表单重复提交会导致产生脏数据,所以我们在代码中通过后端处理的原理如下:
客户端每次请求都会携带唯一标识token,后端拦截请求并把token+消息头做为redis缓存的key 请求参数作为value,并设置redis过期时间,每次请求取redis中缓存数据做比较即可。(如果没有token可以使用接口url作为key)
自定义注解:RepeatSubmit.java
package com.example.demo.repeat;
import java.lang.annotation.*;
/**
*自定义防止重复提交注解
* @author hk
*/
@Inherited
@Target(ElementType.METHOD)
@Retention(RetentionPolicy.RUNTIME)
@Documented
public @interface RepeatSubmit {
}
拦截抽象类:RepeatSubmitInterceptor.java
@Component
public abstract class RepeatSubmitInterceptor implements HandlerInterceptor {
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception
{
if (handler instanceof HandlerMethod)
{
HandlerMethod handlerMethod = (HandlerMethod) handler;
Method method = handlerMethod.getMethod();
RepeatSubmit annotation = method.getAnnotation(RepeatSubmit.class);
if (annotation != null)
{
if (this.isRepeatSubmit(request))
{
// 返回客户端 不允许重复提交
return false;
}
}
return true;
}
else
{
return true;
}
}
/**
* 验证是否重复提交由子类实现具体的防重复提交的规则
*
* @param request
* @return
* @throws Exception
*/
public abstract boolean isRepeatSubmit(HttpServletRequest request);
}
判断重复提交实现类:SameUrlDataInterceptor.java
@Component
public class SameUrlDataInterceptor extends RepeatSubmitInterceptor{
@Autowired
private RedisCache redisCache;
public final String REPEAT_PARAMS = "repeatParams";
public final String REPEAT_TIME = "repeatTime";
/**
* 间隔时间,单位:秒 默认10秒
*
* 两次相同参数的请求,如果间隔时间大于该参数,系统不会认定为重复提交的数据
*/
private final int intervalTime = 10;
@Override
public boolean isRepeatSubmit(HttpServletRequest request) {
//获取请求参数(此处只写了获取url拼接的参数,如需获取body的参数可参考:https://blog.csdn.net/weixin_43882514/article/details/115626176)
String nowParams = JSONObject.toJSONString(request.getParameterMap());
Map<String, Object> nowDataMap = new HashMap<String, Object>();
nowDataMap.put(REPEAT_PARAMS, nowParams);
nowDataMap.put(REPEAT_TIME, System.currentTimeMillis());
String url = request.getRequestURI();
// 唯一值(没有消息头可以使用请求地址)
//String submitKey = request.getHeader(header);
// 作为存放cache的key值
String submitKey = url;
// 唯一标识(指定key + 消息头)
String cache_repeat_key = "repeat_submit:" + submitKey;
Object sessionObj = redisCache.getCacheObject(cache_repeat_key);
if (sessionObj != null)
{
Map<String, Object> sessionMap = (Map<String, Object>) sessionObj;
if (sessionMap.containsKey(url))
{
Map<String, Object> preDataMap = (Map<String, Object>) sessionMap.get(url);
if (compareParams(nowDataMap, preDataMap) && compareTime(nowDataMap, preDataMap))
{
return true;
}
}
}
Map<String, Object> cacheMap = new HashMap<String, Object>();
cacheMap.put(url, nowDataMap);
redisCache.setCacheObject(cache_repeat_key, cacheMap, intervalTime, TimeUnit.SECONDS);
return false;
}
/**
* 判断参数是否相同
*/
private boolean compareParams(Map<String, Object> nowMap, Map<String, Object> preMap)
{
String nowParams = (String) nowMap.get(REPEAT_PARAMS);
String preParams = (String) preMap.get(REPEAT_PARAMS);
return nowParams.equals(preParams);
}
/**
* 判断两次间隔时间
*/
private boolean compareTime(Map<String, Object> nowMap, Map<String, Object> preMap)
{
long time1 = (Long) nowMap.get(REPEAT_TIME);
long time2 = (Long) preMap.get(REPEAT_TIME);
if ((time1 - time2) < (this.intervalTime * 1000))
{
return true;
}
return false;
}
}
在需要校验重复提交的接口加上@RepeatSubmit注解即可
@PostMapping("/testPost")
@RepeatSubmit
public String testPost(@RequestBody User user) {
return "test";
}