| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117 |
- using Hangfire;
- using Masuit.MyBlogs.Core.Common;
- using Masuit.MyBlogs.Core.Configs;
- using Masuit.MyBlogs.Core.Extensions.Hangfire;
- using Masuit.MyBlogs.Core.Models.ViewModel;
- using Masuit.Tools;
- using Masuit.Tools.Core.Net;
- using Microsoft.AspNetCore.Http;
- using Microsoft.Net.Http.Headers;
- using System;
- using System.Linq;
- using System.Text;
- using System.Text.RegularExpressions;
- using System.Threading.Tasks;
- using System.Web;
- namespace Masuit.MyBlogs.Core.Extensions.Firewall
- {
- /// <summary>
- /// 请求拦截器
- /// </summary>
- public class RequestInterceptMiddleware
- {
- private readonly RequestDelegate _next;
- /// <summary>
- /// 构造函数
- /// </summary>
- /// <param name="next"></param>
- public RequestInterceptMiddleware(RequestDelegate next)
- {
- _next = next;
- }
- public async Task Invoke(HttpContext context)
- {
- var request = context.Request;
- //启用读取request
- request.EnableBuffering();
- if (!AppConfig.EnableIPDirect && request.Host.Host.MatchInetAddress() && !request.Host.Host.IsPrivateIP())
- {
- context.Response.StatusCode = 404;
- return;
- }
- var ip = context.Connection.RemoteIpAddress.ToString();
- var path = HttpUtility.UrlDecode(request.Path + request.QueryString, Encoding.UTF8);
- var requestUrl = HttpUtility.UrlDecode(request.Scheme + "://" + request.Host + path);
- var match = Regex.Match(path ?? "", CommonHelper.BanRegex);
- if (match.Length > 0)
- {
- BackgroundJob.Enqueue(() => HangfireBackJob.InterceptLog(new IpIntercepter()
- {
- IP = ip,
- RequestUrl = requestUrl,
- Time = DateTime.Now,
- UserAgent = request.Headers[HeaderNames.UserAgent],
- Remark = $"检测到敏感词拦截:{match.Value}"
- }));
- context.Response.StatusCode = 400;
- await context.Response.WriteAsync("参数不合法!", Encoding.UTF8);
- return;
- }
- if (!context.Session.TryGetValue("session", out _) && !context.Request.IsRobot())
- {
- context.Session.Set("session", 0);
- var referer = context.Request.Headers[HeaderNames.Referer].ToString();
- if (!string.IsNullOrEmpty(referer))
- {
- try
- {
- new Uri(referer);//判断是不是一个合法的referer
- if (!referer.Contains(context.Request.Host.Value) && !referer.Contains(new[] { "baidu.com", "google", "sogou", "so.com", "bing.com", "sm.cn" }))
- {
- HangfireHelper.CreateJob(typeof(IHangfireBackJob), nameof(IHangfireBackJob.UpdateLinkWeight), args: referer);
- }
- }
- catch
- {
- context.Response.StatusCode = 504;
- await context.Response.WriteAsync("您的浏览器不支持访问本站!", Encoding.UTF8);
- return;
- }
- }
- }
- if (!context.Request.IsRobot())
- {
- if (request.QueryString.HasValue)
- {
- var q = request.QueryString.Value.Trim('?');
- requestUrl = requestUrl.Replace(q, q.Split('&').Where(s => !s.StartsWith("cid") && !s.StartsWith("uid")).Join("&"));
- }
- TrackData.RequestLogs.AddOrUpdate(ip, new RequestLog()
- {
- Count = 1,
- RequestUrls = { requestUrl },
- UserAgents = { request.Headers[HeaderNames.UserAgent] }
- }, (_, i) =>
- {
- i.UserAgents.Add(request.Headers[HeaderNames.UserAgent]);
- i.RequestUrls.Add(requestUrl);
- i.Count++;
- return i;
- });
- }
- if (string.IsNullOrEmpty(context.Session.Get<string>(SessionKey.TimeZone)))
- {
- context.Session.Set(SessionKey.TimeZone, context.Connection.RemoteIpAddress.GetClientTimeZone());
- }
- await _next(context);
- }
- }
- }
|
