zoukankan      html  css  js  c++  java
  • zuul网关

    Zuul路由网关简介及基本使用

    简介

    Zuul API路由网关服务简介

    请看上图,这里的API 路由网关服务 由Zuul实现,主要就是对外提供服务接口的时候,起到了请求的路由和过滤作用,也因此能够隐藏内部服务的接口细节,从来有利于保护系统的安全性;

    路由配置

    Zuul 路由配置

    我们新建一个module  microservice-zuul-3001

    这里我们的zuul也注册到eureka服务里,端口3001;

    我们修改下Hosts,专门为zuul搞个本地域名映射 

    C:WindowsSystem32driversetc

    hosts文件 加下:

    完整pom.xml

    <?xml version="1.0" encoding="UTF-8"?>
    <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
             xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 https://maven.apache.org/xsd/maven-4.0.0.xsd">
        <modelVersion>4.0.0</modelVersion>
        <parent>
            <groupId>com.liuwenwu</groupId>
            <artifactId>springcloud</artifactId>
            <version>1.0-SNAPSHOT</version>
        </parent>
        <artifactId>microservice-zuul-3001</artifactId>
    
        <properties>
            <java.version>1.8</java.version>
        </properties>
    
        <dependencies>
            <dependency>
                <groupId>com.liuwenwu</groupId>
                <artifactId>microservice-common</artifactId>
            </dependency>
    
            <dependency>
                <groupId>org.springframework.boot</groupId>
                <artifactId>spring-boot-starter-web</artifactId>
            </dependency>
    
            <dependency>
                <groupId>org.springframework.boot</groupId>
                <artifactId>spring-boot-starter-test</artifactId>
                <scope>test</scope>
            </dependency>
    
            <dependency>
                <groupId>org.springframework.cloud</groupId>
                <artifactId>spring-cloud-starter-eureka</artifactId>
            </dependency>
            <!-- actuator监控 -->
            <dependency>
                <groupId>org.springframework.boot</groupId>
                <artifactId>spring-boot-starter-actuator</artifactId>
            </dependency>
    
            <!-- hystrix容错 -->
            <dependency>
                <groupId>org.springframework.cloud</groupId>
                <artifactId>spring-cloud-starter-hystrix</artifactId>
            </dependency>
            <dependency>
                <groupId>org.springframework.cloud</groupId>
                <artifactId>spring-cloud-starter-config</artifactId>
            </dependency>
    
            <!--zuul网关-->
            <dependency>
                <groupId>org.springframework.cloud</groupId>
                <artifactId>spring-cloud-starter-zuul</artifactId>
            </dependency>
    
        </dependencies>
    
        <build>
            <plugins>
                <plugin>
                    <groupId>org.springframework.boot</groupId>
                    <artifactId>spring-boot-maven-plugin</artifactId>
                </plugin>
            </plugins>
        </build>
    
    </project>

     application.yml

    server:
      port: 3001
      context-path: /
    spring:
      application:
        name: microservice-zuul
    eureka:
      instance:
        instance-id: microservice-zuul:3001
        prefer-ip-address: true
      client:
        service-url:
          defaultZone: http://eureka2001.liuwenwu.com:2001/eureka/,http://eureka2002.liuwenwu.com:2002/eureka/,http://eureka2003.liuwenwu.com:2003/eureka/
    info:
      groupId: com.liuwenwu.springcloud
      artifactId: microservice-zuul-3001
      version: 1.0-SNAPSHOT
      userName: http://liuwenwu.com
      phone: 123456

    建一个主启动类:ZuulApplication_3001

    加下@EnableZuulProxy注解

    package com.liuwenwu.microservicezuul3001;
    
    import org.springframework.boot.SpringApplication;
    import org.springframework.boot.autoconfigure.SpringBootApplication;
    import org.springframework.boot.autoconfigure.jdbc.DataSourceAutoConfiguration;
    import org.springframework.boot.autoconfigure.orm.jpa.HibernateJpaAutoConfiguration;
    import org.springframework.cloud.netflix.zuul.EnableZuulProxy;
    
    @SpringBootApplication(exclude={DataSourceAutoConfiguration.class, HibernateJpaAutoConfiguration.class})
    @EnableZuulProxy
    
    public class MicroserviceZuul3001Application {
    
        public static void main(String[] args) {
            SpringApplication.run(MicroserviceZuul3001Application.class, args);
        }
    
