异常处理:getReader()/getInputStream() has already been called for this request

最新推荐文章于 2024-06-12 11:20:39 发布
最新推荐文章于 2024-06-12 11:20:39 发布
阅读量2.1k 收藏 1
点赞数
分类专栏: JAVA 文章标签: java filter 过滤器 servlet springmvc
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/qq_39517116/article/details/116715835
版权

若依项目中需要在JwtAuthenticationTokenFilter的doFilterInternal方法中获取request中body中的toklen做权限验证,发现了这个问题getRead() has already been called for this request/getInputStream() has already been called for this request

原因是request.getInputStream()或request.getReader()获取到请求内容后,无法再调request.getParameter()获取请求内容。即对该类型的请求,三个方法互斥,只能调其中一个。

解决方法就是增加MyRequestWrapper类进行处理

getReader()能获取到application/json里面的参数,还有一种情况就是multipart/form-data传进来的参数,这个可以直接用request.getParameter获取。

MyRequestWrapper

package com.ruoyi.framework.security.filter;

import javax.servlet.ReadListener;
import javax.servlet.ServletInputStream;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletRequestWrapper;
import java.io.*;

public class MyRequestWrapper extends HttpServletRequestWrapper {

    private String body = null;
    private String token = null;

    public MyRequestWrapper(HttpServletRequest request, int type) throws IOException {
        super(request);
        if (type == 1) {
            this.token = request.getParameter("token");
        } else if (type == 2) {
            this.body = RequestReadUtils.read(request);
        }

    }

    public String getBody() {
        return body;
    }

    public String getToken() {
        return token;
    }


    @Override
    public ServletInputStream getInputStream() {
        final ByteArrayInputStream bais = new ByteArrayInputStream(body.getBytes());
        return new ServletInputStream() {

            @Override
            public boolean isFinished() {
                return false;
            }

            @Override
            public boolean isReady() {
                return false;
            }

            @Override
            public void setReadListener(ReadListener readListener) {

            }

            @Override
            public int read() {
                return bais.read();
            }
        };
    }

    @Override
    public BufferedReader getReader() {
        return new BufferedReader(new InputStreamReader(this.getInputStream()));
    }

    @Override
    public String getParameter(String name) {
        return this.getToken();
    }

}

RequestReadUtils

package com.ruoyi.framework.security.filter;

import javax.servlet.http.HttpServletRequest;
import java.io.*;

public class RequestReadUtils {

    private static final int BUFFER_SIZE = 1024 * 8;

    public static String read(HttpServletRequest request) throws IOException {
        BufferedReader bufferedReader = request.getReader();
        StringWriter writer = new StringWriter();
        write(bufferedReader, writer);
        return writer.getBuffer().toString();
    }

    public static long write(Reader reader, Writer writer) throws IOException {
        return write(reader, writer, BUFFER_SIZE);
    }

    public static long write(Reader reader, Writer writer, int bufferSize) throws IOException {
        int read;
        long total = 0;
        char[] buf = new char[bufferSize];
        while ((read = reader.read(buf)) != -1) {
            writer.write(buf, 0, read);
            total += read;
        }
        return total;
    }
}

JwtAuthenticationTokenFilter

package com.ruoyi.framework.security.filter;


/**
 * token过滤器 验证token有效性
 *
 * @author ruoyi
 */

@Component
public class JwtAuthenticationTokenFilter extends OncePerRequestFilter {
    @Autowired
    private TokenService tokenService;
    @Autowired
    private AppService appService;
    @Autowired
    private ISysUserService sysUserService;

    private byte[] body;

    @Override
    protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain chain)
            throws ServletException, IOException {

        if (request.getRequestURI().startsWith("/tabaoApi")) {
            String token = null;
            MyRequestWrapper requestWrapper = null;
            if (request.getContentType().startsWith("multipart/form-data")) {
                requestWrapper = new MyRequestWrapper(request, 1);
                token = requestWrapper.getToken();
            } else if (request.getContentType().startsWith("application/json")) {
                requestWrapper = new MyRequestWrapper(request, 2);
                token = JSONObject.parseObject(requestWrapper.getBody()).getString("token");
            }

            if (token != null) {
                SysUser sysUser = appService.verifyAppUserToken(token);
                if (sysUser != null) {
                    UsernamePasswordAuthenticationToken authenticationToken = new UsernamePasswordAuthenticationToken(sysUser, null, null);
                    authenticationToken.setDetails(new WebAuthenticationDetailsSource().buildDetails(request));
                    SecurityContextHolder.getContext().setAuthentication(authenticationToken);
                    chain.doFilter(requestWrapper, response);
                }
            }
        } else {
            LoginUser loginUser = tokenService.getLoginUser(request);
            if (StringUtils.isNotNull(loginUser) && StringUtils.isNull(SecurityUtils.getAuthentication())) {
                tokenService.verifyToken(loginUser);
                UsernamePasswordAuthenticationToken authenticationToken = new UsernamePasswordAuthenticationToken(loginUser, null, loginUser.getAuthorities());
                authenticationToken.setDetails(new WebAuthenticationDetailsSource().buildDetails(request));
                SecurityContextHolder.getContext().setAuthentication(authenticationToken);
            }
            chain.doFilter(request, response);
        }
    }
}

