de.mhus.lib.servlet.security.DefaultSecurityWatch Maven / Gradle / Ivy
Show all versions of lib-j2ee Show documentation
/**
* Copyright 2018 Mike Hummel
*
* Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file
* except in compliance with the License. You may obtain a copy of the License at
*
*
http://www.apache.org/licenses/LICENSE-2.0
*
*
Unless required by applicable law or agreed to in writing, software distributed under the
* License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
* express or implied. See the License for the specific language governing permissions and
* limitations under the License.
*/
package de.mhus.lib.servlet.security;
import java.util.HashMap;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import de.mhus.lib.core.MLog;
import de.mhus.lib.core.cfg.CfgLong;
import de.mhus.lib.core.util.LongValue;
/*
hits = new HashMap<>();
long lastSec = 0;
@Override
public synchronized boolean checkHttpRequest(HttpServletRequest req, HttpServletResponse res) {
long sec = System.currentTimeMillis() / 1000;
if (lastSec != sec) {
// cleanup
hits.clear();
lastSec = sec;
}
if (hits.size() > CFG_MAX_IPS.value()) {
log().t("Blocked MAX IPS");
return false;
}
String ip = req.getRemoteAddr();
LongValue hit = hits.get(ip);
if (hit == null) {
hit = new LongValue(0);
hits.put(ip, hit);
}
long h = hit.get();
if (h > CFG_MAX_PER_SEC.value()) {
log().t("Blocked IP", ip);
return false;
}
hit.set(h + 1);
return true;
}
}