aklast/common/libs/IpFilter.php

<?php

namespace common\libs;

use Yii;
use yii\base\Component;
use yii\web\BadRequestHttpException;
use yii\web\Application;
use MaxMind\Db\Reader;
use MaxMind\Db\InvalidDatabaseException;
use MaxMind\Db\AddressNotFoundException;
use common\helpers\LoggerTool;
class IpFilter
{
    /**
     * @throws BadRequestHttpException
     */
    public function frontApiCheck($isLogin = false)
    {
        $request = Yii::$app->request;
        $getParams = Yii::$app->request->get();
        $postParams = Yii::$app->request->post();
        $remoteAddr = $_SERVER['REMOTE_ADDR']; // 获取用户 IP 地址

        // 登录接口不需要验证
        if (!self::remoteAddrCall($remoteAddr)) {
            $logPreix = $isLogin ? 'nc_ip_filter_login' : 'nc_ip_filter_other';
            $getLog = $logPreix . (is_array($getParams) ? json_encode($getParams) : $getParams);
            $postLog = $logPreix . (is_array($postParams) ? json_encode($postParams) : $postParams);
            LoggerTool::error($getLog);
            LoggerTool::error($postLog);
            throw new \Exception('用户名或者密码错误');
        }

        return true;
    }

    /**
     * @throws AddressNotFoundException
     * @throws InvalidDatabaseException
     */
    public static function remoteAddrCall($remoteAddr): bool
    {
        // 是否有效的IP
        if (!filter_var($remoteAddr, FILTER_VALIDATE_IP)) {
            return false;
        }

        // 替换为 GeoLite2 数据库文件的实际路径
        $dbPath = \Yii::getAlias('@common/runtime/geoLite//GeoLite2-Country.mmdb');
        // 初始化 MaxMind 数据库读取器
        $reader = new \GeoIp2\Database\Reader($dbPath);
        // 查询 IP 地址的地理位置
        $record = $reader->country($remoteAddr);
        // 返回国家名称
        $countryName = $record->country->name;
        if (!in_array($countryName, ['China'])) {
            return false;
        }

        return true;
    }
}