8.1、拦截器
1、概述
过滤器与拦截器的区别:拦截器是AOP思想的具体应用
过滤器
-
servlet规范中的一部分,任何java web工程都可以使用
-
在url-pattern中配置了/*之后,可以对所有要访问的资源进行拦截
拦截器
-
拦截器是SpringMVC框架自己的,只有使用了SpringMVC框架的工程才能使用
-
拦截器只会拦截访问的控制器方法, 如果访问的是jsp/html/css/image/js是不会进行拦截的
2、自定义拦截器
想要自定义拦截器,必须实现 HandlerInterceptor 接口
流程
- 新建一个Moudule , springmvc-07-Interceptor , 添加web支持
- 配置web.xml 和 spring-mvc.xml 文件
web.xml
<?xml version="1.0" encoding="UTF-8"?>
<web-app xmlns="http://xmlns.jcp.org/xml/ns/javaee"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee http://xmlns.jcp.org/xml/ns/javaee/web-app_4_0.xsd"
version="4.0">
<!-- 配置前端控制器 -->
<servlet>
<servlet-name>DispatcherServlet</servlet-name>
<servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
<init-param>
<param-name>contextConfigLocation</param-name>
<param-value>classpath:spring-mvc.xml</param-value>
</init-param>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet-mapping>
<servlet-name>DispatcherServlet</servlet-name>
<url-pattern>/</url-pattern>
</servlet-mapping>
<!-- 配置过滤器 -->
<filter>
<filter-name>encoding</filter-name>
<filter-class>org.springframework.web.filter.CharacterEncodingFilter</filter-class>
<init-param>
<param-name>encoding</param-name>
<param-value>utf-8</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>encoding</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
</web-app>
spring-mvc.xml
<?xml version="1.0" encoding="UTF-8"?>
<beans xmlns="http://www.springframework.org/schema/beans"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:context="http://www.springframework.org/schema/context"
xmlns:mvc="http://www.springframework.org/schema/mvc"
xsi:schemaLocation="http://www.springframework.org/schema/beans
http://www.springframework.org/schema/beans/spring-beans.xsd
http://www.springframework.org/schema/context
http://www.springframework.org/schema/context/spring-context.xsd
http://www.springframework.org/schema/mvc
http://www.springframework.org/schema/mvc/spring-mvc.xsd">
<!-- 自动扫描包,将所有注解类交给IOC容器管理 -->
<context:component-scan base-package="com.jl.controller"/>
<!-- 开启mvc的注解驱动-->
<mvc:annotation-driven>
<!-- 解决Jackson乱码 -->
<mvc:message-converters register-defaults="true">
<bean class="org.springframework.http.converter.StringHttpMessageConverter">
<constructor-arg value="UTF-8"/>
</bean>
<bean class="org.springframework.http.converter.json.MappingJackson2HttpMessageConverter">
<property name="objectMapper">
<bean class="org.springframework.http.converter.json.Jackson2ObjectMapperFactoryBean">
<property name="failOnEmptyBeans" value="false"/>
</bean>
</property>
</bean>
</mvc:message-converters>
</mvc:annotation-driven>
<!-- 视图解析器-->
<bean id="internalResourceViewResolver" class="org.springframework.web.servlet.view.InternalResourceViewResolver">
<property name="prefix" value="/WEB-INF/views"/>
<property name="suffix" value=".jsp"/>
</bean>
<!-- 拦截器配置-->
<mvc:interceptors>
<mvc:interceptor>
<!-- 拦截下边的所有请求 -->
<mvc:mapping path="/**"/>
<bean class="com.jl.config.MyInterceptor"/>
</mvc:interceptor>
</mvc:interceptors>
</beans>
- 编写一个拦截器MyInterceptor.java
package com.jl.config;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
public class MyInterceptor implements HandlerInterceptor {
// return true 执行下一个拦截器,放行
// return false 不执行下一个拦截器
@Override
public boolean preHandle(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, Object o) throws Exception {
System.out.println("================执行前=============");
return true;
}
@Override
public void postHandle(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, Object o, ModelAndView modelAndView) throws Exception {
}
@Override
public void afterCompletion(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, Object o, Exception e) throws Exception {
}
}
3、案例操作==>验证用户是否登录 (认证用户)
实现思路
-
有一个登陆页面,需要写一个controller访问页面。
-
登陆页面有一提交表单的动作。需要在controller中处理。判断用户名密码是否正确。如果正确,向session中写入用户信息。返回登陆成功。
-
拦截用户请求,判断用户是否登陆。如果用户已经登陆。放行, 如果用户未登陆,跳转到登陆页面
测试:
1、编写登录页面login.jsp
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<html>
