Struts2自定义拦截器实例—登陆权限验证+验证框架

最新推荐文章于 2019-04-08 13:09:19 发布

张jl

最新推荐文章于 2019-04-08 13:09:19 发布

阅读量665

点赞数

文章标签： struts2 interceptor 验证框架

版本：struts2.1.6

此实例实现功能：用户需要指定用户名登陆，登陆成功进入相应页面执行操作，否则返回到登陆页面进行登陆，当直接访问操作页面（登陆后才能访问的页面）时则不允许，须返回登陆页面。

在此基础上对LoginAction加了验证框架

因为发博客不可以带url，所以部分jsp和xml里面的url没有添加

代码如下：

一、页面

<%@ page language="java" import="java.util.*" pageEncoding="UTF-8"%>
<%
String path = request.getContextPath();
String basePath = request.getScheme()+"://"+request.getServerName()+":"+request.getServerPort()+path+"/";
%>
<%@ taglib prefix="s" uri="/struts-tags" %>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
	<head>
		<base href="<%=basePath%>">

		<title>My JSP 'login.jsp' starting page</title>

		<meta http-equiv="pragma" content="no-cache">
		<meta http-equiv="cache-control" content="no-cache">
		<meta http-equiv="expires" content="0">
		<meta http-equiv="keywords" content="keyword1,keyword2,keyword3">
		<meta http-equiv="description" content="This is my page">
		<!--
	<link rel="stylesheet" type="text/css" href="styles.css">
	-->

	</head>

	<body>
		<form action="login.action" method="post">
			<s:fielderror cssStyle="color:red"></s:fielderror>
			User:
			<input type="text" name="username">
			<br>
			Passoword:
			<input type="password" name="password">
			<br>
			<input type="submit" value="submit">
		</form>
	</body>
</html>

welcome.jsp

<%@ page language="java" import="java.util.*" pageEncoding="UTF-8"%>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
  <head>
   
    <title> yuewei's Welcome</title>
    
 <!--
 <link rel="stylesheet" type="text/css" href="styles.css" mce_href="styles.css">
 -->

  </head>
  
  <body>
  <h1>登录成功后显示此页面</h1>
  <a href="show.action" mce_href="show.action">show</a>
  </body>
</html>

show.jsp

<%@ page language="java" import="java.util.*" pageEncoding="UTF-8"%>

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
  <head>
    
    <title>yuewei's Show</title>
    
	<!--
	<link rel="stylesheet" type="text/css" href="styles.css" mce_href="styles.css">
	-->

  </head>
  
  <body>
    Show This Page 
    	登录后执行此页面<br>
  </body>
</html>

二、Action

LoginFormAction

package com.ywjava.action;

import com.opensymphony.xwork2.ActionSupport;

public class LoginFormAction extends ActionSupport {
	public String exexcute() {
		return "success";
	}
}

LoginAction

package com.ywjava.action;

import com.opensymphony.xwork2.ActionContext;
import com.opensymphony.xwork2.ActionSupport;
import com.ywjava.utils.Constants;

public class LoginAction extends  ActionSupport{
private String username;
private String password;
public String getPassword() {
	return password;
}
public void setPassword(String password) {
	this.password = password;
}
public String getUsername() {
	return username;
}
public void setUsername(String username) {
	this.username = username;
}
  
public String execute(){
	System.out.println(username);
	System.out.println(password);

	if(this.getUsername().equals("admin")&& this.getPassword().equals("admin")){
		ActionContext.getContext().getSession().put("name",getUsername());
		ActionContext.getContext().getSession().put("pass",getPassword());
		return "success";
	}
	return "error";
}
}

验证框架

LoginAction-validation.xml

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE validators PUBLIC
  		"-//OpenSymphony Group//XWork Validator 1.0.3//EN"
  		"http://struts.apache.org/dtds/xwork-validator-1.0.3.dtd">
<validators>
	<field name="username">
		<field-validator type="requiredstring">
			<param name="trim">true</param>
			<message>name not null!</message>
		</field-validator>
	</field>
	<field name="password">
		<field-validator type="requiredstring">
			<param name="trim">true</param>
			<message>pass not null!</message>
		</field-validator>
		<field-validator type="stringlength">
			<param name="minLength">4</param>
			<param name="maxLength">8</param>
			<message>password length in 4-8!</message>
		</field-validator>
	</field>
</validators>

