feat: add api rate limiter

cjbi · cjbi · commit 956122e34931 · 2024-10-29T16:27:27.000+08:00
diff --git a/src/main/java/tech/wetech/flexmodel/application/ApiRuntimeApplicationService.java b/src/main/java/tech/wetech/flexmodel/application/ApiRuntimeApplicationService.java
@@ -10,13 +10,12 @@
 import lombok.extern.slf4j.Slf4j;
 import tech.wetech.flexmodel.codegen.entity.ApiInfo;
 import tech.wetech.flexmodel.codegen.entity.ApiLog;
-import tech.wetech.flexmodel.domain.model.api.ApiInfoService;
-import tech.wetech.flexmodel.domain.model.api.ApiLogService;
-import tech.wetech.flexmodel.domain.model.api.LogData;
-import tech.wetech.flexmodel.domain.model.api.LogLevel;
+import tech.wetech.flexmodel.domain.model.api.*;
 import tech.wetech.flexmodel.domain.model.data.DataService;
 import tech.wetech.flexmodel.domain.model.idp.IdentityProviderService;
 import tech.wetech.flexmodel.domain.model.modeling.ModelService;
+import tech.wetech.flexmodel.domain.model.settings.Settings;
+import tech.wetech.flexmodel.domain.model.settings.SettingsService;
 import tech.wetech.flexmodel.graphql.GraphQLProvider;
 import tech.wetech.flexmodel.util.JsonUtils;
 import tech.wetech.flexmodel.util.UriTemplate;
@@ -54,6 +53,8 @@ public class ApiRuntimeApplicationService {
 
   @Inject
   GraphQLProvider graphQLProvider;
+  @Inject
+  SettingsService settingsService;
 
   public ExecutionResult execute(String operationName, String query, Map<String, Object> variables) {
     GraphQL graphQL = graphQLProvider.getGraphQL();
@@ -78,6 +79,30 @@ public void accept(RoutingContext routingContext) {
         Map<String, String> pathParameters = uriTemplate.match(new UriTemplate(routingContext.normalizedPath()));
         String method = routingContext.request().method().name();
         if (pathParameters != null && method.equals(apiInfo.getMethod())) {
+          Boolean rateLimitingEnabled = (Boolean) meta.getOrDefault("rateLimitingEnabled", false);
+          Settings settings = settingsService.getSettings();
+          if (rateLimitingEnabled || settings.getSecurity().isRateLimitingEnabled()) {
+            int maxRequestCount = settings.getSecurity().getMaxRequestCount();
+            int intervalInSeconds = settings.getSecurity().getIntervalInSeconds();
+            ApiRateLimiterHolder.ApiRateLimiter apiRateLimiter;
+            if (rateLimitingEnabled) {
+              maxRequestCount = (int) meta.get("maxRequestCount");
+              intervalInSeconds = (int) meta.get("intervalInSeconds");
+              apiRateLimiter = ApiRateLimiterHolder.getApiRateLimiter(apiInfo.getMethod() + ":" + apiInfo.getPath(), maxRequestCount, intervalInSeconds);
+            } else {
+              apiRateLimiter = ApiRateLimiterHolder.getApiRateLimiter(apiInfo.getMethod() + ":" + apiInfo.getPath() + "@default", maxRequestCount, intervalInSeconds);
+            }
+            if (!apiRateLimiter.tryAcquire()) {
+              Map<String, Object> result = new HashMap<>();
+              result.put("messasge", "Too many requests.");
+              result.put("code", -1);
+              result.put("success", false);
+              routingContext.response()
+                .putHeader("Content-Type", "application/json")
+                .end(JsonUtils.getInstance().stringify(result));
+              return;
+            }
+          }
           log.debug("Matched request for api: {}", apiInfo);
           boolean isAuth = (boolean) meta.get("auth");
           if (isAuth) {
@@ -118,16 +143,6 @@ public void accept(RoutingContext routingContext) {
               .putHeader("Content-Type", "application/json")
               .end(JsonUtils.getInstance().stringify(result));
           }
-//          switch (restAPIType) {
-//            case "list" -> doList(routingContext, pathParameters, apiInfo);
-//            case "view" -> doView(routingContext, pathParameters, apiInfo);
-//            case "create" -> doCreate(routingContext, pathParameters, apiInfo);
-//            case "update" -> doUpdate(routingContext, pathParameters, apiInfo);
-//            case "delete" -> doDelete(routingContext, pathParameters, apiInfo);
-//            default -> {
-//              routingContext.response().end("Matched request for path: " + routingContext.normalisedPath());
-//            }
-//          }
           break;
         }
       }
diff --git a/src/main/java/tech/wetech/flexmodel/domain/model/api/ApiInfoService.java b/src/main/java/tech/wetech/flexmodel/domain/model/api/ApiInfoService.java
@@ -1,6 +1,6 @@
 package tech.wetech.flexmodel.domain.model.api;
 
