java相关:使用Filter实现登录权限验证
发布于 2020-12-18|
复制链接
摘记: 本文实例为大家分享了用Filter实现登录权限验证的具体代码,供大家参考,具体内容如下用户在访问任何界面时,会查询用户是否登录过,如果登录过则可以直接访问,没有登录的话跳到登录界面web.xml配置过滤器
```xml
myFilter
..
本文实例为大家分享了用Filter实现登录权限验证的具体代码,供大家参考,具体内容如下用户在访问任何界面时,会查询用户是否登录过,如果登录过则可以直接访问,没有登录的话跳到登录界面web.xml配置过滤器
```xml
myFilter
com.zyk.ctrl.MyFilter
//初始化参数名
letgo
//初始化参数值
/login.jsp;/loginServlet;/css;/images;/js
//必须和上面的一样
myFilter
//过滤所有
/*
```
MyFilter.java
```java
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.annotation.WebFilter;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
/**
* Servlet Filter implementation class MyFilter
*/
public class MyFilter implements Filter {
//定义一个存放放行资源路径的数组
private static String[] paths;
/**
* Default constructor.
*/
public MyFilter() {
// TODO Auto-generated constructor stub
}
/**
* @see Filter#destroy()
*/
public void destroy() {
// TODO Auto-generated method stub
}
/**
* @see Filter#doFilter(ServletRequest, ServletResponse, FilterChain)
*/
public void doFilter(ServletRequest req, ServletResponse res, FilterChain chain)
throws IOException, ServletException {
HttpServletRequest request = (HttpServletRequest) req;
HttpServletResponse response = (HttpServletResponse) res;
//获取资源URI路径
String path = request.getServletPath();
for (int i = 0; i Servlet.java部分代码
```java
if ("login".equals(action)) {
String name = request.getParameter("name");
String pwd = request.getParameter("pwd");
User user = new User(name, pwd);
if (dao.ValidateLogin(user)) {
//ValidateLogin为登录验证方法,如果验证成功,则设置一个属性名为“name”值为用户名的session,用于Myfilter验证是否登录过
request.getSession().setAttribute("name", name);
response.sendRedirect("admin/admin.jsp");
} else {
request.getSession().setAttribute("error", "账号或者密码错误");
response.sendRedirect("login.jsp");
}
}
```