保存会话的两种技术
cookie:客户端技术(响应,请求)
session:服务器技术 利用这个技术,可以保存用户的会话信息,我们可以把信息或者数据放在Session中.
常见功能:网站登录后,下次不需要重新登录.
Cookie
1.从请求中拿到cookie信息.
2服务器响应给客户端cookie.
- 一个Cookie只能保存一个信息
- 一个web网站可以给浏览器发送多个cookie,最多存费300个cookie,一个站点最多存放20个cookie
- 大小限制4kb;
删除Cookie:
1.不设置有效期,关闭浏览器,自动删除
2.设置有效期为0
package com.wst.servlet;
import javax.servlet.ServletException;
import javax.servlet.http.*;
import java.io.IOException;
import java.io.PrintWriter;
import java.util.Date;
public class CookieDemo01 extends HttpServlet {
@Override
protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
req.setCharacterEncoding("gbk");
resp.setCharacterEncoding("gbk");
PrintWriter out = resp.getWriter();
Cookie[] cookies = req.getCookies();//获得cookie 说明cookie可能存在多个
//判断cookie是否存在
if(cookies!=null){
//存在
out.write("你上一次访问的时间是:");
for (int i = 0; i < cookies.length; i++) {
Cookie cookie = cookies[i];
if(cookie.getName().equals("lastLoginTime")){//cookie.getName()获得cookie中的key
long lastLoginTime = Long.parseLong(cookie.getValue());//cookie.getValue()获得cookie中的value
Date date = new Date(lastLoginTime);
out.write(date.toLocaleString());
}
}
}else{
out.write("这是第一次访问网站");
}
Cookie cookie = new Cookie("lastLoginTime", System.currentTimeMillis()+"");//新建一个cookie
cookie.setMaxAge(24*60*60);//设置Cookie有效期 为一天,关浏览器也可以
resp.addCookie(cookie);//响应给客户端一个cookie
}
@Override
protected void doPost(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
doGet(req, resp);
}
}
session(重点)
什么是Session:
*服务器会给每一个用户(浏览器)创建一个Session对象;
*一个Session独占一个浏览器,只要浏览器没有关闭,这个session就会一直在
*用户登录后,整个网站都可以访问!–>保存用户信息;保存购物车信息…
package com.wst.servlet;
import com.wst.pojo.Person;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import java.io.IOException;
import java.io.PrintWriter;
public class SessionDemo01 extends HttpServlet {
@Override
protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
req.setCharacterEncoding("gbk");
resp.setCharacterEncoding("gbk");
//得到Session
HttpSession session = req.getSession();
//给Session中存东西
session.setAttribute("name1",new Person("wst",22));
PrintWriter out = resp.getWriter();
if(session.isNew()){
out.write(session.getId());
}else{
out.write("session已存在 "+session.getId());
}
}
@Override
protected void doPost(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
doGet(req, resp);
}
}
package com.wst.servlet;
import com.wst.pojo.Person;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import java.io.IOException;
import java.io.PrintWriter;
public class SessionDemo02 extends HttpServlet {
@Override
protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
req.setCharacterEncoding("gbk");
resp.setCharacterEncoding("gbk");
//得到Session
HttpSession session = req.getSession();
Person name1 = (Person) session.getAttribute("name1");
System.out.println(name1);
}
@Override
protected void doPost(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
doGet(req, resp);
}
}
Session存活时间
<session-config>
<!--session设置session能存活多久单位 minute-->
<session-timeout>60</session-timeout>
</session-config>
session和Cookie的区别:
Cookie是给到数据都给到客户端(用户的浏览器中)手里,浏览器保存(可以保存多个):
session对象由服务器创建;保存在服务器端
session是把数据留在服务端session里,只给用户一个sessionId: