domain
package com.java.admin.domain;
public class User {
private String username;
private String password;
private int grade;
public User(String username, String password, int grade) {
super();
this.username = username;
this.password = password;
this.grade = grade;
}
public String getUsername() {
return username;
}
public void setUsername(String username) {
this.username = username;
}
public String getPassword() {
return password;
}
public void setPassword(String password) {
this.password = password;
}
public int getGrade() {
return grade;
}
public void setGrade(int grade) {
this.grade = grade;
}
@Override
public String toString() {
return "User [username=" + username + ", password=" + password
+ ", grade=" + grade + "]";
}
}
service
package com.java.admin.service;
import java.util.HashMap;
import java.util.Map;
import com.java.admin.domain.User;
public class UserService {
//所有用户保存在map中
private static Map<String, User> users = new HashMap<String, User>();
//在Map中保存用户
static {
users.put("王小强", new User("王小强", "123456", 1));
users.put("王小红", new User("王小红", "123456", 2));
}
/**
* 登录方法
* @param username
* @param password
* @return
*/
public User login(String username, String password) {
//如果用户名不存在,返回null
User user = users.get(username);
//如果用户名不存在,返回null
if(user == null) {
return null;
}
//如果密码不对返回null,如果密码正确返回用户
return user.getPassword().equals(password) ? user : null;
}
}
servlet
package com.java.admin.servlet;
import java.io.IOException;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import com.java.admin.domain.User;
import com.java.admin.service.UserService;
public class LoginServlet extends HttpServlet {
private UserService userService = new UserService();
public void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
request.setCharacterEncoding("utf-8");
response.setContentType("text/html;charset=utf-8");
String username = request.getParameter("username");
String password = request.getParameter("password");
String identifyCode = request.getParameter("identifyCode");
String code = (String) request.getSession().getAttribute("code");
User user = userService.login(username, password);
if (user == null) {
request.setAttribute("msg", "用户名或密码错误");
request.getRequestDispatcher("/login.jsp").forward(request, response);
} else if(!identifyCode.equalsIgnoreCase(code)) {
request.setAttribute("msg", "验证码错误");
request.getRequestDispatcher("/login.jsp").forward(request, response);
} else {
request.getSession().setAttribute("user", user);
request.getRequestDispatcher("/index.jsp").forward(request, response);
}
}
}
package com.java.admin.servlet;
import java.awt.Color;
import java.awt.Font;
import java.awt.Graphics2D;
import java.awt.image.BufferedImage;
import java.io.IOException;
import java.util.Random;
import javax.servlet.ServletException;
import javax.servlet.ServletOutputStream;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import com.sun.image.codec.jpeg.JPEGCodec;
import com.sun.image.codec.jpeg.JPEGImageEncoder;
public class IdentifyServlet extends HttpServlet {
public static final char[] CHARS = {'0', '1', '2', '3', '4', '5', '6', '7', '8', '9', 'A' , 'B', 'C',
'D', 'E', 'F', 'G', 'H', 'I', 'J', 'K', 'L', 'M', 'N', 'O', 'P',
'Q', 'R', 'S', 'T', 'U', 'V', 'W', 'X', 'Y', 'Z'};
//生成随机数
public static Random random = new Random();
//获取刘伟随机数
public static String getRandomString() {
StringBuffer sb = new StringBuffer();
for (int i=0; i<4; i++) {
sb.append(CHARS[random.nextInt(CHARS.length)]);
}
return sb.toString();
}
//获取随机的颜色
public static Color getRandomColor() {
return new Color(random.nextInt(255), random.nextInt(255), random.nextInt(255));
}
//返回某颜色的反色
public static Color getReverseColor(Color color) {
return new Color(255 - color.getRed(), 255 - color.getGreen(), 255 - color.getBlue());
}
public void doGet(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
//设置输出类型
response.setContentType("image/jpeg");
//获取随机字符串并放到session域中
String randomString = getRandomString();
request.getSession(true).setAttribute("code", randomString);
//设置图片的宽跟高
int width = 80;
int height = 20;
//随机颜色用于背景色
Color color = getRandomColor();
//反色用于前景色
Color reverse = getReverseColor(color);
//创建彩色图片
BufferedImage bi = new BufferedImage(width, height, BufferedImage.TYPE_INT_RGB);
//获取绘图对象
Graphics2D g = bi.createGraphics();
g.setFont(new Font(Font.SANS_SERIF, Font.BOLD, 16));
// g.setColor(color);
g.fillRect(0, 0, width, height);
g.setColor(reverse);
g.drawString(randomString, 18, 20);
//画最多100个噪声点
for (int i=0; i<50; i++) {
g.drawRect(random.nextInt(width), random.nextInt(height), 1, 1);
}
//转换成jpeg
ServletOutputStream out = response.getOutputStream();
JPEGImageEncoder encoder = JPEGCodec.createJPEGEncoder(out);
//对图片进行编码
encoder.encode(bi);
out.flush();
}
}
filter
package com.java.admin.filter;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import com.java.admin.domain.User;
