risk-management.js 3.37 KB
/**
 * 控制路由请求次数
 * @date: 2018/03/05
 */
'use strict';

const _ = require('lodash');
const cache = global.yoho.cache.master;
const helpers = global.yoho.helpers;
const pathToRegexp = require('path-to-regexp');

const statusCode = {
    code: 4403,
    date: {},
    message: '亲,您的访问次数过多,请稍后再试哦...'
};

const INVALIDTIME = 3600 * 24; // 24h
const IP_WHITE_LIST = [
    '106.38.38.146',
    '106.38.38.147',
    '106.39.86.227',
    '218.94.75.58',
    '218.94.75.50',
    '218.94.77.166'
];

const _jumpUrl = (req, res, next, result) => {
    if (result.code === 4403) {
        if (req.xhr) {
            res.set({
                'Cache-Control': 'no-cache',
                Pragma: 'no-cache',
                Expires: (new Date(1900, 0, 1, 0, 0, 0, 0)).toUTCString()
            });
            return res.status(403).json(result);
        }
        return res.redirect(`${result.data.url}&refer=${req.originalUrl}`);
    }

    return next();
};

module.exports = () => {
    return (req, res, next) => {
        let ip = _.get(req.yoho, 'clientIp', '');
        let path = req.path || '';
        let risks = _.get(req.app.locals.wap, 'json.risk', []);

        if (_.isEmpty(path) || _.isEmpty(risks) || IP_WHITE_LIST.indexOf(ip) > -1) {
            return next();
        }

        let router = {};
        _.isArray(risks) && risks.some(item => {
            if (item.state === 'off') {
                return false;
            }

            if (!item.regRoute) {
                item.regRoute = pathToRegexp(item.route);
                item.interval = parseInt(item.interval, 10);
                item.requests = parseInt(item.requests, 10);
            }

            if (item.regRoute.test(path)) {
                router = item;
                return true;
            }

            return false;
        });

        if (_.isEmpty(router)) {
            return next();
        }

        let keyPath = `${_.trim(path, '/').replace(/\//g, ':')}:${ip}`;
        let limitKey = `wap:risk:limit:${keyPath}`;
        let configKey = `wap:risk:${keyPath}`;
        let checkUrl = helpers.urlFormat('/3party/check', {
            pid: limitKey
        });

        return Promise.all([
            cache.getAsync(limitKey),
            cache.getAsync(configKey),
        ]).then(inters => {
            if (inters[0]) {
                return Object.assign({}, statusCode, {data: {url: checkUrl}});
            }

            if (typeof inters[1] === 'undefined') {
                cache.setAsync(configKey, 1, router.interval || 300);
                return Object.assign({}, statusCode, {code: 200, message: ''});
            }

            inters[1] = parseInt(`0${inters[1]}`, 10);
            if (inters[1] <= router.requests) {
                router = [];
                cache.incrAsync(configKey, 1);
                return Object.assign({}, statusCode, {code: 200, message: ''});
            }

            return Promise.all([
                cache.setAsync(limitKey, 1, INVALIDTIME),
                cache.delAsync(configKey)
            ]).then(() => {
                return Object.assign({}, statusCode, {data: {url: checkUrl}});
            });
        }).then(result => {
            return _jumpUrl(req, res, next, result);
        }).catch(e => {
            console.log(`risk => path: ${path}, err: ${e.message}`);
            return next();
        });
    };
};