生成一次验证码-CSDN博客

本文链接：https://blog.csdn.net/changqianger/article/details/45341303

生成一次验证码

做JavaWeb有一项技能是必须掌握的，那就是生成一次验证码，在一点程序上防止恶意登陆和注册等。

这里只写服务端代码，而且生成的验证码简单，较易被机器识别。

下面是例子程序：

package com.heima;

import java.awt.Color;
import java.awt.Font;
import java.awt.Graphics2D;
import java.awt.image.BufferedImage;
import java.io.IOException;
import java.io.OutputStream;
import java.util.Random;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import com.sun.image.codec.jpeg.JPEGCodec;
import com.sun.image.codec.jpeg.JPEGImageEncoder;

public class IdentifyingCode extends HttpServlet {
	
	private static final long serialVersionUID = 3281595309084322989L;

	private static final char[] CHARS = {'2', '3', '4', '5', '6', '7', '8', '9',
		'A', 'B', 'C', 'D', 'E', 'F', 'G', 'H', 'J', 'K', 'L', 
		'M', 'N', 'P', 'Q', 'R', 'S', 'T', 'U', 'V', 'W', 'X', 'Y', 'Z'};
		//生成的随机字符串，不包含0O1I等难以分辨的字符
	
	//生成随机数工具
	private static Random ran = new Random();
	
	//得到随机的字符串，将来显示到图片上
	private static String getRandomString() {
		StringBuilder builder = new StringBuilder();
		for (int i = 0; i < 4; i++) {
			builder.append(CHARS[ran.nextInt(CHARS.length)]);
		}
		return builder.toString();
	}
	
	//得到随机的颜色，用来当作生成图片的背景色
	private static Color getRandomColor() {
		return new Color(ran.nextInt(255), ran.nextInt(255), ran.nextInt(255));
	}
	
	//取背景色的反色，用来作为字体的颜色，背景与字体对比比较明显
	private static Color getReverseColor(Color c) {
		return new Color(255-c.getRed(), 255-c.getGreen(), 255-c.getBlue());
	}
	
	public void doGet(HttpServletRequest request, HttpServletResponse response)
			throws ServletException, IOException {
		//设置文件类型
		response.setContentType("image/jpeg");
		//将得到的随机字符串放入session中，等待验证
		String ranString = getRandomString();
		request.getSession().setAttribute("identifyingCode", ranString);
		
		int width = 100;//生成图片的宽
		int height = 30;//生成图片的高
		
		Color c = getRandomColor();
		Color cr = getReverseColor(c);
		
//		图片
		BufferedImage image = new BufferedImage(width, height, BufferedImage.TYPE_INT_RGB);
		
		Graphics2D graphics = image.createGraphics();
		graphics.setFont(new Font(Font.SANS_SERIF, Font.BOLD, 30));
		graphics.setColor(c);
		graphics.fillRect(0, 0, width, height);
		graphics.setColor(cr);
		graphics.drawString(ranString, 8, 26);
		//随机画50到100个干扰点
		for (int i=0,n=ran.nextInt(50)+50; i < n; i++) {
			graphics.drawRect(ran.nextInt(width), ran.nextInt(height), 1, 1);
		}
		//随机画5到20条与字体相同颜色的干扰线
		for (int i=0,n=ran.nextInt(15)+5; i < n; i++) {
			int x1 = ran.nextInt(width);
			int x2 = ran.nextInt(width);
			int y1 = ran.nextInt(height);
			int y2 = ran.nextInt(height);
			graphics.drawLine(x1, y1, x2, y2);
		}
		
		OutputStream out = response.getOutputStream();
		JPEGImageEncoder encoder = JPEGCodec.createJPEGEncoder(out);
		encoder.encode(image);
		out.flush();
	}
	
	public void doPost(HttpServletRequest request, HttpServletResponse response)
			throws ServletException, IOException {
		this.doGet(request, response);
	}

}

使用时只需将图片的src属性指向这个servlet，就可以得到一个一次的随机验证码，只要在提交表单的时候从session中取出identifyingCode进行验证即可。

<script type="text/javascript">
	function change(){
		var img = document.getElementById("checkcode");
		img.src="/day09/checkCode?time="+new Date().getTime();
	}
</script>

在调用servlet时加入时间戳，强制刷新图片，这样的效果看起来好像还可以，可以满足一般性需要