ElyBy-Mirror/accounts
1
0
Fork 0
mirror of https://github.com/elyby/accounts.git synced 2025-05-31 14:11:46 +05:30
Code Issues Packages Projects Releases Wiki Activity

Отключаем RateLimiter для запросов, что идут с хоста старого сервера авторизации, но включаем для остальных (фикс для beforeAction)

Browse Source
This commit is contained in:
ErickSkrauch
2016-09-08 19:06:44 +03:00
parent c2eee9b67d
commit d2fd803b0d
3 changed files with 60 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

32
api/modules/session/filters/RateLimiter.php
View File

@ -3,6 +3,7 @@ namespace api\modules\session\filters;
use common\models\OauthClient; use common\models\OauthClient;
use Yii; use Yii;
use yii\base\InvalidConfigException;
use yii\web\Request; use yii\web\Request;
use yii\web\TooManyRequestsHttpException; use yii\web\TooManyRequestsHttpException;
@ -11,12 +12,43 @@ class RateLimiter extends \yii\filters\RateLimiter {
public $limit = 180; public $limit = 180;
public $limitTime = 3600; // 1h public $limitTime = 3600; // 1h
public $authserverDomain;
private $server; private $server;
public function init() {
parent::init();
if ($this->authserverDomain === null) {
$this->authserverDomain = Yii::$app->params['authserverDomain'] ?? null;
}
if ($this->authserverDomain === null) {
throw new InvalidConfigException('authserverDomain param is required');
}
}
/**
* @inheritdoc
*/
public function beforeAction($action) {
$this->checkRateLimit(
null,
$this->request ?: Yii::$app->getRequest(),
$this->response ?: Yii::$app->getResponse(),
$action
);
return true;
}
/** /**
* @inheritdoc * @inheritdoc
*/ */
public function checkRateLimit($user, $request, $response, $action) { public function checkRateLimit($user, $request, $response, $action) {
if ($request->getHostInfo() === $this->authserverDomain) {
return;
}
$server = $this->getServer($request); $server = $this->getServer($request);
if ($server !== null) { if ($server !== null) {
return; return;

26
tests/codeception/api/unit/modules/session/filters/RateLimiterTest.php
View File

@ -11,7 +11,7 @@ use yii\web\Request;
class RateLimiterTest extends TestCase { class RateLimiterTest extends TestCase {
public function testCheckRateLimiterWithValidServerId() { public function testCheckRateLimiterWithOldAuthserver() {
/** @var Connection|\PHPUnit_Framework_MockObject_MockObject $redis */ /** @var Connection|\PHPUnit_Framework_MockObject_MockObject $redis */
$redis = $this->getMockBuilder(Connection::class) $redis = $this->getMockBuilder(Connection::class)
->setMethods(['executeCommand']) ->setMethods(['executeCommand'])
@ -34,6 +34,30 @@ class RateLimiterTest extends TestCase {
$filter->checkRateLimit(null, new Request(), null, null); $filter->checkRateLimit(null, new Request(), null, null);
} }
public function testCheckRateLimiterWithValidServerId() {
/** @var Connection|\PHPUnit_Framework_MockObject_MockObject $redis */
$redis = $this->getMockBuilder(Connection::class)
->setMethods(['executeCommand'])
->getMock();
$redis->expects($this->never())
->method('executeCommand');
Yii::$app->set('redis', $redis);
/** @var Request|\PHPUnit_Framework_MockObject_MockObject $request */
$request = $this->getMockBuilder(Request::class)
->setMethods(['getHostInfo'])
->getMock();
$request->expects($this->any())
->method('getHostInfo')
->will($this->returnValue('http://authserver.ely.by'));
$filter = new RateLimiter();
$filter->checkRateLimit(null, $request, null, null);
}
/** /**
* @expectedException \yii\web\TooManyRequestsHttpException * @expectedException \yii\web\TooManyRequestsHttpException
*/ */

3
tests/codeception/config/api/config.php
View File

@ -9,4 +9,7 @@ return [
'secret' => 'private-key', 'secret' => 'private-key',
], ],
], ],
'params' => [
'authserverDomain' => 'http://authserver.ely.by',
],
]; ];