<head>
<title>Title</title>
</head>
<%--在WEB-INF下的所有页面或者资源,只能通过controller,或者servlet进行访问--%>
<h1>请先登录</h1>
<body>
<form action="${pageContext.request.contextPath}/user/login" method="post">
用户名: <input type="text" name="username">
密码: <input type="text" name="password">
<input type="submit" value="提交">
</form>
</body>
</html>
2、编写登陆成功的主页面
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<html>
<head>
<title>Title</title>
</head>
<body>
<h1>首页</h1>
<span>${username}</span>
<p>
<a href="${pageContext.request.contextPath}/user/goOut">注销</a>
</p>
</body>
</html>
3、在登陆页面留出接口
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<html>
<head>
<title>$Title$</title>
</head>
<body>
<h1><a href="${pageContext.request.contextPath}/user/toLogin">请登录</a> </h1>
<h1><a href="${pageContext.request.contextPath}/user/success">首页</a> </h1>
</body>
</html>
4、编写controller层业务
package com.jl.controller;
import org.springframework.stereotype.Controller;
import org.springframework.ui.Model;
import org.springframework.web.bind.annotation.RequestMapping;
import javax.servlet.http.HttpSession;
@Controller
@RequestMapping("/user")
public class LoginController {
// 登录信息提交
@RequestMapping("/login")
public String login(HttpSession session, String username, String password, Model model){
// 登录之后将用户信息存入到Session中
session.setAttribute("userInfo",username);
model.addAttribute("username",username);
return "success";
}
// 注销用户
@RequestMapping("/goOut")
public String goOut(HttpSession session, String username, String password, Model model){
// 移除session
session.removeAttribute("userInfo");
return "success";
}
// 跳转到登录成功的主页面
@RequestMapping("/success")
public String toMain(){
return "success";
}
// 跳转到登录页面
@RequestMapping("/toLogin")
public String toLogin(){
return "login";
}
}
5、编写拦截器
package com.jl.config;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
public class LoginInterceptor implements HandlerInterceptor {
@Override
public boolean preHandle(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, Object o) throws Exception {
HttpSession session = httpServletRequest.getSession();
// session里边存放着信息,放行
if (session.getAttribute("userInfo") != null){
return true;
}
// 已经在登录页面,放行
if (httpServletRequest.getRequestURI().contains("toLogin")){
return true;
}
if (httpServletRequest.getRequestURI().contains("login")){
return true;
}
// 如果没有登录
httpServletRequest.getRequestDispatcher("/WEB-INF/views/login.jsp").forward(httpServletRequest,httpServletResponse);
return false;
}
@Override
public void postHandle(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, Object o, ModelAndView modelAndView) throws Exception {
}
@Override
public void afterCompletion(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, Object o, Exception e) throws Exception {
}
}
6、在spring-mvc.xml的配置文件中注册拦截器
<mvc:interceptor>
<!-- 拦截下边的所有请求 -->
<mvc:mapping path="/**"/>
<bean class="com.jl.config.LoginInterceptor"/>
</mvc:interceptor>
思路总结:
- 首先访问index.jsp页面时,如果点击请登录,会显示输入用户名和密码,点击首页,是同样的效果,这是拦截器的作用
- 输入用户名和密码后,再次访问index.jsp页面,再次点击首页,会直接跳转到登录成功的页面,这是因为登录之后,将信息存入到了Session里边
- 点击注销时,会先调用controller的方法去移除session,再次点击后会返回登录页面,此时,再次点击首页,会无法进去,必须先登录
4、案例操作(包含Ajax)
1、在views先编写登录页面login.jsp
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<html>
<head>
<title>Title</title>
<script src="https://cdn.bootcdn.net/ajax/libs/jquery/1.10.0/jquery.min.js"></script>
</head>
<body>
<form id="form">
<input type="text" name="username" id="username" placeholder="请输入用户名">
<input type="text" name="password" id="password" placeholder="请输入密码">
<input type="submit" value="登录" id="btn">
</form>
<script>
$("#btn").click(function () {
$.ajax({
url:"${pageContext.request.contextPath}/user/login",
data: $("#form").serialize(),
type: "post",
success: function (data) {
if (data==="success"){
alert("成功");
window.location.href="${pageContext.request.contextPath}/user/success";
}else{
alert("失败");
window.location.href="${pageContext.request.contextPath}/user/error";
}
}
})
