CDPP / AMDA_IHM

Commit 5bb95737d5b40c5c074470966def8a5d589670fa

Authored by Nathanael Jourdane
1 parent b2c5ec48
Exists in master and in 111 other branches 10098, 10178, 5390, 6629, 6728, 6920, 7494, 7497, 7616, 8459, 8528, 8928, 9014, 9016Bis, 9017, 9049, 9084, 9259, 9326, 9345, 9505, 9660, 9750, 9750.bck, 9800, 9980, FER_10285, FER_10400, FER_10435, FER_10557, FER_10663, FER_10765, FER_10828, FER_10828_2, FER_10829, FER_10836, FER_10852, FER_10934, FER_11100, FER_11242, FER_11478, FER_11500, FER_11537, FER_11586, FER_11588, FER_5119, FER_5165, FER_6265, FER_6860, FER_6899, FER_6951, FER_7618, FER_7862, FER_8455, FER_9629, FER_9660, FER_9915, FER_CR41, FER_CR42, FER_CR43, FER_TFCat, Histo1D2D, MAZ_10936, MAZ_11362, MAZ_11427, MAZ_6018, MAZ_9016_New, MAZ_FIX_9016, New_ColorMaps, SpeasyGet, akkodis/amdadev, alias, amdadev, amdadev_test, anr_tempete, catalog-histo, create-user, cu2022, data-activities, density_maps, develop, epn-tap, expression-parser-bre, frames-transformation, hapi, homePage, install-rework, master_vge, minimize, mlplasmas, multiplot, new-save-plot-request, openam, plot-request, plot-request-update, plot-tt-catalog, remoteData, rm_5118, rm_5776, rm_6912, rm_6912_bis, rm_7926, rm_8932, save-other-requests, save-plot, save-plot-request, shared-objects-updater, special-params, sum-components-indexes, test-merge, ws_get_catalog

Add a query limit for getParameters webservice

Showing 1 changed file with 49 additions and 1 deletions   Show diff stats
Inline Side-by-side
php/classes/WebServer.php
  Diff comments   View file @5bb9573
... ... @@ -83,6 +83,9 @@ class WebServer
83 83 private $wsUserMgr;
84 84 private $resultMgr, $myParamsInfoMgr;
85 85 private $dataFileName;
  86 + private $QUERY_TIME_INTERVAL;
  87 + private $MAX_QUERIES;
  88 + private $CLIENTS_ACCESS_PATH;
86 89  
87 90 function __construct() {
88 91 $this->userID = 'impex';
... ... @@ -90,6 +93,9 @@ class WebServer
90 93 $this->sessionID = $this->userID;
91 94 $this->myParamsInfoMgr = new ParamsInfoMgr();
92 95 $this->resultMgr = new WebResultMgr();
  96 + $this->QUERY_TIME_INTERVAL = 30; // Time interval to limit access, in seconds.
  97 + $this->MAX_QUERIES = 3; // Number of queries allowed in one time interval, per IP.
  98 + $this->CLIENTS_ACCESS_PATH = './clients'; // Path of the file containing clients access counters.
93 99 }
94 100  
95 101 protected function init($data) {
... ... @@ -117,6 +123,44 @@ class WebServer
117 123 return array('success' => true, 'vars' => $vars);
118 124 }
119 125  
  126 + // Returns true if the user reached its query limit.
  127 + private function isRateLimitReached() {
  128 + $currentTime = (int)(((new DateTime())->getTimestamp())/$this->QUERY_TIME_INTERVAL);
  129 + $ip = $_SERVER['REMOTE_ADDR'];
  130 + error_log("Client IP: $ip ; Current time: $currentTime\n");
  131 +
  132 + if(file_exists($this->CLIENTS_ACCESS_PATH)) {
  133 + $clients = file_get_contents($this->CLIENTS_ACCESS_PATH);
  134 + $matches = array();
  135 + if(preg_match("/($ip) (\d*) (\d*)/", $clients, $matches, PREG_OFFSET_CAPTURE)) {
  136 + error_log("Found an entry for this IP (". $matches[0][0] . ")\n");
  137 + $lastTime = (int)($matches[2][0]);
  138 + if($currentTime == $lastTime) {
  139 + $count = (int)($matches[3][0]);
  140 + if($count >= $this->MAX_QUERIES) {
  141 + error_log("Same time range and max count value reached: please wait a moment and try again.\n");
  142 + return true;
  143 + } else {
  144 + $count++;
  145 + error_log("Same time range, but max count value not reached yet: incrementing counter (" . ($this->MAX_QUERIES-$count) . "/$this->MAX_QUERIES).\n");
  146 + $clients = substr_replace($clients, $count, $matches[3][1], strlen($matches[3][0]));
  147 + }
  148 + } else {
  149 + error_log("New time range: resetting time entry.");
  150 + $clients = substr_replace($clients, "$ip $currentTime 1", $matches[0][1], strlen($matches[0][0]));
  151 + }
  152 + } else {
  153 + error_log("IP $ip not found: creating new time entry\n");
  154 + $clients = "$clients$ip $currentTime 1\n";
  155 + }
  156 + } else {
  157 + error_log("File not created yet: creating file and new time entry\n");
  158 + $clients = "$ip $currentTime 1\n";
  159 + }
  160 + file_put_contents($this->CLIENTS_ACCESS_PATH, $clients);
  161 + return false;
  162 + }
  163 +
120 164 private function setID(){
121 165  
122 166 $nb_min = 10000;
... ... @@ -549,7 +593,11 @@ class WebServer
549 593 ///////////////////////////////////////START GET DATASET ///////////////////////////////
550 594 public function getParameter($data) {
551 595  
552   - $multiParam = false;
  596 + if($this->isRateLimitReached()) {
  597 + return array('success' => false, 'message' => 'Rate limit reached. Please try again later.');
  598 + }
  599 +
  600 + $multiParam = false;
553 601  
554 602 $res = $this->init($data);
555 603  
... ...