-import io.quarkus.cache.CacheInvalidate;
+import io.quarkus.cache.CacheInvalidateAll;
 import io.quarkus.cache.CacheResult;
 import jakarta.enterprise.context.ApplicationScoped;
 import jakarta.inject.Inject;
@@ -22,32 +22,34 @@ public List<ApiInfo> findList() {
     return apiInfoRepository.findAll();
   }
 
-  @CacheInvalidate(cacheName = "apiInfoList")
+  @CacheInvalidateAll(cacheName = "apiInfoList")
   public ApiInfo create(ApiInfo apiInfo) {
     if (apiInfo.getName() == null || apiInfo.getName().isEmpty()) {
       throw new ApiInfoException("API name must not be null");
     }
     return apiInfoRepository.save(apiInfo);
   }
 
-  @CacheInvalidate(cacheName = "apiInfoList")
+  @CacheInvalidateAll(cacheName = "apiInfoList")
   public ApiInfo update(ApiInfo apiInfo) {
     ApiInfo older = apiInfoRepository.findById(apiInfo.getId());
     if (older == null) {
       return apiInfo;
     }
     apiInfo.setCreatedAt(older.getCreatedAt());
     apiInfo.setEnabled(older.getEnabled());
+    ApiRateLimiterHolder.removeApiRateLimiter(apiInfo.getMethod() + ":" + apiInfo.getPath());
     return apiInfoRepository.save(apiInfo);
   }
 
-  @CacheInvalidate(cacheName = "apiInfoList")
+  @CacheInvalidateAll(cacheName = "apiInfoList")
   public ApiInfo updateIgnoreNull(ApiInfo apiInfo) {
     apiInfoRepository.updateIgnoreNull(apiInfo.getId(), apiInfo);
+    ApiRateLimiterHolder.removeApiRateLimiter(apiInfo.getMethod() + ":" + apiInfo.getPath());
     return apiInfo;
   }
 
-  @CacheInvalidate(cacheName = "apiInfoList")
+  @CacheInvalidateAll(cacheName = "apiInfoList")
   public void delete(String id) {
     apiInfoRepository.delete(id);
     apiInfoRepository.deleteByParentId(id);
diff --git a/src/main/java/tech/wetech/flexmodel/domain/model/api/ApiRateLimiterHolder.java b/src/main/java/tech/wetech/flexmodel/domain/model/api/ApiRateLimiterHolder.java
@@ -0,0 +1,64 @@
+package tech.wetech.flexmodel.domain.model.api;
+
+import lombok.Getter;
+
+import java.util.Map;
+import java.util.concurrent.ConcurrentHashMap;
+import java.util.concurrent.atomic.AtomicInteger;
+
+
+/**
+ * @author cjbi
+ */
+public class ApiRateLimiterHolder {
+
+  @Getter
+  private static final Map<String, ApiRateLimiter> map = new ConcurrentHashMap<>();
+
+  public static ApiRateLimiter getApiRateLimiter(String apiId, int maxRequestCount, int intervalInSeconds) {
+    return map.computeIfAbsent(apiId, k -> new ApiRateLimiter(maxRequestCount, intervalInSeconds));
+  }
+
+  public static void removeApiRateLimiter(String apiId) {
+    map.remove(apiId);
+  }
+
+  public static void reset() {
+    map.clear();
+  }
+
+  /**
+   * @author cjbi
+   */
+  public static class ApiRateLimiter {
+
+    private final int maxRequestCount;
+    private final int intervalInSeconds;
+    private final AtomicInteger requestCounter = new AtomicInteger(0);
+    private long startTime;
+
+    public ApiRateLimiter(int maxRequestCount, int intervalInSeconds) {
+      this.maxRequestCount = maxRequestCount;
+      this.intervalInSeconds = intervalInSeconds;
+      this.startTime = System.currentTimeMillis();
+    }
+
+    public synchronized boolean tryAcquire() {
+      long currentTime = System.currentTimeMillis();
+      if ((currentTime - startTime) / 1000 > intervalInSeconds) {
+        // 重置时间窗口和请求计数器
+        startTime = currentTime;
+        requestCounter.set(0);
+      }
+
+      // 检查当前时间窗口内的请求数是否超过限制
+      if (requestCounter.get() < maxRequestCount) {
+        requestCounter.incrementAndGet();
+        return true;
+      }
+      return false;
+    }
+  }
+
+
+}
diff --git a/src/main/java/tech/wetech/flexmodel/domain/model/settings/Settings.java b/src/main/java/tech/wetech/flexmodel/domain/model/settings/Settings.java
@@ -30,9 +30,9 @@ public static class Log {
   @Getter
   @Setter
   public static class Security {
-    private boolean apiRateLimitingEnabled = false;
-    private int maxRequests = 500;
-    private int limitRefreshPeriod = 60;
+    private boolean rateLimitingEnabled = false;
+    private int maxRequestCount = 500;
+    private int intervalInSeconds = 60;
   }
 
