Home > Article > Web Front-end > nodejs implements blacklist middleware design_node.js
nodejs implements blacklist middleware design_node.js
- WBOYOriginal
- 2016-05-16 16:44:041587browse
Blacklist Schema:
/**
* Created by YCXJ-wanglihui on 2014/5/28.
*/
' use strict';
var mongoose = require('mongoose');
var Schema = mongoose.Schema;
//1. Temporary blocking 2. Permanent blocking
var degree = {TEMP:1, FOREVER:2};
/**
* Blacklist
* @type {Schema}
*
* @param ip {String} Blacklist Ip
* @param createAt {Date} Creation time
* @param expireTime {Date} If it is a temporary blocking, the blocking expiration time
* @param forbiddenDegree {Number} Blocking level 1. Temporary blocking 2. Permanent blocking
* @param reason {String} Blocking reason
*/
var BlackList = new Schema({
ip:{
type: String,
index:true
},
createAt: {
type: Date,
default: Date.now
},
expireTime:{
type: Date
},
forbiddenDegree:{
type: Number ,
default:degree.TEMP
},
reason:{
type: String,
default: 'Frequent requests'
}
});
mongoose.model('BlackList', BlackList);
IP and submission record Schema:
/**
* Created by YCXJ-wanglihui on 2014/5/28.
*/
'use strict';
var mongoose = require('mongoose');
var Schema = mongoose.Schema;
var ObjectId = Schema.ObjectId;
/**
* Record the responses and IPs of participating questionnaires
* @type {Schema}
*
* @param answerId {ObjectId} Reply Id
* @param createAt {Date} Creation time
* @param ip {String} The IP of the person participating in the reply
*/
var IpAnswerLog = new Schema({
answerId: {
type: ObjectId
},
createAt: {
type: Date ,
default:Date.now
},
ip:{
type: String,
index:true
}
});
mongoose.model('IpAnswerLog', IpAnswerLog);
Related Proxy code:
/**
* Created by YCXJ-wanglihui on 2014/5/28.
*/
'use strict';
var IpAnswerLog = require('../models').IpAnswerLog;
/**
* Create new and save
* @param ipAnswerLog {Schema or dict}
* @param callback
*/
var newAndSave = function(ipAnswerLog, callback){
if(ipAnswerLog instanceof IpAnswerLog){
ipAnswerLog.save(callback);
}else{
var m = new IpAnswerLog(ipAnswerLog);
m.save(callback);
}
}
/**
* Number of replies within one minute
* @param ip
* @param callback
*/
var countOneMinuteAnswer = function(ip, callback){
var endTime = Date.now();
var beginTime = endTime - 1000*60*1;
countIpAnswerByTime(beginTime, endTime, ip, callback);
}
/**
* Reply number within one hour
* @param ip
* @param callback
*/
var countOneHourAnswer = function(ip, callback){
var endTime = Date.now();
var beginTime = endTime - 1000*60*60*1;
countIpAnswerByTime(beginTime, endTime, ip, callback);
}
/**
* Reply within one day
* @param ip
* @param callback
*/
var countOneDayAnswer = function(ip, callback){
var endTime = Date.now();
var beginTime = endTime - 1000*60*60*24;
countIpAnswerByTime(beginTime, endTime, ip, callback);
}
/**
* Calculate the number of replies within a certain period of time
* @param beginTime {Number} Start time timestamp
* @param endTime {Number} If the end time is null, use the current time timestamp
* @param ip {String} IP address
* @param callback
*/
var countIpAnswerByTime = function(beginTime, endTime, ip, callback){
if(!endTime){
endTime = Date.now();
}
IpAnswerLog.count({ip:ip, '$and':{$lt:beginTime, $gt:endTime}}, callback);
}
exports.countIpAnswerByTime =countIpAnswerByTime;
exports.countOneDayAnswer = countOneDayAnswer;
exports.countOneHourAnswer = countOneHourAnswer;
exports.countOneMinuteAnswer = countOneMinuteAnswer;
exports.newAndSave = newAndSave;
黑名单Proxy:
/**
* Created by YCXJ-wanglihui on 2014/5/28.
