صفحهٔ اصلی گشت‌و‌گذار راهنما
ورود
shangshang
/
jili2
1
0
انشعاب 0
پرونده‌ها مشکلات 0 درخواست واکشی 0 ویکی
درخت: e89ded2082
شاخه‌ها تگ‌ها
jili2
/
application
/
common
/
util
/
ThrottlesUtil.php

ThrottlesUtil.php 3.2 KB
تاريخچه خام

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105 
  1. <?php
    2. 

  2. namespace app\common\util;
    3. 

  3. 

  4. /**
    5. 

  5.  * 登录限流
    6. 

  6.  *
    7. 

  7.  * 使用说明,使用前先判断$account是否为空
    8. 

  8.  * 1.验证:(new ThrottlesUtil())->tooManyAttempts($account,$pre);  true=锁定 false=未锁定
    9. 

  9.  * 2.登录成功,需要重置登录次数:(new ThrottlesUtil())->resetAttempts($account,$pre);
    10. 

  10.  * 3.不同体系的账号,可通过设置$pre前缀区分
    11. 

  11.  */
    12. 

  12. class ThrottlesUtil
    13. 

  13. {
    14. 

  14.     private $limitEnabled = true; // 是否开启限流 false=不开启 true=开启
    15. 

  15. 

  16.     private $limitTime = 1*60; // 间隔时长(s)
    17. 

  17. 

  18.     private $maxAttempts = 5; // 最大登录次数
    19. 

  19. 

  20.     private $lockTime = 30*60; // 锁定时间(s)
    21. 

  21. 

  22.     private $pre = "<|login|>"; // 前缀避免账号重复
    23. 

  23. 

  24.     public function __construct($config = [])
    25. 

  25.     {
    26. 

  26.         if(isset($config['time'])){
    27. 

  27.             $this->limitTime = (int)$config['time'];
    28. 

  28.         }
    29. 

  29.         if(isset($config['attempts'])){
    30. 

  30.             $this->maxAttempts = (int)$config['attempts'];
    31. 

  31.         }
    32. 

  32.         if(isset($config['lock'])){
    33. 

  33.             $this->lockTime = (int)$config['lock'];
    34. 

  34.         }
    35. 

  35.         if(isset($config['enabled'])){
    36. 

  36.             $this->limitEnabled = $config['enabled'];
    37. 

  37.         }
    38. 

  38.     }
    39. 

  39. 

  40.     /**
    41. 

  41.      * 检查是否锁定
    42. 

  42.      * @param $account 账号
    43. 

  43.      * @param string $pre // 缓存前缀,根据前缀区分不同类别账号
    44. 

  44.      * @return boolean false=未锁定 true=已锁定
    45. 

  45.      */
    46. 

  46.     public function tooManyAttempts($account,$pre = 'throttles'){
    47. 

  47.         if(!$this->limitEnabled){
    48. 

  48.             return false;
    49. 

  49.         }
    50. 

  50.         $key = $pre.$this->pre.$account;
    51. 

  51.         //检查是否存在对应lockout缓存
    52. 

  52.         if (cache($key.':lockout')) {
    53. 

  53.             return true;
    54. 

  54.         }
    55. 

  55.         //如果没有的话,attempts($key)返回$key对应的缓存中存储的登录次数
    56. 

  56.         if ($this->attempts($account,$pre) > $this->maxAttempts) {
    57. 

  57.             //如果已经超出限制,调用add方法添加对应lockout到缓存
    58. 

  58.             cache($key.':lockout',time() + $this->lockTime, $this->lockTime);
    59. 

  59.             //重置当前登录次数
    60. 

  60.             $this->resetAttempts($key);
    61. 

  61.             return true;
    62. 

  62.         }
    63. 

  63.         return false;
    64. 

  64.     }
    65. 

  65. 

  66.     /**
    67. 

  67.      * 获取登录次数
    68. 

  68.      * @param $account 账号
    69. 

  69.      * @param string $pre 缓存前缀
    70. 

  70.      * @return int
    71. 

  71.      */
    72. 

  72.     public function attempts($account,$pre = 'throttles'){
    73. 

  73.         $key = $pre.$this->pre.$account;
    74. 

  74.         $times = cache($key); // ["1234567899","1234567892"]存储时间戳
    75. 

  75.         $ndata = [];
    76. 

  76.         $count = 0;
    77. 

  77.         $curTime = time();
    78. 

  78.         if($times){
    79. 

  79.             $data = json_decode($times,true);
    80. 

  80.             if(!empty($data)){
    81. 

  81.                 $count = count($data);
    82. 

  82.                 foreach ($data as $k=>$v){
    83. 

  83.                     if($curTime - $v < $this->limitTime){ // 间隔小于时长有效
    84. 

  84.                         $ndata[] = $v;
    85. 

  85.                     }
    86. 

  86.                 }
    87. 

  87.             }
    88. 

  88.         }
    89. 

  89.         $ndata[] = $curTime;
    90. 

  90.         cache($key,json_encode($ndata),$this->limitTime);
    91. 

  91.         return $count + 1;
    92. 

  92.     }
    93. 

  93. 

  94.     /**
    95. 

  95.      * 重置登录次数
    96. 

  96.      * @param $account 账号
    97. 

  97.      * @param string $pre 缓存前缀
    98. 

  98.      */
    99. 

  99.     public function resetAttempts($account,$pre = 'throttles'){
    100. 

  100.         $key = $pre.$this->pre.$account;
    101. 

  101.         cache($key,NULL);
    102. 

  102.         cache($key.':lockout',NULL);
    103. 

  103.     }
    104. 

  104. 

  105. }
    106.