JavaWeb实现登录拦截(Filter拦截器)
1、编写前端页面
1.1、登陆界面 login.jsp
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<html>
<head>
<title>登录</title>
</head>
<body>
<form action="${pageContext.request.contextPath }/loginServlet" method="post">
名称:<input type="text" name="username"/><br/>
密码:<input type="password" name="pwd"/><br>
<input type="submit" value="登录">
消息提示 ${msg}
</form>
</body>
</html>
1.2、用户信息界面 user.jsp
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<html>
<head>
<title>Title</title>
</head>
<body>
id:${loginUser.userid}<br>
name:${loginUser.username}
<a href="${pageContext.request.contextPath }/logoutController">退出</a>
</body>
</html>
2、编写User对象类
package cn.yz123123.model;
public class User {
private int userid;
private String username;
private String password;
public int getUserid() {
return userid;
}
public void setUserid(int userid) {
this.userid = userid;
}
public String getUsername() {
return username;
}
public void setUsername(String username) {
this.username = username;
}
public String getPassword() {
return password;
}
public void setPassword(String password) {
this.password = password;
}
public User(int userid, String username, String password) {
super();
this.userid = userid;
this.username = username;
this.password = password;
}
}
3、编写LoginFilter用户拦截器,实现Filter接口,并重写里面的3个方法
package cn.yz123123.filter;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.annotation.WebFilter;
import javax.servlet.annotation.WebInitParam;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
@WebFilter(filterName = "loginFilter",urlPatterns = {"/user/*","/order/*"},initParams = {
@WebInitParam(name = "encoding",value = "UTF-8"),
@WebInitParam(name = "loginPage",value = "/login.jsp")
})
public class LoginFilter implements Filter{
private FilterConfig filterConfig;
private String encoding;
private String loginPage;
@Override
public void init(FilterConfig filterConfig) throws ServletException {
this.filterConfig = filterConfig;
this.encoding = filterConfig.getInitParameter(encoding);
this.loginPage = filterConfig.getInitParameter(loginPage);
}
@Override
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
throws IOException, ServletException {
request.setCharacterEncoding(encoding);
response.setCharacterEncoding(encoding);
response.setContentType("text/html;charset="+encoding);
//强转类型
HttpServletRequest req = (HttpServletRequest) request;
HttpServletResponse resp = (HttpServletResponse) response;
//判断会话域中是否有用户对象
if (req.getSession().getAttribute("loginUser")!=null) {
chain.doFilter(request, response);
}else {
req.setAttribute("msg", "非法请求!");
req.getRequestDispatcher(loginPage).forward(request, response);
}
}
@Override
public void destroy() {
Filter.super.destroy();
}
}
4、编写登录处理类 loginServlet.java
package cn.yz123123.controller;
import java.io.IOException;
import javax.servlet.ServletException;
import javax.servlet.annotation.WebServlet;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import cn.yz123123.model.User;
@WebServlet("/loginServlet")
public class loginServlet extends HttpServlet{
@Override
protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
String username = req.getParameter("username");
String pwd = req.getParameter("pwd");
if (username.equals("admin")&&pwd.equals("123")) {
User user = new User(1, username, pwd);
req.setAttribute("loginUser", user);
req.getRequestDispatcher("/user.jsp").forward(req, resp);
}else {
req.setAttribute("msg","账号密码错误");
req.getRequestDispatcher("/login.jsp").forward(req,resp);
}
}
@Override
protected void doPost(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
doGet(req, resp);
}
}