ShowAction

package com.ywjava.action;

import com.opensymphony.xwork2.ActionSupport;

public class ShowAction extends ActionSupport {
 public String execute() {
  return "success";
 }
}

三、拦截器

package com.ywjava.interceptot;

import java.util.Map;

import com.opensymphony.xwork2.Action;
import com.opensymphony.xwork2.ActionContext;
import com.opensymphony.xwork2.ActionInvocation;
import com.opensymphony.xwork2.interceptor.AbstractInterceptor;
import com.ywjava.utils.Constants;

public class LoginInterceptor extends AbstractInterceptor {

	@Override
	public String intercept(ActionInvocation invocation) throws Exception {

		// 取得请求相关的ActionContext实例
		ActionContext ctx = invocation.getInvocationContext();
		Map session = ctx.getSession();
		String user = (String) session.get("name");

		// 如果没有登陆，或者登陆所有的用户名不是yuewei，都返回重新登陆

		if (user != null && user.equals("admin")) {
			return invocation.invoke();
		}

		return Action.LOGIN;

	}

}

四 struts.xml

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE struts PUBLIC
	"-//Apache Software Foundation//DTD Struts Configuration 2.1//EN"
	"http://struts.apache.org/dtds/struts-2.1.dtd">
<struts>
	<package name="authority" extends="struts-default" namespace="/">
	
		<!-- 定义一个拦截器 -->
		<interceptors>
			<interceptor name="authority"
				class="com.ywjava.interceptot.LoginInterceptor">
			</interceptor>
			<!-- 拦截器栈 -->
			<interceptor-stack name="mydefault">
				<interceptor-ref name="defaultStack" />
				<interceptor-ref name="authority" />
			</interceptor-stack>
		</interceptors>

		<!-- 定义全局Result -->
		<global-results>
			<!-- 当返回login视图名时，转入/login.jsp页面 -->
			<result name="login">/login.jsp</result>
		</global-results>

		<action name="loginform"
			class="com.ywjava.action.LoginFormAction">
			<result name="success">/login.jsp</result>
		</action>
		
		<action name="login" class="com.ywjava.action.LoginAction">
			<result name="success">/welcome.jsp</result>
			<result name="error">/login.jsp</result>
			<result name="input">/login.jsp</result>
		</action>

		<action name="show" class="com.ywjava.action.ShowAction">
			<result name="success">/show.jsp</result>
			<!-- 使用此拦截器 -->
			<interceptor-ref name="mydefault" />
		</action>
		
	</package>
</struts>

因为添加了验证框架，不可以直接访问jsp文件，为了可以直接访问，对web.xml做了更改，所以把web.xml也贴了出来

web.xml

<?xml version="1.0" encoding="UTF-8"?>

  <welcome-file-list>
    <welcome-file>index.jsp</welcome-file>
  </welcome-file-list>
  <filter>
  	<filter-name>struts2</filter-name>
  	<filter-class>
  		org.apache.struts2.dispatcher.ng.filter.StrutsPrepareAndExecuteFilter
  	</filter-class>
  </filter>
  <filter-mapping>
  	<filter-name>struts2</filter-name>
  	<url-pattern>*.action</url-pattern>
  	<url-pattern>*.jsp</url-pattern>
  </filter-mapping></web-app>

张jl

关注

0
点赞
踩
2

收藏

觉得还不错? 一键收藏
0
评论
Struts2自定义拦截器实例—登陆权限验证+验证框架

版本：struts2.1.6此实例实现功能：用户需要指定用户名登陆，登陆成功进入相应页面执行操作，否则返回到登陆页面进行登陆，当直接访问操作页面（登陆后才能访问的页面）时则不允许，须返回登陆页面。代码如下：一、页面login.jsp
复制链接

扫一扫