session:是保存在服务器端的一个对象,客户端是没有的
1.原理:session是有服务端产生的,保存在服务端,由服务端进行维护。以对象的形式保存,每个对象都有一个对应的id,将来就是根据id来确定唯一的session
2.创建HttpSession
3.往session中存储数据,此时啥数据都可以,其实里边是一个object对象
4.获取session数据,先测试一下
`package com.briup.stste;
import java.io.IOException;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
public class SessionServlet extends HttpServlet {
private static final long serialVersionUID = 1L;
protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
HttpSession session = request.getSession();
System.out.println(session);
}
protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
doGet(request, response);
}
}
cookie中的JSESSIONID和当前session的id保持一致
package com.briup.stste;
import java.io.IOException;
import java.io.PrintWriter;
import javax.servlet.ServletException;
import javax.servlet.http.Cookie;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
public class SessionServlet extends HttpServlet {
private static final long serialVersionUID = 1L;
protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
request.setCharacterEncoding("utf-8");
response.setCharacterEncoding("utf-8");
response.setContentType("text/html;charset=utf-8");
PrintWriter out = response.getWriter();
//创建或者获取session
HttpSession session = request.getSession();
System.out.println(session.getId());
System.out.println();
//获取cookie值
Cookie[] cookies = request.getCookies();
//为了防止异常先查是不是空
if(cookies!=null) {
for (Cookie cookie : cookies) {
String key = cookie.getName();
String value = cookie.getValue();
//直接去拿 因为返回的就是key 和 value 所以不用去用key 拿value
out.println(key+" = "+value);
}
}else {
out.println("当前没有cookies数据");
}
//创建cookie
Cookie c1 = new Cookie("username", "张三");
Cookie c2 = new Cookie("password", "123456");
//发送之前给对应对象设置cookie有效期 单位:秒
c1.setMaxAge(20*60);//设置20分钟,因为单位是秒
c2.setMaxAge(20*60);
//发送给客户端
response.addCookie(c1);
response.addCookie(c2);
out.flush();
out.close();
}
protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
doGet(request, response);
}
}
其实这个对我们来说意义不大
5.可以给session设置一个值,并取出来,虽然不这样用,但是我们只是测试,别处用的时候我们就可以取,这就主要考虑的是session的声明周期,我们才知道啥时候我们可以一直用我们的session
session.setAttribute(“name”, “张三”);
String name = (String )session.getAttribute(“name”);
6.下面我们做一个测试,用一个servlet存一个session对象,用另一个去取
存:
package com.briup.stste;
import java.io.IOException;
import java.io.PrintWriter;
import javax.servlet.ServletException;
import javax.servlet.http.Cookie;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
public class SessionServlet extends HttpServlet {
private static final long serialVersionUID = 1L;
protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
request.setCharacterEncoding("utf-8");
response.setCharacterEncoding("utf-8");
response.setContentType("text/html;charset=utf-8");
PrintWriter out = response.getWriter();
//创建或者获取session
HttpSession session = request.getSession();
//getsession()这个方法 如果没有session他会给你创一个
//在调用的时候给他传一个Boolean型的参数,false的时候 你没有我就不给你创建了 true的话和默认一样,所以没有意义
System.out.println(session.getId());
System.out.println();
session.setAttribute("name", "张三");
out.println("<html><a href='Session2Servlet'>跳转</a></html>");
out.flush();
out.close();
}
protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
doGet(request, response);
}
}
取:
package com.briup.stste;
import java.io.IOException;
import java.io.PrintWriter;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
/**
* Servlet implementation class Session2Servlet
*/
public class Session2Servlet extends HttpServlet {
private static final long serialVersionUID = 1L;
protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
request.setCharacterEncoding("utf-8");
response.setCharacterEncoding("utf-8");
response.setContentType("text/html;charset=utf-8");
PrintWriter out = response.getWriter();
//获取session
HttpSession session = request.getSession();
System.out.println(session);
//获取session所存的数据
String name = (String)session.getAttribute("name");
System.out.println("session2 :"+name);
out.flush();
out.close();
}
protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
doGet(request, response);
}
}
此处需要提醒一下,即使是servlet2用重定向过去,也能用,那内部跳转就更能用了
7.session失效
7.1.关闭浏览器
7.2.手动使session失效,通过调用invalid()方法,肯定是在获取以前就用一下这个方法
session.invalidate();//session失效
response.sendRedirect(“Session2Servlet”);
7.3当session的不活动时间超过session的最大存活期,也会失效(时间是不会累积的,必须一次性的发呆)
默认的时间是30分钟,(有默认那么就可以修改)
7.3.1修改源码,单位是秒(不合适)
session.setMaxInactiveInterval(60);
7.3.2在配置文件中去配置(当前项目的配置文件,也就是web.xml)默认单位 分钟
加上:
1
这是我等了一分钟后和前一分钟的比较,明显是不一样了