接口限流技术调研

//单机全局限流器，QPS为1

private static final RateLimiter RATE_LIMITER = RateLimiter.create(1);

@ApiOperation("单机限流")

@GetMapping("/test1")

public ResultDTO test1() {

    if(!RATE_LIMITER.tryAcquire()){

        log.info("限流了..");

        return ResultDTO.error("限流了..");

    }

    log.info("请求成功");

    return ResultDTO.ok("请求成功");

}

2021-06-28 14:01:22.803  INFO 20212 --- [nio-8080-exec-1] c.r.d.controller.RedisLimitController    : 请求成功

2021-06-28 14:01:22.987  INFO 20212 --- [nio-8080-exec-2] c.r.d.controller.RedisLimitController    : 请求成功

2021-06-28 14:01:23.159  INFO 20212 --- [nio-8080-exec-3] c.r.d.controller.RedisLimitController    : 限流了..

2021-06-28 14:01:23.347  INFO 20212 --- [nio-8080-exec-4] c.r.d.controller.RedisLimitController    : 限流了..

2021-06-28 14:01:23.520  INFO 20212 --- [nio-8080-exec-5] c.r.d.controller.RedisLimitController    : 限流了..

2021-06-28 14:01:23.695  INFO 20212 --- [nio-8080-exec-6] c.r.d.controller.RedisLimitController    : 限流了..

2021-06-28 14:01:23.876  INFO 20212 --- [nio-8080-exec-7] c.r.d.controller.RedisLimitController    : 请求成功

2021-06-28 14:01:24.045  INFO 20212 --- [nio-8080-exec-8] c.r.d.controller.RedisLimitController    : 限流了..

2021-06-28 14:01:24.234  INFO 20212 --- [nio-8080-exec-9] c.r.d.controller.RedisLimitController    : 限流了..

2021-06-28 14:01:24.406  INFO 20212 --- [io-8080-exec-10] c.r.d.controller.RedisLimitController    : 限流了..

2021-06-28 14:01:24.594  INFO 20212 --- [nio-8080-exec-1] c.r.d.controller.RedisLimitController    : 限流了..

2021-06-28 14:01:24.766  INFO 20212 --- [nio-8080-exec-2] c.r.d.controller.RedisLimitController    : 限流了..

2021-06-28 14:01:24.948  INFO 20212 --- [nio-8080-exec-3] c.r.d.controller.RedisLimitController    : 请求成功

2021-06-28 14:01:25.128  INFO 20212 --- [nio-8080-exec-4] c.r.d.controller.RedisLimitController    : 限流了..

2021-06-28 14:01:25.308  INFO 20212 --- [nio-8080-exec-5] c.r.d.controller.RedisLimitController    : 限流了..

2021-06-28 14:01:25.492  INFO 20212 --- [nio-8080-exec-6] c.r.d.controller.RedisLimitController    : 限流了..

/**

 * 1(时间)分钟（单位）允许某个ip请求的最大次数(max)

 *

 * 如每隔2分钟，单IP限定访问次数不能超过10次

 */

@Target(ElementType.METHOD)

@Retention(RetentionPolicy.RUNTIME)

public @interface RedisRateLimiter {

    /**

     * 默认根据IP拦截

     */

    LimitType limitType() default LimitType.GENERAL;

    enum LimitType{

        GENERAL,IP,USERID;

    }

    /**

     * 限制时间长度

     */

    long timeLimitLength() default 1;

    /**

     * 限制时间长度的单位

     */

    TimeUnit timeLimitLengthUnit() default TimeUnit.SECONDS;

    /**

     * 允许时间内最大访问数

     */

    long max() default 1;

}

/**

 * 自定义注解：标记限流key

 * @author dengyingxiang

 */

@Retention(value = RetentionPolicy.RUNTIME)

@Target(value = {ElementType.PARAMETER,ElementType.FIELD})

@Documented

public @interface LimitKey {

}

@Slf4j

@Component

@Aspect

@RequiredArgsConstructor(onConstructor_ = @Autowired)

public class RedisRateLimitAspect {

    private final static String REDIS_RATE_LIMIT_KEY_PREFIX = "limit:";

    private final StringRedisTemplate stringRedisTemplate;

    private final RedisScript<Long> limitRedisScript;

