《JavaWeb---防恶意注册应用---输出随机验证图片》

最新推荐文章于 2023-12-14 23:55:30 发布

网安小明

最新推荐文章于 2023-12-14 23:55:30 发布

阅读量1.3k

点赞数

分类专栏： Java Web 文章标签： random input image string 浏览器 action

本文链接：https://blog.csdn.net/w695050167/article/details/7968612

版权

Java Web 专栏收录该内容

22 篇文章 0 订阅

订阅专栏

输出随机图片就是为了防止恶意注册

因此要对图片做相应的处理，避免被某些程序识别

//生产图片的Servlet
package com.fenghuo.drawp;

import java.awt.Color;
import java.awt.Font;
import java.awt.Graphics;
import java.awt.Graphics2D;
import java.awt.image.BufferedImage;
import java.io.IOException;
import java.util.Random;

import javax.imageio.ImageIO;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

public class Draw extends HttpServlet {

	/**
	 * Title:  输出随机的验证图片
	 * Copyright: Copyright (c) 2012 
	 * @author 烽火
	 * @version 1.0 2012-09-11
	 *
	 */
	private static final long serialVersionUID = 2900568393447169269L;
	public static final int WIDTH = 120;
	public static final int HEIGHT = 35;

	public void doGet(HttpServletRequest request, HttpServletResponse response)
	throws ServletException, IOException {
		
		//在内存中构建一幅图片
		BufferedImage image = new BufferedImage(WIDTH, HEIGHT, BufferedImage.TYPE_INT_RGB);

		Graphics g = image.getGraphics();

		//设置背景色
		setBackGround(g);

		//设置边框
		setBorder(g);

		//画干扰线
		drawRandomLine(g);

		//写随机数
		drawRandomNum((Graphics2D) g);

		//图形写给浏览器
		response.setContentType("image/jpeg");
		ImageIO.write(image, "jpg", response.getOutputStream());
		
		//控制浏览器不要缓存
		//测试的时候未成功，不知道什么原因。望高手指出
		response.setDateHeader("expries", -1);
		response.setHeader("Cache-Control", "no-cache");
		response.setHeader("Pragma", "no-cache");
	}

	private void drawRandomNum(Graphics2D g) {
		
		g.setColor(Color.RED);
		g.setFont(new Font("宋体", Font.BOLD, 20));
		
		//其实在此加汉字也可以，作为程序员，你懂得
		//生成Unicode码的程序我已写好，参考http://blog.csdn.net/w695050167/article/details/7968561
		//由于原程序代码太多此处只做简单的事例
		String chinese = "\u4e19\u5de6\u5389\u53f3\u77f3\u5e03\u9f99\u5e73\u706d\u8f67\u4e1c\u5361\u5317\u5360\u4e1a";
		
		int x = 5;
		for (int i = 0; i < 4; i++){
			
			//生成旋转的角度
			int theta = new Random().nextInt()%30;
			//得到写到画板上的数据
			String str = chinese.charAt(new Random().nextInt(chinese.length()))+"";
			//旋转画板
			g.rotate(theta*Math.PI/180, x, 20);
			g.drawString(str, x, 20);
			//将画板复原
			g.rotate(-theta*Math.PI/180, x, 20);
			x += 30;
		}
	}

	private void drawRandomLine(Graphics g) {
		g.setColor(Color.GREEN);
		for (int i = 0; i < 5; i++){
			//生成随机直线的两点坐标
			int x1 = new Random().nextInt(WIDTH);
			int y1 = new Random().nextInt(HEIGHT);
			
			int x2 = new Random().nextInt(WIDTH);
			int y2 = new Random().nextInt(HEIGHT);
			
			g.drawLine(x1, y1, x2, y2);
		}
	}

	private void setBorder(Graphics g) {
		g.setColor(Color.BLUE);
		g.drawRect(1, 1, WIDTH-2, HEIGHT-2);
	}

	private void setBackGround(Graphics g) {
		g.setColor(Color.WHITE);
		g.fillRect(0, 0, WIDTH, HEIGHT);
	}

	public void doPost(HttpServletRequest request, HttpServletResponse response)
	throws ServletException, IOException {
		doGet(request, response);
	}

}

注册页面，生成随机图片

<!DOCTYPE html>
<html>
  <head>
    <title>register.html</title>
	
    <meta http-equiv="keywords" content="keyword1,keyword2,keyword3">
    <meta http-equiv="description" content="this is my page">
    <meta http-equiv="content-type" content="text/html; charset=UTF-8">
    
    <!-- 点击图片后重新加载图片 -->
    
    <script type="text/javascript">
    	function changeImage(img){
    		img.src = img.src + "?" + new Date().getTime();
    	}
    </script>
    
  </head>
  
  <body>
  <form action="" method="post">
  
  	用户名：<input type="text" name="username"><br/>
  	密码：<input type="text" name="password"><br/>
  	验证码：<img src="/myweb/servlet/Draw" οnclick="changeImage(this)" alt="换一张" style="cursor:hand"/><br/>
  	<input type="text" name="chechcode"><br/>
  	<input type="submit" value="注册">
  
  </form>
  
  </body>
</html>