1、不使用过滤器实现,在需要拦截的页面通过session判断是否登陆,若没登陆则跳转到login.jsp页面:
<%
Admin admin = (Admin)session.getAttribute("admin");
if(admin == null){
response.sendRedirect("login.jsp");
return;
}
%>
2、使用filter实现拦截: 在实现的过程中遇到无限循环重定向的错误,在[https://blog.csdn.net/xuniailian/article/details/8257080]这条博客中得到启发解决了问题:
①JspFilter:
public class JspFilter implements Filter {
public void destroy() {}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
HttpServletRequest httpServletRequest = (HttpServletRequest)request;
HttpServletResponse httpServletResponse = (HttpServletResponse) response;
HttpSession session = httpServletRequest.getSession();
Admin admin = (Admin)session.getAttribute("admin");
String url = httpServletRequest.getRequestURI();
//若不进行url.endsWith("login.jsp")判断则会出现无限循环重定向的问题;
//若登陆成功之后则admin不为null,继续执行
if(url.endsWith("login.jsp") || admin!=null){
chain.doFilter(httpServletRequest, httpServletResponse);
return;
}
//若该if放在上一if语句之前,仍然会出现无限循环重定向的问题
if(admin==null){
httpServletResponse.sendRedirect("/bookStore/admin/login.jsp");
return;
}
}
public void init(FilterConfig fConfig) throws ServletException {
}
}
②web.xml
<filter>
<filter-name>jspFilter</filter-name>
<filter-class>com.zh.filter.JspFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>jspFilter</filter-name>
<url-pattern>*.jsp</url-pattern>
</filter-mapping>
注意点:
Ⅰ、请求转发url不会变,过滤器只过滤一次;
重定向url一直改变,过滤器会一直过滤,死循环
Ⅱ、当访问JspFilter时,由于用户没有登陆,所以将跳转到login.jsp,但在Filter同样对login.jsp进行了过滤,所以当浏览器跳转到login.jsp时,经验证还是没有登陆,那么就会一直无限循环的进行跳转,报错。