "失效，请重新登录", HttpStatus.UNAUTHORIZED.value());
         }
 
-        //设置userId到request里，后续根据userId，获取用户信息
         long userId = Long.parseLong(claims.getSubject());
+        String ip = IPUtils.getIpAddr(request); // 获取用户的 IP 地址
+
+        // 检查用户是否超过限流
+        if (redisService.checkIpJumpLimit(userId, ip)) {
+            log.warn("用户地址跳动频繁，封禁: {}", userId);
+            userService.update(null, new LambdaUpdateWrapper<UserEntity>()
+                    .eq(UserEntity::getUserId, userId)
+                    .set(UserEntity::getStatus, 0));
+            throw new CzgException("ip跳动过于频繁，请联系管理员解封");
+        }
+
+        redisService.recordUrlVisitCountWithIp(userId, request.getRequestURI(), ip);
+
+        // 设置 userId 到 request 里，后续根据 userId 获取用户信息
         UserEntity user = userService.selectUserById(userId);
         if (user.getStatus().equals(0)) {
-            return false;
+            throw new CzgException("异常行为用户: {}" + user.getUserId());
         }
         request.setAttribute(USER_KEY, userId);
-        //记录用户最后一次调用接口的时间
-        UserEntity userEntity = new UserEntity();
-        userEntity.setUserId(userId);
-        userEntity.setOnLineTime(DateUtils.format(new Date()));
-        userService.updateById(userEntity);
+
+        if (redisService.isRecordUserOnLineTime(userId)) {
+            // 记录用户最后一次调用接口的时间
+            UserEntity userEntity = new UserEntity();
+            userEntity.setUserId(userId);
+            userEntity.setOnLineTime(DateUtils.format(new Date()));
+            userService.updateById(userEntity);
+        }
+
         return true;
     }
 }