public class LoginUserFilter implements Filter {
public void destroy() {
}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
response.setContentType("text/html;charset=utf-8");
HttpServletRequest req = (HttpServletRequest) request;
User user = (User) req.getSession().getAttribute("user");
if(user == null) {
response.getWriter().print("您还没有登录");
return ;
}
chain.doFilter(request, response);
}
public void init(FilterConfig fConfig) throws ServletException {
}
}
package com.java.admin.filter;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import com.java.admin.domain.User;
public class LoginAdminFilter implements Filter {
public void destroy() {
}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
response.setContentType("text/html;charset=utf-8");
HttpServletRequest req = (HttpServletRequest) request;
User user = (User) req.getSession().getAttribute("user");
if(user==null) {
response.getWriter().print("您还没有登录");
return ;
}
if(user.getGrade() < 2) {
response.getWriter().print("您不是管理员");
return ;
}
chain.doFilter(request, response);
}
public void init(FilterConfig fConfig) throws ServletException {
}
}
登录界面
<%@ page language="java" import="java.util.*" pageEncoding="utf-8"%>
<%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %>
<%
String path = request.getContextPath();
String basePath = request.getScheme()+"://"+request.getServerName()+":"+request.getServerPort()+path+"/";
%>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<base href="<%=basePath%>">
<title>My JSP 'index.jsp' starting page</title>
<meta http-equiv="pragma" content="no-cache">
<meta http-equiv="cache-control" content="no-cache">
<meta http-equiv="expires" content="0">
<meta http-equiv="keywords" content="keyword1,keyword2,keyword3">
<meta http-equiv="description" content="This is my page">
<script type="text/javascript">
function reloadImage() {
document.getElementById('btn').disabled = true;
document.getElementById('identify').src = 'IdentifyServlet?ts=' + new Date().getTime();
}
</script>
</head>
<body>
<div align="center">
<p align="center" style="font-weight: 900; color: red">${msg }</p>
<table>
<tr>
<td>
<form method="post" action="<c:url value='/LoginServlet'/>">
<table>
<tr>
<td>用户名:</td>
<td><input type="text" name="username"></td>
</tr>
<tr>
<td>密 码:</td>
<td><input type="password" name="password"></td>
</tr>
<tr>
<td><img src="IdentifyServlet" id="identify" οnlοad="btn.disabled=false;"/></td>
<td><input type="text" name="identifyCode"><input type="button" value="换张图片" id="btn" οnclick="reloadImage()"></td>
</tr>
<tr>
<td colspan="2" align="center"><input type="submit" value="登录"></td>
</tr>
</table>
</form>
</td>
</tr>
</table>
</div>
</body>
</html>
主界面
<%@ page language="java" import="java.util.*" pageEncoding="UTF-8"%>
<%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %>
<%
String path = request.getContextPath();
String basePath = request.getScheme()+"://"+request.getServerName()+":"+request.getServerPort()+path+"/";
%>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<base href="<%=basePath%>">
<title>My JSP 'index.jsp' starting page</title>
<meta http-equiv="pragma" content="no-cache">
<meta http-equiv="cache-control" content="no-cache">
<meta http-equiv="expires" content="0">
<meta http-equiv="keywords" content="keyword1,keyword2,keyword3">
<meta http-equiv="description" content="This is my page">
</head>
<body>
<div align="center">
<h1>主页</h1>
<h3>${user.username }</h3>
<hr/>
<a href="<c:url value='/login.jsp'/>">登录</a><br/>
<a href="<c:url value='/user/user.jsp'/>">用户页面</a><br/>
<a href="<c:url value='/admin/admin.jsp'/>">管理员页面</a>
</div>
</body>
</html>
配置文件
<?xml version="1.0" encoding="UTF-8"?>
<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:web="http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd" version="3.0">
<display-name></display-name>
<servlet>
<servlet-name>identifyCode</servlet-name>
<servlet-class>com.java.admin.servlet.IdentifyServlet</servlet-class>
</servlet>
<servlet>
<servlet-name>LoginServlet</servlet-name>
<servlet-class>com.java.admin.servlet.LoginServlet</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>identifyCode</servlet-name>
<url-pattern>/IdentifyServlet</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>LoginServlet</servlet-name>
<url-pattern>/LoginServlet</url-pattern>
</servlet-mapping>
<filter>
<filter-name>LoginUserFilter</filter-name>
<filter-class>com.java.admin.filter.LoginUserFilter</filter-class>
</filter>
<filter>
<filter-name>LoginAdminFilter</filter-name>
<filter-class>com.java.admin.filter.LoginAdminFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>LoginUserFilter</filter-name>
<url-pattern>/user/*</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>LoginAdminFilter</filter-name>
<url-pattern>/admin/*</url-pattern>
</filter-mapping>
<welcome-file-list>
<welcome-file>index.jsp</welcome-file>
</welcome-file-list>
</web-app>