*/
'use strict';
var BlackList = require('../models').BlackList;
/**
* 新建并保存
* @param backList {BlackList} or {dict} 黑名单数据
* @param callback
*/
var newAndSave = function(backList, callback){
if(backList instanceof BlackList){
backList.save(callback);
}else{
var m = new BlackList(backList);
m.save(callback);
}
}
/**
* 禁用Ip访问一小时
* @param ip {String}
* @param callback
*/
var newAndSaveOneHourTempForbidden = function(ip, callback){
var expireTime = Date.now() + 1000*60*60;
newAndSaveTempForbidden(ip,expireTime, callback);
}
/**
* 禁用一天
* @param ip {String}
* @param callback
*/
var newAndSaveOneDayTempForbidden = function(ip, callback){
var expireTime = Date.now() + 1000*60*60*24;
newAndSaveTempForbidden(ip, expireTime, callback);
}
/**
* 新建临时黑名单
* @param ip {String}
* @param expireTime {Number} 到期时间
* @param callback
*/
var newAndSaveTempForbidden = function(ip, expireTime,callback){
var blackList = new BlackList({ip:ip, expireTime:expireTime, forbiddenDegree:1});
newAndSave(blackList, callback);
}
/**
* 新建并保存永久黑名单
* @param ip
* @param callback
*/
var newAndSaveForeverForbidden = function(ip, callback){
var blackList = new BlackList({ip:ip, forbiddenDegree:2});
newAndSave(blackList, callback);
}
/**
* 判断是否在黑名单中
* @param ip {String} Ip地址
* @param callback
*/
var isInBlackList = function(ip, callback){
getBlackListByIp(ip, function(err, blackList){
if(err){
callback(err);
}else if(blackList){
var currentDate = Date.now();
if(blackList.forbiddenDegree ===1 && blackList.expireTime> currentDate){
removeBlackListByIp(ip, function(err){
if(err){
callback(err);
}else{
callback(null, false);
}
})
}else{
callback(null, true);
}
}else{
callback(null, false);
}
})
}
/**
* 通过Ip获取黑名单条目
* @param ip
* @param callback
*/
var getBlackListByIp = function(ip, callback){
BlackList.findOne({ip:ip}, callback);
}
/**
* Delete blacklist based on IP
* @param ip
* @param callback
*/
var removeBlackListByIp = function(ip, callback){
getBlackListByIp(ip, function(err, blackList){
if(err){
callback(err);
}else if(blackList){
blackList.remove(callback);
}else{
callback(null,null);
}
})
}
exports.newAndSave = newAndSave;
exports.isInBlackList = isInBlackList;
exports.getBlackListByIp = getBlackListByIp;
exports.removeBlackListByIp = removeBlackListByIp;
exports.newAndSaveOneHourTempForbidden = newAndSaveOneHourTempForbidden;
exports.newAndSaveOneDayTempForbidden = newAndSaveOneDayTempForbidden;
exports.newAndSaveForeverForbidden = newAndSaveForeverForbidden;
exports.newAndSaveTempForbidden = newAndSaveTempForbidden;
中间件详情:
/**
* Created by YCXJ-wanglihui on 2014/5/28.
*/
'use strict';
var BlackListProxy = require('../../proxy').BlackListPorxy;
var IpAnswerLogProxy = require('../../proxy').IpAnswerLogProxy;
var EventProxy = require('eventproxy');
/**
* 判断是否需要将Ip移动至黑名单中
* @param req
* @param res
* @param next
*/
var isNeedMoveToBlackList = function(req, res, next){
var ip = req.ip;
//判断是否在黑名单中
requireNotInBlackList(req, res, function(){
var ep = new EventProxy();
ep.fail(next);
ep.all('minuteCount', 'hourCount', 'dayCount', function(minuteCount, hourCount, dayCount){
if(minuteCount > 10){
BlackListProxy.newAndSaveOneHourTempForbidden(ip, function(err, blackList){
if(err){
return next(err);
}else{
return res.send('提交过于频繁,1小时后重试!');
}
});
}else if(hourCount > 100){
BlackListProxy.newAndSaveOneDayTempForbidden(ip, function(err, blackList){
if(err){
return next(err);
}else{
return res.send('提交过于频繁,1天后重试!');
}
})
}else if(dayCount > 1000){
BlackListProxy.newAndSaveOneDayTempForbidden(ip, function(err, blackList){
if(err){
return next(err);
}else{
return res.send('提交过于频繁,1天后重试!');
}
})
}else{
return next();
}
})
IpAnswerLogProxy.countOneMinuteAnswer(ip,ep.done('minuteCount'));
IpAnswerLogProxy.countOneHourAnswer(ip, ep.done('hourCount'));
IpAnswerLogProxy.countOneDayAnswer(ip, ep.done('dayCount'));
});
}
/**
* Middleware requires that the IP is not in the blacklist
* @param req
* @param res
* @param next
*/
var requireNotInBlackList = function(req, res, next){
var ip = req.ip;
BlackListProxy.isInBlackList(ip, function(err, result ){
if(err){
next(err);
}else if(result){
return res.send('Your IP is prohibited from submission. If you have any questions, please contact lihui. wang@tulingdao.com');
}else{
next();
exports.isNeedMoveToBlackList = isNeedMoveToBlackList;
exports.requireNotInBlackList = requireNotInBlackList;
Use in routing:
Copy code
Related articles
See more- An in-depth analysis of the Bootstrap list group component
- Detailed explanation of JavaScript function currying
- Complete example of JS password generation and strength detection (with demo source code download)
- Angularjs integrates WeChat UI (weui)
- How to quickly switch between Traditional Chinese and Simplified Chinese with JavaScript and the trick for websites to support switching between Simplified and Traditional Chinese_javascript skills