صفحهٔ اصلی گشت‌و‌گذار راهنما
ورود
laoma
/
admin_api
1
0
انشعاب 1
پرونده‌ها مشکلات 0 درخواست واکشی 0 ویکی
درخت: e719dba595
شاخه‌ها تگ‌ها
admin_api
/
app
/
Jobs
/
IpRiskDetection.php

IpRiskDetection.php 3.6 KB
تاريخچه خام

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136 
  1. <?php
    2. 

  2. 

  3. namespace App\Jobs;
    4. 

  4. 

  5. use App\Services\IpRiskService;
    6. 

  6. use Illuminate\Bus\Queueable;
    7. 

  7. use Illuminate\Contracts\Queue\ShouldQueue;
    8. 

  8. use Illuminate\Foundation\Bus\Dispatchable;
    9. 

  9. use Illuminate\Queue\InteractsWithQueue;
    10. 

  10. use Illuminate\Queue\SerializesModels;
    11. 

  11. use Illuminate\Support\Facades\Log;
    12. 

  12. use Illuminate\Support\Facades\Redis;
    13. 

  13. 

  14. /**
    15. 

  15.  * IP风险检测异步任务
    16. 

  16.  *
    17. 

  17.  * 在用户注册或登录成功后异步执行,检测用户IP是否存在风险:
    18. 

  18.  * 1. 如果用户已在 Redis Hash 中有记录且 IP 未变 → 跳过
    19. 

  19.  * 2. IP 变更后重新检测
    20. 

  20.  * 3. 检测到风险 → 写入 Redis Hash: ip_risk_users → {UserID} → {可疑IP}
    21. 

  21.  * 4. 未检测到风险 → 从 Hash 中移除(如果之前存在)
    22. 

  22.  */
    23. 

  23. class IpRiskDetection implements ShouldQueue
    24. 

  24. {
    25. 

  25.     use Dispatchable, InteractsWithQueue, Queueable, SerializesModels;
    26. 

  26. 

  27.     /**
    28. 

  28.      * Redis Hash key
    29. 

  29.      */
    30. 

  30.     const REDIS_HASH_KEY = 'ip_risk_users';
    31. 

  31. 

  32.     /**
    33. 

  33.      * 上次检测 IP 缓存 —— 按日分片 Hash,3 天自动过期
    34. 

  34.      * key: ip_risk_last_detected:20260507
    35. 

  35.      * field: UserID
    36. 

  36.      * value: IP
    37. 

  37.      * 每天一个 Hash,查过去 3 天的记录,无需大量独立 key
    38. 

  38.      */
    39. 

  39.     const LAST_DETECTED_PREFIX = 'ip_risk_last_detected:';
    40. 

  40. 

  41.     /**
    42. 

  42.      * 每次检测覆盖的天数(含当天)
    43. 

  43.      */
    44. 

  44.     const DETECTION_WINDOW_DAYS = 3;
    45. 

  45. 

  46.     /**
    47. 

  47.      * @var int 用户ID
    48. 

  48.      */
    49. 

  49.     protected $userId;
    50. 

  50. 

  51.     /**
    52. 

  52.      * @var string 待检测的 IP 地址
    53. 

  53.      */
    54. 

  54.     protected $ip;
    55. 

  55. 

  56.     /**
    57. 

  57.      * Create a new job instance.
    58. 

  58.      *
    59. 

  59.      * @param int    $userId
    60. 

  60.      * @param string $ip
    61. 

  61.      */
    62. 

  62.     public function __construct($userId, $ip)
    63. 

  63.     {
    64. 

  64.         $this->userId = $userId;
    65. 

  65.         $this->ip = $ip;
    66. 

  66.     }
    67. 

  67. 

  68.     /**
    69. 

  69.      * 获取过去 N 天的日期 key 列表(当天在最前)
    70. 

  70.      *
    71. 

  71.      * @param int $days
    72. 

  72.      * @return array
    73. 

  73.      */
    74. 

  74.     private function getRecentDateKeys($days = 3)
    75. 

  75.     {
    76. 

  76.         $keys = [];
    77. 

  77.         for ($i = 0; $i < $days; $i++) {
    78. 

  78.             $keys[] = self::LAST_DETECTED_PREFIX . date('Ymd', strtotime("-{$i} days"));
    79. 

  79.         }
    80. 

  80.         return $keys;
    81. 

  81.     }
    82. 

  82. 

  83.     /**
    84. 

  84.      * Execute the job.
    85. 

  85.      */
    86. 

  86.     public function handle()
    87. 

  87.     {
    88. 

  88.         $userId = $this->userId;
    89. 

  89.         $ip = $this->ip;
    90. 

  90. 

  91.         if (empty($userId) || empty($ip)) {
    92. 

  92.             return;
    93. 

  93.         }
    94. 

  94. 

  95.         // 1. 检查过去 3 天的每日 Hash 中是否已检测过同一 IP
    96. 

  96.         //    只要任意一天记录相同 IP → 跳过(IP 未变)
    97. 

  97.         $recentKeys = $this->getRecentDateKeys(self::DETECTION_WINDOW_DAYS);
    98. 

  98.         $todayKey = $recentKeys[0];
    99. 

  99. 

  100.         $ipUnchanged = false;
    101. 

  101.         foreach ($recentKeys as $key) {
    102. 

  102.             $storedIp = Redis::hget($key, $userId);
    103. 

  103.             if ($storedIp === $ip) {
    104. 

  104.                 $ipUnchanged = true;
    105. 

  105.                 break;
    106. 

  106.             }
    107. 

  107.         }
    108. 

  108. 

  109.         if ($ipUnchanged) {
    110. 

  110.             // IP 在检测窗口内未变,跳过
    111. 

  111.             return;
    112. 

  112.         }
    113. 

  113. 

  114.         // 2. 执行风险检测
    115. 

  115.         $service = new IpRiskService();
    116. 

  116.         $result = $service->detect($ip);
    117. 

  117. 

  118.         // 3. 根据检测结果更新风险标记 Hash
    119. 

  119.         if ($result['is_risky']) {
    120. 

  120.             $value = $ip . '|' . $result['reason'];
    121. 

  121.             Redis::hset(self::REDIS_HASH_KEY, $userId, $value);
    122. 

  122.             Log::info("IpRiskDetection: user flagged", [
    123. 

  123.                 'user_id' => $userId,
    124. 

  124.                 'ip'      => $ip,
    125. 

  125.                 'reason'  => $result['reason'],
    126. 

  126.             ]);
    127. 

  127.         }
    128. 

  128. 

  129.         // 4. 记录本次检测结果到今天的 Hash,并确保 3 天过期
    130. 

  130.         $isNew = !Redis::exists($todayKey);
    131. 

  131.         Redis::hset($todayKey, $userId, $ip);
    132. 

  132.         if ($isNew) {
    133. 

  133.             Redis::expire($todayKey, 86400 * self::DETECTION_WINDOW_DAYS);
    134. 

  134.         }
    135. 

  135.     }
    136. 

  136. }
    137.