该系统是bilibili上随便找的,一个基于高并发学习的项目,因学校没有高并发场景的项目实践,故借此学习,做一些笔记。许愿明年大厂🙏🏻
SELECT
a.* ,
b .name AS itemName,
(
CASE WHEN (now() BETWEEN a .start_time AND a .end_time AND a .total > 0 )
THEN 1
ELSE 0
END
) AS canKill
FROM item_kill AS a LEFT JOIN item AS b ON b .id = a .item_id
WHERE a .is_active = 1 UPDATE item_kill
SET total = total - 1
WHERE
id = # {killId}public Boolean killItem (Integer killId , Integer userId ) throws Exception {
Boolean result =false ;
//TODO:判断当前用户是否已经抢购过当前商品
if (itemKillSuccessMapper .countByKillUserId (killId ,userId ) <= 0 ){
//TODO:查询待秒杀商品详情
ItemKill itemKill =itemKillMapper .selectById (killId );
//TODO:判断是否可以被秒杀canKill=1?
if (itemKill !=null && 1 ==itemKill .getCanKill () ){
//TODO:扣减库存-减一
int res =itemKillMapper .updateKillItem (killId );
//TODO:扣减是否成功?是-生成秒杀成功的订单,同时通知用户秒杀成功的消息
if (res >0 ){
commonRecordKillSuccessInfo (itemKill ,userId );
result =true ;
}
}
}else {
throw new Exception ("您已经抢购过该商品了!" );
}
return result ;
}虽然确保了不会把库存击穿,但是可能会出现,5个人去抢10个库存,库存为0,但是交易记录只有5条
SELECT
a.* ,
b .name AS itemName,
(CASE WHEN (now() BETWEEN a .start_time AND a .end_time )
THEN 1
ELSE 0
END) AS canKill
FROM item_kill AS a LEFT JOIN item AS b ON b .id = a .item_id
WHERE a .is_active = 1 AND a .id = # {id} AND a.total>0 UPDATE item_kill
SET total = total - 1
WHERE id = # {killId} AND total>0 但是setIfAbsent和expire是分开的,在中间宕机会出现死锁问题
public Boolean killItemV3 (Integer killId , Integer userId ) throws Exception {
Boolean result =false ;
if (itemKillSuccessMapper .countByKillUserId (killId ,userId ) <= 0 ){
//TODO:借助Redis的原子操作实现分布式锁-对共享操作-资源进行控制
ValueOperations valueOperations =stringRedisTemplate .opsForValue ();
//TODO: 以 killId+userId+"-RedisLock"作为key,value可以随意,生成快就行
final String key =new StringBuffer ().append (killId ).append (userId ).append ("-RedisLock" ).toString ();
final String value =RandomUtil .generateOrderCode ();
Boolean cacheRes =valueOperations .setIfAbsent (key ,value ); //luna脚本提供“分布式锁服务”,就可以写在一起
//TOOD:redis部署节点宕机了,如果在这里宕机会出现死锁问题
if (cacheRes ){
//TODO: 设置成功后再为key设置过期时间
stringRedisTemplate .expire (key ,30 , TimeUnit .SECONDS );
try {
ItemKill itemKill =itemKillMapper .selectByIdV2 (killId );
if (itemKill !=null && 1 ==itemKill .getCanKill () && itemKill .getTotal ()>0 ){
int res =itemKillMapper .updateKillItemV2 (killId );
if (res >0 ){
commonRecordKillSuccessInfo (itemKill ,userId );
result =true ;
}
}
}catch (Exception e ){
throw new Exception ("还没到抢购日期、已过了抢购时间或已被抢购完毕!" );
}finally {
//TODO:释放锁
if (value .equals (valueOperations .get (key ).toString ())){
stringRedisTemplate .delete (key );
}
}
}
}else {
throw new Exception ("Redis-您已经抢购过该商品了!" );
}
return result ;
}1.4使用redisson分布式锁,相比于zookeeper,还是redisson更快 public Boolean killItemV4 (Integer killId , Integer userId ) throws Exception {
Boolean result =false ;
final String lockKey =new StringBuffer ().append (killId ).append (userId ).append ("-RedissonLock" ).toString ();
RLock lock =redissonClient .getLock (lockKey );
try {
Boolean cacheRes =lock .tryLock (30 ,10 ,TimeUnit .SECONDS );
if (cacheRes ){
//TODO:核心业务逻辑的处理
if (itemKillSuccessMapper .countByKillUserId (killId ,userId ) <= 0 ){
ItemKill itemKill =itemKillMapper .selectByIdV2 (killId );
if (itemKill !=null && 1 ==itemKill .getCanKill () && itemKill .getTotal ()>0 ){
int res =itemKillMapper .updateKillItemV2 (killId );
if (res >0 ){
commonRecordKillSuccessInfo (itemKill ,userId );
result =true ;
}
}
}else {
throw new Exception ("redisson-您已经抢购过该商品了!" );
}
}
}finally {
lock .unlock ();
//lock.forceUnlock();
}
return result ;
}public Boolean killItemV5 (Integer killId , Integer userId ) throws Exception {
Boolean result =false ;
// TODO: 在注册中心注册唯一的锁,类似于文件夹树形结构
