- 注解:
@Webfilter(filtername=“名字”,urlPatterns=“*/”)
启动类: @ServletComponentScan
implements Filter
- 重写 dofilter 方法 强转两个:
HttpServerRequest request = (HttpServerRequest)new serverRequest;
HttpServerResponse response = (HttpServerResponse)new serverResponse;
释放:filterChain
filterChain.dofilter(request response);
完善登录功能:
1.获取本次请求的URI
2.判断本次请求是否需要处理
3.不需要处理直接放行
4.需要处理判断登录状态,如果已登录则直接放行
5.未登录则返回未登录结果
1.获取本次请求的URI
String requestURI = request.getRequestURI();
log.info("拦截到请求:{}",requestURI);
String[] urls = new String[]{
"/employee/login",
"/employee/logout",
"/backend/**",
"/front/**"
};
2.判断本次请求是否需要处理
//路径匹配器,支持通配符
//路径匹配器
public static final AntPathMatcher PATH_MATCHER = new AntPathMatcher();
public boolean check(String[] urls,String requestURI){
for (String url : urls) {
boolean match = PATH_MATCHER.match(url, requestURI); //match匹配
if(match){
return true;
}
}
return false;
}
boolean check = check(urls, requestURI);
3.不需要处理直接放行
if(check){
log.info("本次请求{}不需要处理",requestURI);
filterChain.doFilter(request,response);
return;
}
4.需要处理判断登录状态,如果已登录则直接放行
if(request.getSession().getAttribute("employee") !=null){
log.info("用户已登录,用户id为:{}",request.getSession().getAttribute("employee"));
filterChain.doFilter(request,response);
return;
}
5.未登录则返回未登录结果
response.getWriter().write(JSON.toJSONString(R.error("NOTLOGIN")));
return;