4.W3PermissionInterceptor.java
public class W3PermissionInterceptor implements ActionHaveForwardInterceptor{
public ActionForward afterAction(Action action, ActionMapping mapping,
ActionForm actionForm, HttpServletRequest request, HttpServletResponse response)
throws IOException, ServletException {
return null;
}
public ActionForward beforeAction(Action action, ActionMapping mapping,
ActionForm actionForm, HttpServletRequest request, HttpServletResponse response)
throws IOException, ServletException {
ActionForward aw = null;
try {
//用户直接访问页面,登录检查
boolean root=isRoot(request.getRequestURI(),true);
if(root)
{
return null;
}
HttpSession session=getSession(request);
boolean isLogin=checkLogin(session);
if(isLogin)
{
aw=new ActionForward("/index.jsp");
return aw;
}
else
{
aw=new ActionForward("/login.jsp");
return aw;
}
} catch (Exception e) {
aw=new ActionForward("/login.jsp");
return aw;
}
}
protected HttpSession getSession(HttpServletRequest request)
{
SessionCrossoverCheck sessionCheck = new SessionCrossoverCheck();
HttpSession session = request.getSession();
return sessionCheck.checkSession(session,request);
}
private boolean checkLogin(HttpSession session)
{
if(null == session)
{
return false;
}else
{
Object o = session.getAttribute("loingUserInfo");
return (o!=null);
}
}
/**
* 根据URL判定是否是根目录
* @param url
* @return
*/
public boolean isRoot(String url,boolean isEn)
{
boolean isresult=false;
/*if(null==url||url.length()==0){return false;}
int code = isEn?2:3;
int count = 0;
for(int i=0;i<url.length();i++)
{
if("/".equals(url.substring(i, i+1)))
{
count++;
}
}
return count==code;*/
if(null==url||url.length()==0){return isresult;}
for(int i=0;i<url.length();i++)
{
if(url.contains("login.do"))
{
isresult=true;
}
}
return isresult;
}
5.SessionCrossoverCheck
public class SessionCrossoverCheck {
public HttpSession checkSession(HttpSession session,
HttpServletRequest request) {
if (session == null) {
return null;
}
TEmp emp = (TEmp) session.getAttribute("loingUserInfo");
String loginuser = request.getParameter("username");
if ((loginuser == null || loginuser.length() == 0) && null == emp) {
session.removeAttribute("loingUserInfo"); // 清除用户信息
return null;
}
if (emp != null && emp.getEName() != null
&& emp.getEName().equalsIgnoreCase(loginuser)) {
return session;
} else {
System.out
.println("W3 Console SessionCrossoverCheck Error: UserInfoBean's [uid = "
+ emp.getEName()
+ "] from HttpSession is not equal to Cookie's [uid = "
+ loginuser + "]");
}
return session;
}