本文介绍了一个用于检查客户端IP是否在授权范围内的Java方法。通过解析请求头获取客户端真实IP,并利用MySQL的INET_ATON函数判断该IP是否位于指定的起始和结束IP范围内。若不在范围内,则返回访问受限提示。
if (!"".equals(user.start_ip) && !"".equals(user.end_ip)) {
String ip = "";
Header header = request.headers.get("x-real-ip");
if (header != null) {
ip = (ip.split("TYPE"))[0].trim();
} else {
ip = request.remoteAddress;
}
System.out.println(ip + "*********");
boolean accessible = models.ZhmhUser.checkAccessible(ip, user);
if (!accessible) {
renderJSON(ResultInfo.iplimited(ip));
}
}
/**
* 检索ip地址是否在系统的ip授权列表中, 并检查是否超出授权访问的有效期
* @author wlj
* @date 2014-8-7 下午04:08:20
* @param ip
* @param user
* @return
*/
public static boolean checkAccessible(String ip, ZhmhUser user) {
String sql = "select count(0) from zhmh_user where inet_aton(?)>=inet_aton(start_ip) and inet_aton(?)<=inet_aton(end_ip) ";
sql += " and id=? ";
System.out.println(sql);
int count = SqlHelper.queryForInt(sql, ip, ip, user.id);
return count > 0;
}
String ip = "";
Header header = request.headers.get("x-real-ip");
if (header != null) {
ip = (ip.split("TYPE"))[0].trim();
} else {
ip = request.remoteAddress;
}
System.out.println(ip + "*********");
boolean accessible = models.ZhmhUser.checkAccessible(ip, user);
if (!accessible) {
renderJSON(ResultInfo.iplimited(ip));
}
}
/**
* 检索ip地址是否在系统的ip授权列表中, 并检查是否超出授权访问的有效期
* @author wlj
* @date 2014-8-7 下午04:08:20
* @param ip
* @param user
* @return
*/
public static boolean checkAccessible(String ip, ZhmhUser user) {
String sql = "select count(0) from zhmh_user where inet_aton(?)>=inet_aton(start_ip) and inet_aton(?)<=inet_aton(end_ip) ";
sql += " and id=? ";
System.out.println(sql);
int count = SqlHelper.queryForInt(sql, ip, ip, user.id);
return count > 0;
}
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