我这还遇到查询的列表需要分页的情况:
方法1.这个可以在doFilterInternal方法中使用request获取,然后放在requestWrapper.setAttribute(“pageNum”, request.getParameter(“pageNum”))中,在需要的地方ServletUtils.getRequestAttributes().getAttribute(“pageNum”, 0));获取。
方法2.将pageNum和pageSize放在实体类中,然后获取。

在你之后
关注
  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
WebService简介
03-04
WebService学习,java端通过Axis2,Cxf发布WebService的应用
SpringHTTPRequestLoggerOnException:允许在处理过程中使用异常详细信息记录Spring HTTP请求正文
03-08
如果使用的是Spring Boot,可以通过自定义`ErrorController`或配置`ErrorAttributes`来处理异常并记录请求信息。在`ErrorAttributes`中,你可以通过`getErrorAttributes`方法获取请求信息。 4. **集成日志框架**:...
getInputStream() has already been called for this request
热门推荐
MKNDG的专栏
09-06 1万+
在以multipart/form-data进行数据传输的时候,通过以下方式处理数据的时候 @RequestMapping(value = "/Devices/1000019$0/Events", method = RequestMethod.POST) public void getStream(HttpServletRequest servletRequest) throws IOException { dealDhData(servletRequest); }
getReader() has already been called for this request
最新发布
weixin_42333157的博客
06-12 536
开发实际中遇到的问题记录
解决:getReader() has already been called for this request
woaiwojialanxi的专栏
04-11 7751
Filter 中对 request 中的 body 进行参数签名校验, 会报如下错误: getReader() has already been called for this request 原因是 request.getReader() 和 request.getInputStream() 都是只能调用一次 并且 getReader() 方法底层也是调用 getInputStream() 来实现的. 所以我们要使用 HttpServletRequestWrapper 来实现自定义的 Cust
getInputStream has already been called for this request 问题记录
07-27 3948
*** @desc 重复读取HttpServletRequest reader/inputstream/**try {if(ins!if(isr!} }/*** @desc 重复读取HttpServletRequest reader/inputstream/**try {if(ins!
JSP内置对象:Request和Response的简单介绍及使用
01-20
**JSP内置对象Request与Response详解** 在JavaServer Pages (JSP) 技术中,Request和Response是两个非常重要的内置对象,它们分别代表了HTTP请求和响应的生命周期中的关键部分。了解并熟练掌握这两个对象的使用对于...
完美解决request请求流只能读取一次的问题
08-24
解决request请求流只能读取一次的问题,我们可以使用自定义的HttpServletRequestWrapper,覆写getInputStream()和getReader()方法,从而实现流的重复读取。这可以在SpringBoot项目中使用Filter拦截器对所有请求流中...
java 获取request中的请求参数代码详解
08-26
Java 中,我们可以使用 `getInputStream()` 方法或 `getReader()` 方法来获取 Request Body 中的数据。 ```java public String getRequestData(HttpServletRequest httpServletRequest) { ...
处理全局异常想要打印请求参数报错了 getinputstream() has already been called for this request
xiaojiejie_baby的博客
03-06 2201
在编写处理全局异常时,想要打印出来异常请求的URL和参数等信息,但是在获取请求参数的时候报错了。
【SpringBoot】获取request请求参数,多次读取报错问题 (has already been called for this request
03-03 4294
request请求流不能重复读, 报 java.lang.IllegalStateException: getInputStream() has already been called for this request 异常, 重写HttpServletRequestWrapper
解决HttpServletRequest中的流无法重复读取的问题
初心不忘、始终方得
12-23 1584
解决:Cannot call getInputStream(), getReader() already called
Cannot call getReader(), getInputStream() already called分析与解决
zh_chong的博客
11-24 4977
Cannot call getReader(), getInputStream() already called分析与解决
java.lang.IllegalStateException: getReader() has already been called for this request
04-05
This exception is thrown when you try to call the getReader() method on an HttpServletRequest object after it has already been called for the same request. The getReader() method returns a BufferedReader object that can be used to read the request body as a character stream. Once this method has been called, the request body has already been read and processed, and calling the method again will result in an IllegalStateException. To avoid this exception, make sure to call the getReader() method only once for each request, and store the returned BufferedReader object in a variable if you need to use it multiple times. Alternatively, you can use the getInputStream() method to read the request body as a byte stream, which can be read multiple times without issue.
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值