JavaWeb过滤器详解

  • 格式:pdf
  • 大小:117.70 KB
  • 文档页数:5

JavaWeb过滤器详解

过滤器是什么玩意?

所谓过滤器,其实就是⼀个服务端组件,⽤来截取⽤户端的请求与响应信息。

过滤器的应⽤场景:

1.对⽤户请求进⾏统⼀认证,保证不会出现⽤户账户安全性问题

2.编码转换,可在服务端的过滤器中设置统⼀的编码格式,避免出现乱码

3.对⽤户发送的数据进⾏过滤替换

4.转换图像格式

5.对响应的内容进⾏压缩

其中,第1,2场景经常涉及。

login.jsp

<%@ page language="java" import="java.util.*" contentType="text/html; charset=utf-8"%>

<%

String path = request.getContextPath();

String basePath = request.getScheme()+"://"+request.getServerName()+":"+request.getServerPort()+path+"/";

%>

My JSP 'login.jsp' starting page

⽤户名:

密码:

success.jsp

<%@ page language="java" import="java.util.*" pageEncoding="utf-8" contentType="text/html; charset=utf-8"%>

<%

String path = request.getContextPath();

String basePath = request.getScheme()+"://"+request.getServerName()+":"+request.getServerPort()+path+"/";

%>

My JSP 'index.jsp' starting page

failure.jsp

<%@ page language="java" import="java.util.*" contentType="text/html; charset=utf-8"%>

<%

String path = request.getContextPath();

String basePath = request.getScheme()+"://"+request.getServerName()+":"+request.getServerPort()+path+"/";

%>

My JSP 'login.jsp' starting page

登录失败,请检查⽤户名或密码!

LoginFilter.java

package com.cityhuntshou.filter;

import java.io.IOException;

import javax.servlet.Filter;

import javax.servlet.FilterChain;

import javax.servlet.FilterConfig;

import javax.servlet.ServletException;

import javax.servlet.ServletRequest;

import javax.servlet.ServletResponse;

import javax.servlet.http.HttpServletRequest;

import javax.servlet.http.HttpServletResponse;

import javax.servlet.http.HttpSession;

public class LoginFilter implements Filter {

private FilterConfig config;

public void destroy() {

}

public void doFilter(ServletRequest arg0, ServletResponse arg1,

FilterChain arg2) throws IOException, ServletException {

HttpServletRequest request = (HttpServletRequest) arg0;

HttpServletResponse response = (HttpServletResponse) arg1;

HttpSession session = request.getSession();

//过滤器实际应⽤场景之⼆-----编码转换

String charset = config.getInitParameter("charset");

if(charset == null)

{

charset = "UTF-8";

}

request.setCharacterEncoding(charset);

String noLoginPaths = config.getInitParameter("noLoginPaths");

if(noLoginPaths != null)

{

String[] strArray = noLoginPaths.split(";");

for(int i = 0; i < strArray.length; i++)

{

//空元素,放⾏

if(strArray[i] == null || "".equals(strArray[i]))

continue;

if(request.getRequestURI().indexOf(strArray[i]) != -1)

{

arg2.doFilter(arg0, arg1);

return;

}

}

}

if(request.getRequestURI().indexOf("login.jsp") != -1

|| request.getRequestURI().indexOf("LoginServlet") != -1)

{

arg2.doFilter(arg0, arg1);

return;

}

if(session.getAttribute("username") != null)

{

arg2.doFilter(arg0, arg1);

}

else

{

response.sendRedirect("login.jsp");

}

}

public void init(FilterConfig arg0) throws ServletException {

config = arg0;

}

}

LoginServlet.java

package com.cityhuntshou.servlet;

import java.io.IOException;

import java.io.PrintWriter;

import javax.servlet.ServletException;

import javax.servlet.http.HttpServlet;

import javax.servlet.http.HttpServletRequest;

import javax.servlet.http.HttpServletResponse;

import javax.servlet.http.HttpSession;

public class LoginServlet extends HttpServlet {

/**

* Constructor of the object.

*/

public LoginServlet() {

super();

}

/**

* Destruction of the servlet.

*/

public void destroy() {

super.destroy(); // Just puts "destroy" string in log

// Put your code here

}

/**

* The doGet method of the servlet.

*

* This method is called when a form has its tag value method equals to get.

*

* @param request the request send by the client to the server

* @param response the response send by the server to the client

* @throws ServletException if an error occurred

* @throws IOException if an error occurred

*/

public void doGet(HttpServletRequest request, HttpServletResponse response)

throws ServletException, IOException {