    @Pointcut("@annotation(com.rock.demo.annotation.RedisRateLimiter)")

    public void rateLimit() {

    }

    @Before("rateLimit()")

    public void pointCut(JoinPoint joinPoint) throws IllegalAccessException {

        MethodSignature signature = (MethodSignature) joinPoint.getSignature();

        Method method = signature.getMethod();

        // 通过 AnnotationUtils.findAnnotation 获取 RateLimiter 注解

        RedisRateLimiter redisRateLimit = AnnotationUtils.findAnnotation(method, RedisRateLimiter.class);

        RedisRateLimiter.LimitType limitType = redisRateLimit.limitType();

        if (redisRateLimit != null) {

            //获取时间限制

            long timeLimitLength = redisRateLimit.timeLimitLength();

            //获取时间限制单位

            TimeUnit timeLimitLengthUnit = redisRateLimit.timeLimitLengthUnit();

            //时间单位最大访问数目

            long max = redisRateLimit.max();

            String limitKey = "";

            //ip限流则用ip做limitKeyValue,其他的从参数中获取

            if (RedisRateLimiter.LimitType.IP.name().equals(limitType.name())) {

                HttpServletRequest request = ((ServletRequestAttributes) Objects.requireNonNull(RequestContextHolder.getRequestAttributes())).getRequest();

                limitKey = IpUtil.getIpAddr(request);

            } else {

                Object[] args = joinPoint.getArgs();

                // 1.入参是(String id)

                limitKey = getIdForSingle(joinPoint, args);

                if (StringUtils.isEmpty(limitKey)) {

                    // 2.入参是DTO，LimitKey注解放到DTO.id上。

                    limitKey = getIdForParamsDTO(args);

                }

            }

            //redis存储的key；"limit:"${className}"."${methodName}:${limitKey}

            String storeKey = REDIS_RATE_LIMIT_KEY_PREFIX + method.getDeclaringClass().getSimpleName() + "." + method.getName() + ":" + limitKey;

            long now = System.currentTimeMillis();

            //将2分钟转化为毫秒时间戳,以获得2分钟前时间

            long limitTimeLengthMills = timeLimitLengthUnit.toMillis(timeLimitLength);

            //应该移除的分值区间

            long removeScore = now - limitTimeLengthMills;

            Long r = stringRedisTemplate.execute(

                    limitRedisScript,

                    Lists.newArrayList(storeKey),

                    "" + now,

                    "" + limitTimeLengthMills,   //设置key的保存时间，该key在2分钟的允许时间内做zadd操作

                    "" + removeScore,     //移除当前时间2分钟前过期的score

                    "" + max);//当前接口访问上线

            if (r != null) {

                if (r == 0) {

                    log.error("【{}】在 " + timeLimitLength + formatTimeUnit(timeLimitLengthUnit) + " 内已达到访问上限，当前接口上限 {}", storeKey, max);

                    throw new RuntimeException("手速太快了，慢点儿吧~");

                } else {

                    log.info("【{}】在 " + timeLimitLength + formatTimeUnit(timeLimitLengthUnit) + " 内访问 {} 次", storeKey, r);

                }

            }

        }

    }

    private String formatTimeUnit(TimeUnit timeUnit) {

        if (timeUnit == TimeUnit.MINUTES) {

            return "分钟";

        } else if (timeUnit == TimeUnit.SECONDS) {

            return "秒";

        } else if (timeUnit == TimeUnit.HOURS) {

            return "小时";

        }

        return "illegal timeUnit args";

    }

    private String getIdForSingle(JoinPoint joinPoint, Object[] args) {

        if (Objects.nonNull(args) && args.length > 0) {

            MethodSignature signature = (MethodSignature) joinPoint.getSignature();

            Annotation[][] parameterAnnotations = signature.getMethod().getParameterAnnotations();

            if (Objects.isNull(parameterAnnotations)) {

                return null;

            }

            // 循环判断是否有limitkey

            for (int i = 0; i < parameterAnnotations.length; i++) {

                for (Annotation annotation : parameterAnnotations[i]) {

                    if (annotation instanceof LimitKey) {

                        return (String)args[i];

                    }

                }

            }

        }

        return null;

    }

    private String getIdForParamsDTO( Object[] args) throws IllegalAccessException {

        for (Object arg : args) {

            String id = getIdForDto(arg);

            if(StringUtils.isNotEmpty(id)){

                return id;

            }

        }

        return null;