//submit默认会有一个提交行为,加入点击事件后会提交两次,return false; 会在提交一次后就结束
return false;
})
</script>
</body>
</html>
2、编写登录成功页面
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<html>
<head>
<title>Title</title>
<head>
<title>个人中心</title>
</head>
<body>
<h1>你好,${username}</h1>
</body>
</html>
3、编写登录失败页面
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<html>
<head>
<title>Title</title>
</head>
<body>
<h1>请您先登录</h1>
<a href="${pageContext.request.contextPath}/user/login">跳转至登录页面</a>
</body>
</html>
4、你编写controller层业务
package com.jl.controller;
import org.springframework.stereotype.Controller;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.ResponseBody;
import javax.servlet.http.HttpSession;
@Controller
@RequestMapping("/user")
public class TestController {
@GetMapping("/login")
public String toLogin(){
return "login";
}
//@GetMapping 用于跳转页面
@GetMapping("/success")
public String toSuccess(){
return "success";
}
@GetMapping("/error")
public String toError(){
return "error";
}
@PostMapping("/login")
@ResponseBody
public String login(HttpSession session, String username, String password){
System.out.println(username);
if(username.equals("张三") && password.equals("111")){
session.setAttribute("username",username);
return "success";
} else {
return "error";
}
}
}
5、编写拦截器
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
public class InterceptorController implements HandlerInterceptor {
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object o) throws Exception {
//登录页面也会放行
if(request.getRequestURI().contains("goLogin")){
return true;
}
//说明我们在提交登录
if(request.getRequestURI().contains("login")){
return true;
}
HttpSession session = request.getSession();
if (session.getAttribute("username") != null){
return true;
} else {
request.setAttribute("message","请先登录");
request.getRequestDispatcher("/WEB-INF/views/error.jsp").forward(request,response);
return false;
}
}
@Override
public void postHandle(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, Object o, ModelAndView modelAndView) throws Exception {
}
@Override
public void afterCompletion(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, Object o, Exception e) throws Exception {
}
}
6、配置拦截器
<mvc:interceptors>
<mvc:interceptor>
<mvc:mapping path="/**"/>
<bean class="com.jl.config.InterceptorController"/>
</mvc:interceptor>
</mvc:interceptors>
7、测试成功
8.2、文件上传
前端表单要求:为了能上传文件,必须将表单的method设置为POST,并将enctype设置为multipart/form-data
8.2.1、第一种方式
对表单中的 enctype 属性做个详细的说明:
-
application/x-www=form-urlencoded:默认方式,只处理表单域中的 value 属性值,采用这种编码方式的表单会将表单域中的值处理成 URL 编码方式。
-
multipart/form-data:这种编码方式会以二进制流的方式来处理表单数据,这种编码方式会把文件域指定文件的内容也封装到请求参数中,不会对字符编码。
-
text/plain:除了把空格转换为 “+” 号外,其他字符都不做编码处理,这种方式适用直接通过表单发送邮件。
1、导入jar包
<dependency>
<groupId>commons-fileupload</groupId>
<artifactId>commons-fileupload</artifactId>
<version>1.3.3</version>
</dependency>
<dependency>
<groupId>javax.servlet</groupId>
<artifactId>javax.servlet-api</artifactId>
<version>4.0.1</version>
</dependency>
2、配置bean:multipartResolver
注意:这个bena的id必须为:multipartResolver , 否则上传文件会报400的错误!
<!--文件上传配置-->
<bean id="multipartResolver" class="org.springframework.web.multipart.commons.CommonsMultipartResolver">
<!-- 请求的编码格式,必须和jSP的pageEncoding属性一致,以便正确读取表单的内容,默认为ISO-8859-1 -->
<property name="defaultEncoding" value="utf-8"/>
<!-- 上传文件大小上限,单位为字节(10485760=10M) -->
<property name="maxUploadSize" value="10485760"/>
<property name="maxInMemorySize" value="40960"/>
</bean>
3、编写前端页面(狂神的方法)
<form action="/upload" enctype="multipart/form-data" method="post">
<input type="file" name="file"/>
<input type="submit" value="upload">
</form>
4、Controller(狂神的方法)
@Controller
public class FileController {
//@RequestParam("file") 将name=file控件得到的文件封装成CommonsMultipartFile 对象
//批量上传CommonsMultipartFile则为数组即可
@RequestMapping("/upload")
public String fileUpload(@RequestParam("file") CommonsMultipartFile file , HttpServletRequest request) throws IOException {
//获取文件名 : file.getOriginalFilename();
String uploadFileName = file.getOriginalFilename();
//如果文件名为空,直接回到首页!