InterProcessMutex mutex =new InterProcessMutex (curatorFramework ,pathPrefix +killId +userId +"-lock" );
try {
if (mutex .acquire (10L ,TimeUnit .SECONDS )){
//TODO:核心业务逻辑
if (itemKillSuccessMapper .countByKillUserId (killId ,userId ) <= 0 ){
ItemKill itemKill =itemKillMapper .selectByIdV2 (killId );
if (itemKill !=null && 1 ==itemKill .getCanKill () && itemKill .getTotal ()>0 ){
int res =itemKillMapper .updateKillItemV2 (killId );
if (res >0 ){
commonRecordKillSuccessInfo (itemKill ,userId );
result =true ;
}
}
}else {
throw new Exception ("zookeeper-您已经抢购过该商品了!" );
}
}
}catch (Exception e ){
throw new Exception ("还没到抢购日期、已过了抢购时间或已被抢购完毕!" );
}finally {
if (mutex !=null ){
mutex .release ();
}
}
return result ;
}public static String generateOrderCode (){
//TODO: 时间戳 + N位随机数流水号
return dateFormatOne .format (DateTime .now ().toDate ()) + generateNumber (4 );
}
public static String generateNumber (final int num ){
// 在高并发下用buffer保证安全
StringBuffer sb = new StringBuffer ();
for (int i = 1 ; i <= num ; i ++){
sb .append (random .nextInt (9 ));
}
return sb .toString ();
}public static void main (String [] args ) {
SnowFlake snowFlake = new SnowFlake (2 , 3 );
long start = System .currentTimeMillis ();
for (int i = 0 ; i < 1000000 ; i ++) {
System .out .println ("当前生成的有序数字串:" +snowFlake .nextId ());
}
System .out .println ("总共耗时:" +(System .currentTimeMillis () - start ));
}用shiro下的SecurityUtils查看是否已注册,将原始password作md5数字签名,userName和newPsd作token登陆
if (!SecurityUtils .getSubject ().isAuthenticated ()){
String newPsd =new Md5Hash (password ,env .getProperty ("shiro.encrypt.password.salt" )).toString ();
UsernamePasswordToken token =new UsernamePasswordToken (userName ,newPsd );
SecurityUtils .getSubject ().login (token );
}SecurityUtils .getSubject ().logout ();
return "login" ;在ShiroFilterFactoryBean中,配置声明
@ Bean
public ShiroFilterFactoryBean shiroFilterFactoryBean (){
ShiroFilterFactoryBean bean =new ShiroFilterFactoryBean ();
bean .setSecurityManager (securityManager ());
bean .setLoginUrl ("/to/login" );
bean .setUnauthorizedUrl ("/unauth" );
Map <String , String > filterChainDefinitionMap =new HashMap <>();
filterChainDefinitionMap .put ("/to/login" ,"anon" );
filterChainDefinitionMap .put ("/**" ,"anon" );
filterChainDefinitionMap .put ("/kill/execute/*" ,"authc" );
filterChainDefinitionMap .put ("/item/detail/*" ,"authc" );
bean .setFilterChainDefinitionMap (filterChainDefinitionMap );
return bean ;
} 3.4 自定义realm用于认证授权,把信息放入session中 /**
* 认证-登录
* @param authenticationToken
* @return
* @throws AuthenticationException
*/
@ Override
protected AuthenticationInfo doGetAuthenticationInfo (AuthenticationToken authenticationToken ) throws AuthenticationException {
UsernamePasswordToken token = (UsernamePasswordToken ) authenticationToken ;
String userName =token .getUsername ();
String password =String .valueOf (token .getPassword ());
log .info ("当前登录的用户名={} 密码={} " ,userName ,password );
User user =userMapper .selectByUserName (userName );
if (user ==null ){
throw new UnknownAccountException ("用户名不存在!" );
}
if (!Objects .equals (1 ,user .getIsActive ().intValue ())){
throw new DisabledAccountException ("当前用户已被禁用!" );
}
if (!user .getPassword ().equals (password )){
throw new IncorrectCredentialsException ("用户名密码不匹配!" );
}
SimpleAuthenticationInfo info =new SimpleAuthenticationInfo (user .getUserName (),password ,getName ());
setSession ("uid" ,user .getId ());
return info ;
}
/**
* 将key与对应的value塞入shiro的session中-最终交给HttpSession进行管理(如果是分布式session配置,那么就是交给redis管理)
* @param key
* @param value
*/
private void setSession (String key ,Object value ){
Session session =SecurityUtils .getSubject ().getSession ();
if (session !=null ){
session .setAttribute (key ,value );
session .setTimeout (sessionKeyTimeOut );
}
}