    }

    我们测试下:

    启动三个eureka 然后再启动下一个1004,1005,1006服务,以及 zuul网关服务;

    我们用 http://zuul.liuwenwu.com:3001/microservice-student/student/hystrix  域名+端口+服务名称+请求地址 也能请求到数据;

    说明我们的路由基本配置OK

    Zuul路由映射配置

    上面是zuul的简单使用,从接口地址很轻易的就暴露了服务提供者的唯一标识名microservice-student;有安全风险,我们需要将其隐藏;

    ignored-services的作用是将原来的服务提供者唯一标识名禁用;

    Prefix的作用是给服务加前缀

    yml文件中添加以下配置:

    zuul:
      routes:
        studentServer.serviceId: microservice-student
        studentServer.path: /studentServer/**
      ignored-services: "*"
      prefix: /liuwenwu

    配置完毕后做测试

    对应的配置会出现上面的错误页面,这是正常现象。

    Zuul请求过滤配置

    比如我们登录某个系统 需要身份验证,用户名密码啥的;

    我们请求服务,也可以来设置身份验证,也就是过滤非法请求;Zuul通过ZuulFilter过滤器实现;

    一般具体实现的话 每次经过Zuul服务网关 我们都对带来的token进行有效性验证;

    我们先定义一个 AccessFilter类:

    package com.liuwenwu.microservicezuul3001.filter;
    
    import com.netflix.zuul.ZuulFilter;
    import com.netflix.zuul.context.RequestContext;
    import com.netflix.zuul.exception.ZuulException;
    import org.apache.log4j.Logger;
    
    import javax.servlet.http.HttpServletRequest;
    
    public class AccessFilter extends ZuulFilter {
    
        Logger logger=Logger.getLogger(AccessFilter.class);
    
        /**
         * 判断该过滤器是否要被执行
         */
        @Override
        public boolean shouldFilter() {
            return true;
        }
    
        /**
         * 过滤器的具体执行逻辑
         */
        @Override
        public Object run() throws ZuulException {
            RequestContext ctx = RequestContext.getCurrentContext();
            HttpServletRequest request = ctx.getRequest();
            String parameter = request.getParameter("accessToken");
            logger.info(request.getRequestURL().toString()+" 请求访问");
            if(parameter==null){
                logger.error("accessToken为空!");
                ctx.setSendZuulResponse(false);
                ctx.setResponseStatusCode(401);
                ctx.setResponseBody("{"result":"accessToken is empty!"}");
                return null;
            }
            //  token判断逻辑
            logger.info(request.getRequestURL().toString()+" 请求成功");
            return null;
        }
    
        /**
         * 过滤器的类型 这里用pre,代表会再请求被路由之前执行
         */
        @Override
        public String filterType() {
            return "pre";
        }
    
        /**
         * 过滤器的执行顺序
         */
        @Override
        public int filterOrder() {
            return 0;
        }
    
    }

    然后再开启下 Filter配置:

    package com.liuwenwu.microservicezuul3001.config;
    
    import com.liuwenwu.microservicezuul3001.filter.AccessFilter;
    import org.springframework.context.annotation.Bean;
    import org.springframework.context.annotation.Configuration;
    
    @Configuration
    public class ZuulConfig {
    
        @Bean
        public AccessFilter accessFilter(){
            return new AccessFilter();
        }
    }

    测试结果如下

  • 相关阅读:
    随机六位数验证码生成
    泛型反反射方法显示
    前台分页控件用法
    asp.net api后台
    项目开发基础概念
    认证Authentication、权限Permissions、限流Throttling、过滤Filtering、排序、分页Pagination、异常处理Exceptions、自动生成接口文档、Xadmin
    视图基类、视图扩展类、GenericAPIView的视图子类、视图集基类ViewSet、action属性、路由Routers
    序列化组件的使用、反序列化、全局钩子和局部钩子的使用、raise_exception参数、modelserializer进行数据保存时的问题
    day61 Linux:权限管理、rpm软件包管理、yum工具
    day60 Linux压缩与打包、用户管理、用户提权sudo、grep、sed、awk、sort、uniq
  • 原文地址:https://www.cnblogs.com/liuwenwu9527/p/11934600.html
Copyright © 2011-2022 走看看