if ("".equals(uploadFileName)){
return "redirect:/index.jsp";
}
System.out.println("上传文件名 : "+uploadFileName);
//上传路径保存设置
String path = request.getServletContext().getRealPath("/upload");
//如果路径不存在,创建一个
File realPath = new File(path);
if (!realPath.exists()){
realPath.mkdir();
}
System.out.println("上传文件保存地址:"+realPath);
InputStream is = file.getInputStream(); //文件输入流
OutputStream os = new FileOutputStream(new File(realPath,uploadFileName)); //文件输出流
//读取写出
int len=0;
byte[] buffer = new byte[1024];
while ((len=is.read(buffer))!=-1){
os.write(buffer,0,len);
os.flush();
}
os.close();
is.close();
return "redirect:/index.jsp";
}
}
5、编写前端页面(老师教的方法)
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<html>
<head>
<title>$Title$</title>
<%-- <script src="${pageContext.request.contextPath}/js/jquery-1.4.4.min.js"></script>--%>
<script src="https://cdn.bootcdn.net/ajax/libs/jquery/1.10.0/jquery.min.js"></script>
<script>
function show(source){
//将图片的路径分割成数组
var arrs = $(source).val().split("\\");
//取出图片的名称,设置给name输入框
$("#name").val(arrs[arrs.length-1]);
}
</script>
</head>
<body>
<form action="${pageContext.request.contextPath}/upload" method="post" enctype="multipart/form-data">
<input type="text" name="name" id="name"/><br>
<input type="file" name="file" id="file" onchange="show(this)"><br>
<input type="submit" value="上传"><br>
${msg}
</form>
</body>
</html>
6、Controller(老师教的方法)
package com.jl.controller;
import org.apache.commons.io.FileUtils;
import org.springframework.stereotype.Controller;
import org.springframework.ui.Model;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestParam;
import org.springframework.web.context.ServletContextAware;
import org.springframework.web.multipart.MultipartFile;
import javax.servlet.ServletContext;
import java.io.*;
@Controller
public class FileUploadController implements ServletContextAware {
private ServletContext servletContext;
@GetMapping("/upload")
public String upload(){
return "upload";
}
@RequestMapping("/upload")
public String doUpload(String name, @RequestParam("file") MultipartFile file, Model model){
//name:图片的名称
//判断file是否为null
if(!file.isEmpty()){
//不为空才执行上传
try {
//获取文件的字节数组
byte[] bytes = file.getBytes();
//创建file,文件上传之后的位置和名称
File f = new File(servletContext.getRealPath("/upload/") + name);
//写入
FileUtils.writeByteArrayToFile(f,bytes);
//上传成功
model.addAttribute("msg", name + "上传成功!");
} catch (IOException e) {
e.printStackTrace();
//上传失败
model.addAttribute("msg", name + "上传失败!");
}
}
//回到上传的页面
return "upload";
}
public void setServletContext(ServletContext servletContext) {
this.servletContext = servletContext;
}
}
7、测试上传文件,OK!
8.2.2、第二种方式:采用file.Transto 来保存上传的文件
/*
* 采用file.Transto 来保存上传的文件
*/
@RequestMapping("/upload2")
public String fileUpload2(@RequestParam("file") CommonsMultipartFile file, HttpServletRequest request) throws IOException {
//上传路径保存设置
String path = request.getServletContext().getRealPath("/upload");
File realPath = new File(path);
if (!realPath.exists()){
realPath.mkdir();
}
//上传文件地址
System.out.println("上传文件保存地址:"+realPath);
//通过CommonsMultipartFile的方法直接写文件(注意这个时候)
file.transferTo(new File(realPath +"/"+ file.getOriginalFilename()));
return "redirect:/index.jsp";
}
1、前端表单提交地址修改
2、访问提交测试,OK!
8.3、文件下载
文件下载步骤:
- 设置 response 响应头
- 读取文件 – InputStream
- 写出文件 – OutputStream
- 执行操作
- 关闭流 (先开后关)
1、代码
@RequestMapping(value="/download")
public String downloads(HttpServletResponse response ,HttpServletRequest request) throws Exception{
//要下载的图片地址
String path = request.getServletContext().getRealPath("/upload");
String fileName = "基础语法.jpg";
//1、设置response 响应头
response.reset(); //设置页面不缓存,清空buffer
response.setCharacterEncoding("UTF-8"); //字符编码
response.setContentType("multipart/form-data"); //二进制传输数据
//设置响应头
response.setHeader("Content-Disposition",
"attachment;fileName="+URLEncoder.encode(fileName, "UTF-8"));
File file = new File(path,fileName);
//2、 读取文件--输入流
InputStream input=new FileInputStream(file);
//3、 写出文件--输出流
OutputStream out = response.getOutputStream();
byte[] buff =new byte[1024];
int index=0;
//4、执行 写出操作
while((index= input.read(buff))!= -1){
out.write(buff, 0, index);
out.flush();
}
out.close();
input.close();
return null;
}
2、前端
<a href="/download">点击下载</a>