struts2从2.5版本开始,为了提升安全性,默认开启了严格的方法调用。
那么如何解决action动态调用不能正常访问呢?
1、首先,开启动态调用;
<constant name="struts.enable.DynamicMethodInvocation" value="true"></constant>
2、必须在package中设置 strict-method-invocation="false";
完整代码如下:
struts.xml
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE struts PUBLIC
"-//Apache Software Foundation//DTD Struts Configuration 2.5//EN"
"http://struts.apache.org/dtds/struts-2.5.dtd">
<struts>
<!-- 开启动态方法调用 -->
<constant name="struts.enable.DynamicMethodInvocation" value="true"></constant>
<package name="user" extends="struts-default" strict-method-invocation="false">
<action name="user" class="com.hanhai.web.action.UserAction">
<result name="success">/success.jsp</result>
</action>
</package>
</struts>
UserAction.java
package com.hanhai.web.action;
import com.opensymphony.xwork2.ActionSupport;
public class UserAction extends ActionSupport {
private static final long serialVersionUID = 1L;
public String addUser() {
System.out.println("增加用户");
return SUCCESS;
}
public String updateUser() {
System.out.println("更新用户");
return SUCCESS;
}
public String deleteUser() {
System.out.println("删除用户");
return SUCCESS;
}
public String findUser() {
System.out.println("查找用户");
return SUCCESS;
}
}
user.jsp
<%@ page language="java" contentType="text/html; charset=UTF-8" pageEncoding="UTF-8"%>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>Struts2 action动态调用</title>
</head>
<body>
<a href="${pageContext.request.contextPath}/user!addUser">增加用户</a>
<hr>
<a href="${pageContext.request.contextPath}/user!updateUser">更新用户</a>
<hr>
<a href="${pageContext.request.contextPath}/user!deleteUser">删除用户</a>
<hr>
<a href="${pageContext.request.contextPath}/user!findUser">查找用户</a>
</body>
</html>