fix ClientAuthenticationFilter.checkTimestamp

[liuzhijiang]

What's the purpose of this PR

return false when timestamp - currentTimeMills > 60 seconds

Which issue(s) this PR fixes:

Fixes #

Brief changelog

replace the code x <= TIMESTAMP_INTERVAL with x >= -TIMESTAMP_INTERVAL && x <= TIMESTAMP_INTERVAL

Follow this checklist to help us incorporate your contribution quickly and easily:

• Read the Contributing Guide before making this pull request.
• Write a pull request description that is detailed enough to understand what the pull request does, how, and why.
• Write necessary unit tests to verify the code.
• Run mvn clean test to make sure this pull request doesn't break anything.

[nobodyiam]

Please add a unit test for this logic in case it is mistakenly modified in the future

[liuzhijiang]

Unit Test 已添加

[codecov-io]

Codecov Report

Merging #3029 into master will not change coverage.
The diff coverage is 100.00%.

@@            Coverage Diff            @@
##             master    #3029   +/-   ##
=========================================
  Coverage     51.25%   51.25%           
- Complexity     2230     2231    +1     
=========================================
  Files           432      432           
  Lines         13382    13382           
  Branches       1374     1374           
=========================================
  Hits           6859     6859           
  Misses         6047     6047           
  Partials        476      476           

Impacted Files	Coverage Δ	Complexity Δ
...nfigservice/filter/ClientAuthenticationFilter.java	91.30% <100.00%> (ø)	14.00 <0.00> (+1.00)

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update c81dd6d...eb4a927. Read the comment docs.

[nobodyiam]

LGTM

[zhaolin81]

why not make TIMESTAMP_INTERVAL configable，1 minute is too strick

[nobodyiam]

@zhaolin81 I think it's better to make it configurable.

[zhaolin81]

agreed,i can't enable this func cause my app and apollo config server's time diff 2minutes.

…

------------------&nbsp;原始邮件&nbsp;------------------ 发件人: "ctripcorp/apollo" <[email protected]&gt;; 发送时间:&nbsp;2020年8月22日(星期六) 下午2:48 收件人:&nbsp;"ctripcorp/apollo"<[email protected]&gt;; 抄送:&nbsp;"鱼，鱼熟了"<[email protected]&gt;;"Mention"<[email protected]&gt;; 主题:&nbsp;Re: [ctripcorp/apollo] fix ClientAuthenticationFilter.checkTimestamp (#3029) @zhaolin81 I think it's better to make it configurable. — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub, or unsubscribe.

[nisiyong]

Sorry to see this PR now.

This implement was written by me, I once realized that TIMESTAMP_INTERVAL=60s is not the best way, and I agreed with what @zhaolin81 said, to make it configurable!

I don't agree with this PR solution. Maybe we can polish this logic soon.