    }

    private String getIdForDto(Object arg) throws IllegalAccessException {

        Field[] fields = arg.getClass().getDeclaredFields();

        if(Objects.nonNull(fields) && fields.length > 0){

            for (Field field : fields) {

                field.setAccessible(true);

                if (field.getType().equals(String.class) && field.isAnnotationPresent(LimitKey.class)) {

                    return (String)field.get(arg);

                }

            }

        }

        return null;

    }

}

@Configuration

public class RedisConfig {

    @Bean

    @SuppressWarnings("unchecked")

    public RedisScript<Long> limitRedisScript() {

        DefaultRedisScript redisScript = new DefaultRedisScript<>();

        redisScript.setScriptSource(new ResourceScriptSource(new ClassPathResource("scripts/redis/limit.lua")));

        redisScript.setResultType(Long.class);

        return redisScript;

    }

}

local key = KEYS[1]

local now = tonumber(ARGV[1])

local limitTimeLengthMills = tonumber(ARGV[2])

local removeScore = tonumber(ARGV[3])

local max = tonumber(ARGV[4])

redis.call('ZREMRANGEBYSCORE',key,0,removeScore)

local current = tonumber(redis.call('ZCARD',key))

local next = current+1

if next>max then

    return 0

else

    redis.call('ZADD',key,now,now)

    redis.call('PEXPIRE',key,limitTimeLengthMills)

    return next

end

@ApiOperation("分布式ip限流")

@RedisRateLimiter(max = 1,limitType = RedisRateLimiter.LimitType.IP,timeLimitLength = 1,timeLimitLengthUnit = TimeUnit.SECONDS)

@GetMapping("/test2")

public ResultDTO test2() {

    log.info("【test2】被执行了。。。。。");

    return ResultDTO.ok("成功访问到api [2]~");

}

@ApiOperation("分布式关键字限流")

@RedisRateLimiter(max = 1,limitType = RedisRateLimiter.LimitType.GENERAL,timeLimitLength = 1,timeLimitLengthUnit = TimeUnit.SECONDS)

@GetMapping("/test3/{limitKey}")

public ResultDTO test3(@LimitKey @ApiParam(value = "限流的key", required = true) @PathVariable("limitKey") String limitKey) {

    log.info("【test3】被执行了。。。。。");

    return ResultDTO.ok("成功访问到api [3]~");

}

2021-06-28 14:22:58.324  INFO 20212 --- [io-8080-exec-10] c.rock.demo.aspect.RedisRateLimitAspect  : 【limit:RedisLimitController.test3:111】在 1秒 内访问 1 次

2021-06-28 14:22:58.325  INFO 20212 --- [io-8080-exec-10] c.r.d.controller.RedisLimitController    : 【test3】被执行了。。。。。

2021-06-28 14:22:58.892 ERROR 20212 --- [nio-8080-exec-1] c.rock.demo.aspect.RedisRateLimitAspect  : 【limit:RedisLimitController.test3:111】在 1秒 内已达到访问上限，当前接口上限 1

2021-06-28 14:22:58.894 ERROR 20212 --- [nio-8080-exec-1] o.a.c.c.C.[.[.[/].[dispatcherServlet]    : Servlet.service() for servlet [dispatcherServlet] in context with path [] threw exception [Request processing failed; nested exception is java.lang.RuntimeException: 手速太快了，慢点儿吧~] with root cause

java.lang.RuntimeException: 手速太快了，慢点儿吧~

    at com.rock.demo.aspect.RedisRateLimitAspect.pointCut(RedisRateLimitAspect.java:98) ~[classes/:na]

    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[na:1.8.0_271]

    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[na:1.8.0_271]

    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[na:1.8.0_271]

    at java.lang.reflect.Method.invoke(Method.java:498) ~[na:1.8.0_271]

    at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:644) ~[spring-aop-5.2.14.RELEASE.jar:5.2.14.RELEASE]

    at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:626) ~[spring-aop-5.2.14.RELEASE.jar:5.2.14.RELEASE]

    at org.springframework.aop.aspectj.AspectJMethodBeforeAdvice.before(AspectJMethodBeforeAdvice.java:44) ~[spring-aop-5.2.14.RELEASE.jar:5.2.14.RELEASE]

    at org.springframework.aop.framework.adapter.MethodBeforeAdviceInterceptor.invoke(MethodBeforeAdviceInterceptor.java:55) ~[spring-aop-5.2.14.RELEASE.jar:5.2.14.RELEASE]

    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:175) ~[sp