思想:
1.主页
<body>
<%--是否已经登录 --%>
<c:choose>
<c:when test="${empty sessionScope.user}">
<c:if test="${not empty error}">
${error}
<c:remove var="error" scope="session"/> 错误信息显示完,刷新时不再显示
</c:if>
<br/>
<form name="xx" method="post"action="<c:url value='/LoginServlet'/>">
Name:<input name="name"><br/>
<input type="submit">
</form>
</c:when>
<c:otherwise>
你好:${user}<br/>
<a href="<c:url value='/jsps/a.jsp'/>">AAA</a><br/>
<a href="<c:url value='/jsps/c.jsp'/>">CCC</a><br/>
</c:otherwise>
</c:choose>
2.LoginServlet
public class LoginServlet extendsHttpServlet {
public voiddoPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
request.setCharacterEncoding("UTF-8");
String name =request.getParameter("name");
if(name!=null&& !name.trim().equals("")){
request.getSession().setAttribute("user",name);
}else{
request.getSession().setAttribute("error", "your pwd and name error..");
}
response.sendRedirect(request.getContextPath()+"/index.jsp");
}
}
3.过滤器,查看session中是否有值
public void doFilter(ServletRequest request, ServletResponseresponse,
FilterChain chain) throws IOException, ServletException{
// 验证在session中是否存在数据
HttpServletRequest req = (HttpServletRequest) request;
if (req.getSession().getAttribute("user") == null) {
req.getSession().setAttribute("error", "请你先登录...");
HttpServletResponse resp = (HttpServletResponse) response;
resp.sendRedirect(req.getContextPath() + "/index.jsp");
} else {
chain.doFilter(request, response);
}
}