我的解决方法, 通过Servlet 过滤器 过滤请求
关键在于是如何在Filter取到post里的内容
通过继承javax.servlet.http.HttpServletRequestWrapper;类替换post里的非法字符
1:FormDataXssRequest类
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletRequestWrapper;
/**
* 防xss,替换request
* Created by keygod on 2016/3/10.
*/
public class FormDataXssRequest extends HttpServletRequestWrapper {
/**
* Constructs a request object wrapping the given request.
*
* @param request
* @t