Главная Обзор Помощь
Вход
pointToNetwork
/
server
5
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Дерево: 6620a5c9a5
Ветки Метки
server
/
app
/
service
/
util
/
rk.js

rk.js 2.3 KB
История Исходник

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667 
  1. 'use strict';
    2. 

  2. const { CrudService } = require('naf-framework-mongoose-free/lib/service');
    3. 

  3. const { BusinessError, ErrorCode } = require('naf-core').Error;
    4. 

  4. const _ = require('lodash');
    5. 

  5. const assert = require('assert');
    6. 

  6. 

  7. //
    8. 

  8. class RkService extends CrudService {
    9. 

  9.   constructor(ctx) {
    10. 

  10.     super(ctx, 'rk');
    11. 

  11.     this.redis = this.app.redis;
    12. 

  12.     this.keyPrefix = 'requestKey:';
    13. 

  13.   }
    14. 

  14.   // 检测,使用key
    15. 

  15.   async urk() {
    16. 

  16.     // 针对项目检测.如果检测到project字段,且字段在设置中,则放行
    17. 

  17.     const project = _.get(this.ctx, 'request.header.project');
    18. 

  18.     if (project) {
    19. 

  19.       const projects = this.app.config.projects;
    20. 

  20.       if (projects.includes(project)) return;
    21. 

  21.     }
    22. 

  22.     const key = _.get(this.ctx, 'request.header.rk');
    23. 

  23.     const keyName = this.getKeyName(key);
    24. 

  24.     const value = await this.redis.get(keyName);
    25. 

  25.     if (!value) throw new BusinessError(ErrorCode.SERVICE_FAULT, '未找到请求key');
    26. 

  26.     await this.redis.del(keyName);
    27. 

  27.     const keyInfo = JSON.parse(value);
    28. 

  28.     const obj = this.getKeyInfo();
    29. 

  29.     if (!_.isEqual(keyInfo, obj)) throw new BusinessError(ErrorCode.DATA_INVALID, 'key校验错误,拒绝请求', { keyInfo, obj });
    30. 

  30.   }
    31. 

  31.   // 生成key
    32. 

  32.   async crk() {
    33. 

  33.     const obj = this.getKeyInfo();
    34. 

  34.     const str = JSON.stringify(obj);
    35. 

  35.     const key = Math.random().toString(36).substr(2, 15);
    36. 

  36.     await this.redis.set(this.getKeyName(key), str, 'EX', 180);
    37. 

  37.     return key;
    38. 

  38.   }
    39. 

  39. 

  40.   getKeyInfo() {
    41. 

  41.     const request = this.ctx.request;
    42. 

  42.     const ip = _.get(request, 'header.x-real-ip');
    43. 

  43.     const forward = _.get(request, 'header.x-forwarded-for');
    44. 

  44.     const host = _.get(request, 'header.host');
    45. 

  45.     const referer = _.get(request, 'header.referer');
    46. 

  46.     const query = this.ctx.query;
    47. 

  47.     const userAgent = _.get(request, 'header.user-agent');
    48. 

  48.     const views = _.get(request, 'header.views');
    49. 

  49.     const obj = {};
    50. 

  50.     if (!ip) throw new BusinessError(ErrorCode.DATA_INVALID, '1-缺少生成key的参数');
    51. 

  51.     if (!referer) throw new BusinessError(ErrorCode.DATA_INVALID, '2-缺少生成key的参数');
    52. 

  52.     if (forward) obj.forward = forward;
    53. 

  53.     if (host) obj.host = host;
    54. 

  54.     if (query) obj.query = query;
    55. 

  55.     if (userAgent) obj.userAgent = userAgent;
    56. 

  56.     if (views) obj.views = views;
    57. 

  57.     obj.ip = ip;
    58. 

  58.     obj.referer = referer;
    59. 

  59.     return obj;
    60. 

  60.   }
    61. 

  61. 

  62.   getKeyName(key) {
    63. 

  63.     return `${this.keyPrefix}${key}`;
    64. 

  64.   }
    65. 

  65. }
    66. 

  66. 

  67. module.exports = RkService;
    68.