利用session完成登录

package cn.itcast.login;

import java.io.IOException;

import java.io.PrintWriter;

import java.util.ArrayList;

import java.util.List;

import javax.servlet.ServletException;

import javax.servlet.http.HttpServlet;

import javax.servlet.http.HttpServletRequest;

import javax.servlet.http.HttpServletResponse;

public class LoginServlet extends HttpServlet {

public void doGet(HttpServletRequest request, HttpServletResponse response)

throws ServletException, IOException {

response.setCharacterEncoding("UTF-8");

response.setContentType("text/html;charset=UTF-8");

PrintWriter out = response.getWriter();

String username = request.getParameter("username");

String password = request.getParameter("password");

List<User> list = DB.getAll();

for(User user : list){

if(user.getUsername().equals(username) && user.getPassword().equals(password)){

request.getSession().setAttribute("user", user);//登录成功，向session中存登录标记

response.sendRedirect("/day07/index.jsp");

return;

}

}

out.write("用户名或密码不对");

}

public void doPost(HttpServletRequest request, HttpServletResponse response)

throws ServletException, IOException {

doGet(request, response);

}

}

class DB{

public static List list = new ArrayList();

static {

list.add(new User("aa","123"));

list.add(new User("bb","123"));

list.add(new User("cc","123"));

}

public static List getAll(){

return list;

}

}

package cn.itcast.login;

import java.io.IOException;

import java.io.PrintWriter;

import javax.servlet.ServletException;

import javax.servlet.http.HttpServlet;

import javax.servlet.http.HttpServletRequest;

import javax.servlet.http.HttpServletResponse;

import javax.servlet.http.HttpSession;

public class logoutServlet extends HttpServlet {

public void doGet(HttpServletRequest request, HttpServletResponse response)

throws ServletException, IOException {

HttpSession session = request.getSession(false);

if(session==null){

response.sendRedirect("/day07/index.jsp");

return;

}

session.removeAttribute("user");

response.sendRedirect("/day07/index.jsp");

}

public void doPost(HttpServletRequest request, HttpServletResponse response)

throws ServletException, IOException {

doGet(request, response);

}

}

login.jsp

<body>

<form action="/day07/servlet/LoginServlet" method="post">

用户名:<input type="text" name="username"><br/>

密码：<input type="password" name="password"><br/>

<input type="submit" value="登录">

</form>

</body>

index.jsp

<body>

欢迎您:${user.username}

<a href="/day07/servlet/LoginServlet">登录</a>

<a href="/day07/servlet/logoutServlet">注销</a>

<br/><br/><br/>

<a href="/day07/SessionDemo1">购买</a>

<a href="/day07/SessionDemo2">结账</a>

</body>

user.java

package cn.itcast.login;

public class User {

private String username;

private String password;

public User(String username, String password) {

super();

this.username = username;

this.password = password;

}

public String getUsername() {

return username;

}

public void setUsername(String username) {

this.username = username;

}

public String getPassword() {

return password;

}

public void setPassword(String password) {

this.password = password;

}

}