告別惡意訪問!Spring Boot 實現 IP 白名單限制的終極指南
作者:編程疏影
本文展示了如何在 Spring Boot 中自定義過濾器實現 IP 白名單功能。從配置讀取到過濾器實現,再到前端頁面的結合,完整覆蓋了開發流程。
在Web開發中,IP白名單是保證系統安全的一種重要機制。通過限制訪問的IP地址范圍,我們可以有效防止未經授權的訪問。本文將詳細講解如何在Spring Boot中自定義過濾器實現IP白名單功能。
項目環境
Spring Boot 版本:3.3
前端技術:Thymeleaf 模板引擎 + jQuery + Bootstrap
包名:com.icoderoad
項目配置
pom.xml 配置
<dependencies>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-web</artifactId>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-configuration-processor</artifactId>
<optional>true</optional>
</dependency>
<dependency>
<groupId>org.projectlombok</groupId>
<artifactId>lombok</artifactId>
</dependency>
<dependency>
<groupId>org.thymeleaf</groupId>
<artifactId>thymeleaf-spring5</artifactId>
</dependency>
<dependency>
<groupId>org.webjars</groupId>
<artifactId>bootstrap</artifactId>
<version>5.2.3</version>
</dependency>
<dependency>
<groupId>org.webjars</groupId>
<artifactId>jquery</artifactId>
<version>3.6.4</version>
</dependency>
</dependencies>application.yaml 配置
ip-whitelist:
allowed-ips:
- 127.0.0.1
- 192.168.1.100自定義過濾器實現
讀取配置類
使用 @ConfigurationProperties 注解讀取配置。
package com.icoderoad.config;
import lombok.Data;
import org.springframework.boot.context.properties.ConfigurationProperties;
import org.springframework.stereotype.Component;
import java.util.List;
@Data
@Component
@ConfigurationProperties(prefix = "ip-whitelist")
public class IpWhitelistConfig {
private List<String> allowedIps;
}自定義過濾器
創建一個過濾器類,用于攔截請求并校驗IP地址。
package com.icoderoad.filter;
import com.icoderoad.config.IpWhitelistConfig;
import jakarta.servlet.Filter;
import jakarta.servlet.FilterChain;
import jakarta.servlet.ServletException;
import jakarta.servlet.ServletRequest;
import jakarta.servlet.ServletResponse;
import jakarta.servlet.http.HttpServletRequest;
import org.springframework.stereotype.Component;
import java.io.IOException;
@Component
public class IpWhitelistFilter implements Filter {
private final IpWhitelistConfig ipWhitelistConfig;
public IpWhitelistFilter(IpWhitelistConfig ipWhitelistConfig) {
this.ipWhitelistConfig = ipWhitelistConfig;
}
@Override
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
HttpServletRequest httpRequest = (HttpServletRequest) request;
String clientIp = httpRequest.getRemoteAddr();
if (ipWhitelistConfig.getAllowedIps().contains(clientIp)) {
chain.doFilter(request, response);
} else {
response.getWriter().write("Access Denied");
}
}
}注冊過濾器
通過配置類注冊過濾器。
package com.icoderoad.config;
import com.icoderoad.filter.IpWhitelistFilter;
import org.springframework.boot.web.servlet.FilterRegistrationBean;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
@Configuration
public class FilterConfig {
@Bean
public FilterRegistrationBean<IpWhitelistFilter> ipWhitelistFilterRegistration(IpWhitelistFilter filter) {
FilterRegistrationBean<IpWhitelistFilter> registrationBean = new FilterRegistrationBean<>();
registrationBean.setFilter(filter);
registrationBean.addUrlPatterns("/*");
return registrationBean;
}
}前端頁面實現
HTML 頁面
<!DOCTYPE html>
<html lang="zh-CN">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>IP 白名單演示</title>
<link rel="stylesheet" >
<script src="http://cdn.jsdelivr.net/npm/jquery@3.6.4/dist/jquery.min.js"></script>
<script src="http://cdn.jsdelivr.net/npm/bootstrap@5.2.3/dist/js/bootstrap.bundle.min.js"></script>
</head>
<body>
<div class="container mt-5">
<h1>IP 白名單功能演示</h1>
<p>如果您看到此頁面,說明您的 IP 地址已被允許訪問。</p>
</div>
</body>
</html>總結
本文展示了如何在 Spring Boot 中自定義過濾器實現 IP 白名單功能。從配置讀取到過濾器實現,再到前端頁面的結合,完整覆蓋了開發流程。通過這種方式,可以輕松實現對系統訪問的安全管控。
責任編輯:武曉燕
來源:
路條編程
