通过学习过滤器的基本概念,现在实战一下,实现一个登陆过滤的小demo
直接上代码
首先是web.xml配置
<?xml version="1.0" encoding="UTF-8"?>
<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:web="http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd" id="WebApp_ID" version="2.5">
<display-name>test-web</display-name>
<welcome-file-list>
<welcome-file>index.html</welcome-file>
<welcome-file>index.htm</welcome-file>
<welcome-file>index.jsp</welcome-file>
<welcome-file>default.html</welcome-file>
<welcome-file>default.htm</welcome-file>
<welcome-file>default.jsp</welcome-file>
</welcome-file-list>
<servlet>
<description></description>
<display-name>LoginServlet</display-name>
<servlet-name>LoginServlet</servlet-name>
<servlet-class>com.hx.test.LoginServlet</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>LoginServlet</servlet-name>
<url-pattern>/LoginServlet</url-pattern>
</servlet-mapping>
<filter>
<filter-name>LoginFilter</filter-name>
<filter-class>com.test.LoginFilter</filter-class>
<init-param>
<!-- 放行页面参数 -->
<param-name>noLoginPaths</param-name>
<param-value>login.jsp;LoginServlet;err.jsp;error.jsp</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>LoginFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
</web-app>
登陆页面
<%@ page language="java" contentType="text/html; charset=UTF-8"
pageEncoding="UTF-8"%>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>Insert title here</title>
</head>
<body>
<form action="<%=request.getContextPath()%>/LoginServlet" method="post">
用户名:<input type="text" name="userName"/>
密码:<input type="password" name="passWord"/>
<input type="submit" value="提交"/>
</form>
</body>
</html>
失败页面
<%@ page language="java" contentType="text/html; charset=UTF-8"
pageEncoding="UTF-8"%>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>Insert title here</title>
</head>
<body>
校验不通过,请检查用户名和密码!
</body>
</html>
成功页面
<%@ page language="java" contentType="text/html; charset=UTF-8"
pageEncoding="UTF-8"%>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>Insert title here</title>
</head>
<body>
校验通过,欢迎登录${userName}
</body>
</html>
Filter过滤器接口实现类
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
public class LoginFilter implements Filter {
//设置初始化参数对象
private FilterConfig config;
public void destroy() {
System.out.println("loginFilter--过滤器销毁");
}
public void doFilter(ServletRequest arg0, ServletResponse arg1,
FilterChain arg2) throws IOException, ServletException {
HttpServletRequest req=(HttpServletRequest)arg0;
HttpServletResponse resp=(HttpServletResponse)arg1;
HttpSession session=req.getSession();
//获取初始化参数
String noLoginPaths=config.getInitParameter("noLoginPaths");
if(noLoginPaths!=null){
String[] strArray=noLoginPaths.split(";");
for (int i = 0; i <= strArray.length-1; i++) {
if(strArray[i]==null || strArray.equals("")){
continue;
}
if(req.getRequestURI().indexOf(strArray[i])!=-1){
//登录界面不需要再过滤 直接放行
arg2.doFilter(arg0, arg1);
return;
}
}
}
if(session.getAttribute("userName")!=null){
arg2.doFilter(arg0, arg1);
}else{
resp.sendRedirect(req.getContextPath()+"/login.jsp");
}
}
public void init(FilterConfig arg0) throws ServletException {
System.out.println("loginFilter--过滤器初始化");
config=arg0;
}
}
servlet类
import java.io.IOException;
import javax.servlet.ServletConfig;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
/**
* Servlet implementation class LoginServlet
*/
public class LoginServlet extends HttpServlet {
private static final long serialVersionUID = 1L;
/**
* @see HttpServlet#HttpServlet()
*/
public LoginServlet() {
super();
// TODO Auto-generated constructor stub
}
/**
* @see Servlet#init(ServletConfig)
*/
public void init(ServletConfig config) throws ServletException {
System.out.println("登录过滤器初始化");
}
/**
* @see HttpServlet#doPost(HttpServletRequest request, HttpServletResponse response)
*/
protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
String userName=request.getParameter("userName");
String password=request.getParameter("passWord");
if("admin".equals(userName)&&"admin".equals(password)){
System.out.println("校验通过");
HttpSession session=request.getSession();
session.setAttribute("userName", userName);
response.sendRedirect(request.getContextPath()+"/sucess.jsp");
}else {
System.out.println("校验不通过");
response.sendRedirect(request.getContextPath()+"/err.jsp");
}
}
}