使用过滤器禁止未授权的IP访问站点是过滤器的常见应用之一。原理是将要禁止的IP地址在web.xml中配置,过滤器中用init()方法获取web.xml中禁止的IP地址,将该值保存到过滤器的属性中,供doFilter()使用。
示例
1.创建一个IP过滤的Filter类FilterIP.java
package filter;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.RequestDispatcher;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
public class FilterIP implements Filter {
private String FilteredIP;//存放被过滤的IP
@Override
public void init(FilterConfig conf) throws ServletException { //初始化过滤器
FilteredIP=conf.getInitParameter("FilteredIP");
if(FilteredIP==null)FilteredIP="";
}
@Override
public void doFilter(ServletRequest request, ServletResponse response,
FilterChain chain) throws IOException, ServletException { //过滤操作
String remoteIP=request.getRemoteAddr();//获取客户端地址
if(remoteIP.equals(FilteredIP)){
RequestDispatcher dispatcher=request.getRequestDispatcher("Errorinfo.jsp");
//读出本地IP,将其与需要过滤掉的IP比较,若相同,就转移到错误处理页面
dispatcher.forward(request, response);
}else{
chain.doFilter(request, response);
}
}
@Override
public void destroy() {
// TODO Auto-generated method stub
}
}
2.在web.xml文件中配置如下代码
<filter>
<filter-name>FilterIP</filter-name>
<filter-class>filter.FilterIP</filter-class>
<init-param>
<param-name>FilteredIP</param-name>
<param-value>127.0.0.1</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>FilterIP</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>