1,在web.xml中配置一个Filter标签
<filter>
<filter-name>Security Filter</filter-name>
<filter-class>com.xx.xx.xx.xxFilter</filter-class>
<init-param>
<param-name>noSessionChkUrl</param-name>
<param-value>
<!--不进行session验证的请求url -->
</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>Security Filter</filter-name>
<url-pattern>*.do</url-pattern>
</filter-mapping>
2,编写一个实现Filter的类
public class xxFilter implements Filter
{
private FilterConfig config;//读取xml中配置参数
protected Logger logger = LoggerFactory.getLogger(this.getClass());
public void doFilter(ServletRequest request, ServletResponse response,
FilterChain filterChain) throws IOException, ServletException
{