3 天内注册的用户，如果某个时间段内发文超过一定次数，判断为 spam，直接停用账号，并删除其内容

polaris1119 · polaris1119 · commit 996ea6141ea3 · 2021-01-29T10:52:07.000+08:00
diff --git a/http/middleware/sensitive.go b/http/middleware/sensitive.go
@@ -9,6 +9,7 @@ package middleware
 import (
 	"net/http"
 	"strings"
+	"time"
 
 	"github.com/studygolang/studygolang/context"
 	"github.com/studygolang/studygolang/logic"
@@ -23,11 +24,16 @@ import (
 var (
 	titleSensitives   []string
 	contentSensitives string
+
+	midNightSpam []string
+	num          int
 )
 
 func init() {
 	titleSensitives = strings.Split(config.ConfigFile.MustValue("sensitive", "title"), ",")
 	contentSensitives = config.ConfigFile.MustValue("sensitive", "content")
+	midNightSpam = strings.Split(config.ConfigFile.MustValue("spam", "mid_night"), ",")
+	num = config.ConfigFile.MustInt("spam", "num")
 }
 
 // Sensivite 用于 echo 框架的过滤发布敏感词（广告）
@@ -61,6 +67,24 @@ func Sensivite() echo.MiddlewareFunc {
 				return ctx.String(http.StatusOK, `{"ok":0,"error":"对不起，您的账号已被冻结！"}`)
 			}
 
+			// 半夜 spam 控制
+			if num > 0 && len(midNightSpam) == 2 {
+				curHour := time.Now().Hour()
+				startHour := goutils.MustInt(midNightSpam[0])
+				endHour := goutils.MustInt(midNightSpam[1])
+				// 比如 23 ~ 8（不包括 8 点）
+				if startHour > endHour {
+					if curHour >= startHour || curHour < endHour {
+						logic.SpamRecord(context.EchoContext(ctx), user, num)
+					}
+				} else {
+					// 比如 0 ~ 8（不包括 8 点）
+					if curHour >= startHour && curHour < endHour {
+						logic.SpamRecord(context.EchoContext(ctx), user, num)
+					}
+				}
+			}
+
 			if err := next(ctx); err != nil {
 				return err
 			}
diff --git a/logic/common.go b/logic/common.go
@@ -9,13 +9,14 @@ package logic
 import (
 	"errors"
 	"fmt"
-	"github.com/studygolang/studygolang/model"
-	"github.com/studygolang/studygolang/util"
 	"os"
 	"regexp"
 	"strconv"
 	"time"
 
+	"github.com/studygolang/studygolang/model"
+	"github.com/studygolang/studygolang/util"
+
 	"github.com/gorilla/schema"
 	"github.com/polaris1119/goutils"
 	"github.com/polaris1119/logger"
@@ -241,6 +242,32 @@ func NeedCaptcha(user *model.Me) bool {
 	return false
 }
 
+// SpamRecord 控制半夜 Spam
+// 避免误判，只针对最近 3 天内注册的用户
+func SpamRecord(ctx context.Context, user *model.Me, maxNum int) {
+	if time.Now().Add(-3 * 24 * time.Hour).After(user.CreatedAt) {
+		return
+	}
+
+	redis := nosql.NewRedisFromPool()
+	defer redis.Close()
+
+	key := getSpamMidNightNumKey(user.Uid)
+	publishTimes := goutils.MustInt(redis.GET(key))
+	if publishTimes >= maxNum-1 {
+		DefaultUser.UpdateUserStatus(ctx, user.Uid, model.UserStatusOutage)
+
+		// 将用户 IP 加入黑名单
+		DefaultRisk.AddBlackIPByUID(user.Uid)
+
+		DefaultUser.DeleteUserContent(ctx, user.Uid)
+
+		logger.Infoln("uid=", user.Uid, "spam, so delete TA's content")
+	} else {
+		redis.SET(key, publishTimes+1, 86400)
+	}
+}
+
 // incrPublishTimes 增加用户发布次数
 func incrPublishTimes(uid int) {
 	redis := nosql.NewRedisFromPool()
@@ -268,6 +295,10 @@ func getLastPublishTimeKey(uid int) string {
 	return "last:publish:time:user:" + strconv.Itoa(uid)
 }
 
+func getSpamMidNightNumKey(uid int) string {
+	return "spam:mid:night:num:user:" + strconv.Itoa(uid)
+}
+
 func website() string {
 	host := "http://"
 	if WebsiteSetting.OnlyHttps {