 }
diff --git a/src/main/java/tech/wetech/flexmodel/domain/model/settings/SettingsChanged.java b/src/main/java/tech/wetech/flexmodel/domain/model/settings/SettingsChanged.java
@@ -0,0 +1,15 @@
+package tech.wetech.flexmodel.domain.model.settings;
+
+import lombok.AllArgsConstructor;
+import lombok.Getter;
+import lombok.ToString;
+
+/**
+ * @author cjbi
+ */
+@Getter
+@AllArgsConstructor
+@ToString
+public class SettingsChanged {
+  private Settings settings;
+}
diff --git a/src/main/java/tech/wetech/flexmodel/domain/model/settings/SettingsService.java b/src/main/java/tech/wetech/flexmodel/domain/model/settings/SettingsService.java
@@ -1,7 +1,8 @@
 package tech.wetech.flexmodel.domain.model.settings;
 
-import io.quarkus.cache.CacheInvalidate;
+import io.quarkus.cache.CacheInvalidateAll;
 import io.quarkus.cache.CacheResult;
+import io.vertx.mutiny.core.eventbus.EventBus;
 import jakarta.enterprise.context.ApplicationScoped;
 import jakarta.inject.Inject;
 
@@ -14,14 +15,21 @@ public class SettingsService {
   @Inject
   SettingsRepository settingsRepository;
 
+  @Inject
+  EventBus eventBus;
+
   @CacheResult(cacheName = "settings")
   public Settings getSettings() {
     return settingsRepository.getSettings();
   }
 
-  @CacheInvalidate(cacheName = "settings")
+  @CacheInvalidateAll(cacheName = "settings")
   public Settings saveSettings(Settings settings) {
-    return settingsRepository.saveSettings(settings);
+    try {
+      return settingsRepository.saveSettings(settings);
+    } finally {
+      eventBus.publish("settings-changed", new SettingsChanged(settings));
+    }
   }
 
 }
diff --git a/src/main/java/tech/wetech/flexmodel/infrastructrue/SettingsEventConsumer.java b/src/main/java/tech/wetech/flexmodel/infrastructrue/SettingsEventConsumer.java
@@ -0,0 +1,31 @@
+package tech.wetech.flexmodel.infrastructrue;
+
+import io.quarkus.vertx.ConsumeEvent;
+import jakarta.enterprise.context.ApplicationScoped;
+import tech.wetech.flexmodel.domain.model.api.ApiRateLimiterHolder;
+import tech.wetech.flexmodel.domain.model.settings.SettingsChanged;
+
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * @author cjbi
+ */
+@ApplicationScoped
+public class SettingsEventConsumer {
+
+
+  @ConsumeEvent("settings-changed") // 监听特定地址的事件
+  public void consume(SettingsChanged event) {
+    System.out.println("Received message: " + event.getSettings());
+    // 处理事件
+    List<String> invalidKeys = new ArrayList<>();
+    ApiRateLimiterHolder.getMap().forEach((k, v) -> {
+      if (k.endsWith("@default")) {
+        invalidKeys.add(k);
+      }
+    });
+    invalidKeys.forEach(ApiRateLimiterHolder::removeApiRateLimiter);
+  }
+
+}

Original file line number	Diff line number	Diff line change
`@@ -30,9 +30,9 @@ public static class Log {`
`30`	`30`	`@Getter`
`31`	`31`	`@Setter`
`32`	`32`	`public static class Security {`
`33`		`- private boolean apiRateLimitingEnabled = false;`
`34`		`- private int maxRequests = 500;`
`35`		`- private int limitRefreshPeriod = 60;`
	`33`	`+ private boolean rateLimitingEnabled = false;`
	`34`	`+ private int maxRequestCount = 500;`
	`35`	`+ private int intervalInSeconds = 60;`
`36`	`36`	`}`
`37`	`37`
`38`	`38`	`}`