// Package sys // @Link https://github.com/bufanyun/hotgo // @Copyright Copyright (c) 2023 HotGo CLI // @Author Ms <133814250@qq.com> // @License https://github.com/bufanyun/hotgo/blob/master/LICENSE package sys import ( "context" "github.com/gogf/gf/v2/database/gredis" "github.com/gogf/gf/v2/errors/gcode" "github.com/gogf/gf/v2/errors/gerror" "github.com/gogf/gf/v2/frame/g" "github.com/gogf/gf/v2/net/ghttp" "github.com/gogf/gf/v2/os/gtime" "hotgo/internal/consts" "hotgo/internal/dao" "hotgo/internal/global" "hotgo/internal/library/location" "hotgo/internal/model/input/sysin" "hotgo/internal/service" "hotgo/utility/convert" "sync" ) type sSysBlacklist struct { sync.RWMutex list map[string]struct{} } func NewSysBlacklist() *sSysBlacklist { return &sSysBlacklist{ list: make(map[string]struct{}), } } func init() { service.RegisterSysBlacklist(NewSysBlacklist()) } // Delete 删除 func (s *sSysBlacklist) Delete(ctx context.Context, in *sysin.BlacklistDeleteInp) (err error) { defer s.VariableLoad(ctx, err) _, err = dao.SysBlacklist.Ctx(ctx).Where("id", in.Id).Delete() return } // Edit 修改/新增 func (s *sSysBlacklist) Edit(ctx context.Context, in *sysin.BlacklistEditInp) (err error) { defer s.VariableLoad(ctx, err) if in.Ip == "" { err = gerror.New("ip不能为空") return } // 修改 if in.Id > 0 { _, err = dao.SysBlacklist.Ctx(ctx).Where("id", in.Id).Data(in).Update() return } // 新增 _, err = dao.SysBlacklist.Ctx(ctx).Data(in).OmitEmptyData().Insert() return } // Status 更新状态 func (s *sSysBlacklist) Status(ctx context.Context, in *sysin.BlacklistStatusInp) (err error) { defer s.VariableLoad(ctx, err) // 修改 _, err = dao.SysBlacklist.Ctx(ctx).Where("id", in.Id).Data("status", in.Status).Update() return } // View 获取指定信息 func (s *sSysBlacklist) View(ctx context.Context, in *sysin.BlacklistViewInp) (res *sysin.BlacklistViewModel, err error) { err = dao.SysBlacklist.Ctx(ctx).Where("id", in.Id).Scan(&res) return } // List 获取列表 func (s *sSysBlacklist) List(ctx context.Context, in *sysin.BlacklistListInp) (list []*sysin.BlacklistListModel, totalCount int, err error) { mod := dao.SysBlacklist.Ctx(ctx) cols := dao.SysBlacklist.Columns() if in.Ip != "" { mod = mod.WhereLike(cols.Ip, "%"+in.Ip+"%") } if in.Remark != "" { mod = mod.WhereLike(cols.Remark, "%"+in.Remark+"%") } if in.Status > 0 { mod = mod.Where(cols.Status, in.Status) } if len(in.CreatedAt) == 2 { mod = mod.WhereBetween(cols.CreatedAt, gtime.New(in.CreatedAt[0]), gtime.New(in.CreatedAt[1])) } totalCount, err = mod.Count() if err != nil { return } if totalCount == 0 { return } if err = mod.Page(in.Page, in.PerPage).Order("id desc").Scan(&list); err != nil { return } return } // VariableLoad 变化加载 func (s *sSysBlacklist) VariableLoad(ctx context.Context, err error) { if err == nil { s.Load(ctx) global.PublishClusterSync(ctx, consts.ClusterSyncSysBlacklist, nil) } } // Load 加载黑名单 func (s *sSysBlacklist) Load(ctx context.Context) { s.RLock() defer s.RUnlock() s.list = make(map[string]struct{}) array, err := dao.SysBlacklist.Ctx(ctx). Fields(dao.SysBlacklist.Columns().Ip). Where(dao.SysBlacklist.Columns().Status, consts.StatusEnabled). Array() if err != nil { g.Log().Errorf(ctx, "load blacklist fail:%+v", err) return } for _, v := range array { list := convert.IpFilterStrategy(v.String()) if len(list) > 0 { for k := range list { s.list[k] = struct{}{} } } } } // VerifyRequest 验证请求的访问IP是否在黑名单,如果存在则返回错误 func (s *sSysBlacklist) VerifyRequest(r *ghttp.Request) (err error) { if len(s.list) == 0 { return } if _, ok := s.list[location.GetClientIp(r)]; ok { err = gerror.NewCode(gcode.New(gcode.CodeServerBusy.Code(), "请求异常,已被封禁,如有疑问请联系管理员!", nil)) return } return } // ClusterSync 集群同步 func (s *sSysBlacklist) ClusterSync(ctx context.Context, message *gredis.Message) { s.Load(ctx) }