Servlet过滤器是在Java Servlet 规范2.3中定义的,它能够对Servlet容器的请求和响应对象进行检查和修改。
Servlet过滤器本身并不生成请求和响应,他只不过提供过滤作作用。
过滤器的作用:
Servlet过滤器能够在Servlet被调用之前检查Request对象,修改Request Header和Request内容。
Servlet被调用之后检查Response对象,修改Response Header和Response内容。Servlet过滤器负责过滤的Web组件可以是Servlet,JSP和HTML。
Servler过滤器实现了javax.Servlet.Filter的接口;
init(Filter Config)Servlet过滤器的初始化方法,Servlet过滤器实例后将调用这个方法,在这个方法中可以读取web.xml 文件中Servlet过滤器的初始化参数。
destory():Servlet容器在销毁过滤器的实例前调用该方法,在这个方法中可以释放Servlet过滤器占用的资源。
doFilter(ServletRequest ,ServletResponse,FilterChain):完成实际的过滤。
注意:在web.xml中要配置过滤器:
<filter>
<filter-name>CommentFilter</filter-name>
<filter-class>com.javaweb.filter.CommentFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CommentFilter</filter-name>
<url-pattern>/CommentServlet</url-pattern>
</filter-mapping>
comment.jsp
<body>
<form action="CommentServlet" method="post">
username:<input type="text" name="username"><br>
comments:
<textarea name="comment" rows="10" cols="15">
</textarea><br>
<input type="submit" value="submit">
</form>
</body>
CommentServlet.java
import java.io.IOException;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
public class CommentServlet extends HttpServlet
{
@Override
protected void doPost(HttpServletRequest req, HttpServletResponse resp)
throws ServletException, IOException
{
req.getRequestDispatcher("commentResult.jsp").forward(req,resp);
}
}
CommentFilter.java
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
public class CommentFilter implements Filter
{
public void destroy()
{
// TODO Auto-generated method stub
}
public void doFilter(ServletRequest request, ServletResponse response,
FilterChain chain) throws IOException, ServletException
{
HttpServletRequest req = (HttpServletRequest)request;
HttpServletResponse resp = (HttpServletResponse)response;
String username=req.getParameter("username");
String comment = req.getParameter("comment");
username=username.replace("zhang","li");
comment=comment.replace("shengsiyuan","****");
req.setAttribute("username",username);
req.setAttribute("comment",comment);
chain.doFilter(request,response);
}
public void init(FilterConfig filterConfig) throws ServletException
{
// TODO Auto-generated method stub
}
}
commentResult.jsp
<body>
username:<%=request.getAttribute("username") %><br>
comments:<%=request.getAttribute("comment") %>
</body>
Servlet过滤器的工作流程:
当Web客户端向Servlet服务器发送一个request时,首先要先经过Filter1调用chaindoFilter(),掉用完后,经过Filter2调用chaindoFilter()然后到达Servlet调用service()方法,在经过filter2,Filter1把response返回给客户端。
注意:有两个Filter时,web.xml的配置:
<filter>
<filter-name>MyFilter</filter-name>
<filter-class>com.javaweb.filter.MyFilter</filter-class>
</filter>
<filter>
<filter-name>MyFilter2</filter-name>
<filter-class>com.javaweb.filter.MyFilter2</filter-class>
</filter>
<filter-mapping>
<filter-name>MyFilter</filter-name>
<url-pattern>/InfoServlet</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>MyFilter2</filter-name>
<url-pattern>/InfoServlet</url-pattern>
</filter-mapping>
服务器解析这两个Filter时,是按xml中的顺序解析的。
登录过程中这个不需要过滤,处理这个登录请求的主界不需要处理。