Filter学习--用Filter验证登陆用户权限简单示例
2017-09-01 11:17
489 查看
登陆页面代码
登陆后页面
<%--
Created by IntelliJ IDEA.
User: Limbo
Date: 2017/9/1
Time: 11:07
To change this template use File | Settings | File Templates.
--%>
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<html>
<head>
<title>Title</title>
</head>
<body>
${requestScope.message}
<a href="/UserServlet?username=admin">查看所有员工</a>
<a href="/UserServlet?username=edit">修改员工信息</a>
<a href="/UserServlet?username=del">删除员工信息</a>||<<a href="FilterDemo.jsp">返回重新登录</a>
</body>
</html>
用户登陆Servlet
package com.limbo.Servlet;
import javax.servlet.ServletException;
import javax.servlet.annotation.WebServlet;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import java.io.IOException;
import java.util.ArrayList;
import java.util.List;
@WebServlet(name = "LoginServlet",urlPatterns = "/Login")
public class LoginServlet extends HttpServlet {
public List<String > setRole(String username){
List<String> list=null;
if ("admin".equals(username)){
list=new ArrayList<String>();
list.add("/UserServlet?username=admin");
list.add("/UserServlet?username=edit");
list.add("/UserServlet?username=del");
}else if ("zhang".equals(username)){
list=new ArrayList<String>();
list.add("/UserServlet?username=admin");
}
return list;
}
protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
HttpSession session=request.getSession();
String username=request.getParameter("username");
if (username!=null&&!"".equals(username)){
if (username.equals("admin")){
session.setAttribute("userroles",setRole(username));
}else if (username.equals("zhang")){
session.setAttribute("userroles",setRole(username));
}
response.sendRedirect("admin.jsp");
}else {
response.sendRedirect("index.jsp");
}
}
protected void doGet(Htt
4000
pServletRequest request, HttpServletResponse response) throws ServletException, IOException {
}
}
用户登陆Filter
package com.limbo.Servlet;
import javax.servlet.*;
import javax.servlet.annotation.WebFilter;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import java.io.IOException;
import java.util.List;
@WebFilter(filterName = "LoginFilter",urlPatterns = "/UserServlet")
public class LoginFilter implements Filter {
public void destroy() {
}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws ServletException, IOException {
HttpServletRequest request1=(HttpServletRequest) request;
HttpServletResponse response1=(HttpServletResponse) response;
String servleturl=request1.getRequestURI();
StringBuffer requesturl=new StringBuffer(servleturl).append("?username=");
String usernmae=request1.getParameter("username");
if (usernmae!=null&&!"".equals(usernmae)){
System.out.println(usernmae+"---------------");
requesturl.append(usernmae);
}
HttpSession session=request1.getSession();
List<String> userroleList=(List<String>) session.getAttribute("userroles");
if (userroleList!=null){
if (userroleList.contains(requesturl.toString())){
chain.doFilter(request,response);
}else {
request.setAttribute("message","对不起请重新登陆");
request.getRequestDispatcher("admin.jsp").forward(request1,response1);
}
}
}
public void init(FilterConfig config) throws ServletException {
}
}
<%-- Created by IntelliJ IDEA. User: Limbo Date: 2017/9/1 Time: 10:45 To change this template use File | Settings | File Templates. --%> <%@ page contentType="text/html;charset=UTF-8" language="java" %> <html> <head> <title>Title</title> </head> <body> <form action="/Login" method="post"> LoginName:<input type="text" name="username"> <input type="submit" value="登陆"> </form> </body> </html>
登陆后页面
<%--
Created by IntelliJ IDEA.
User: Limbo
Date: 2017/9/1
Time: 11:07
To change this template use File | Settings | File Templates.
--%>
<%@ page contentType="text/html;charset=UTF-8" language="java" %>
<html>
<head>
<title>Title</title>
</head>
<body>
${requestScope.message}
<a href="/UserServlet?username=admin">查看所有员工</a>
<a href="/UserServlet?username=edit">修改员工信息</a>
<a href="/UserServlet?username=del">删除员工信息</a>||<<a href="FilterDemo.jsp">返回重新登录</a>
</body>
</html>
用户登陆Servlet
package com.limbo.Servlet;
import javax.servlet.ServletException;
import javax.servlet.annotation.WebServlet;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import java.io.IOException;
import java.util.ArrayList;
import java.util.List;
@WebServlet(name = "LoginServlet",urlPatterns = "/Login")
public class LoginServlet extends HttpServlet {
public List<String > setRole(String username){
List<String> list=null;
if ("admin".equals(username)){
list=new ArrayList<String>();
list.add("/UserServlet?username=admin");
list.add("/UserServlet?username=edit");
list.add("/UserServlet?username=del");
}else if ("zhang".equals(username)){
list=new ArrayList<String>();
list.add("/UserServlet?username=admin");
}
return list;
}
protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
HttpSession session=request.getSession();
String username=request.getParameter("username");
if (username!=null&&!"".equals(username)){
if (username.equals("admin")){
session.setAttribute("userroles",setRole(username));
}else if (username.equals("zhang")){
session.setAttribute("userroles",setRole(username));
}
response.sendRedirect("admin.jsp");
}else {
response.sendRedirect("index.jsp");
}
}
protected void doGet(Htt
4000
pServletRequest request, HttpServletResponse response) throws ServletException, IOException {
}
}
用户登陆Filter
package com.limbo.Servlet;
import javax.servlet.*;
import javax.servlet.annotation.WebFilter;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import java.io.IOException;
import java.util.List;
@WebFilter(filterName = "LoginFilter",urlPatterns = "/UserServlet")
public class LoginFilter implements Filter {
public void destroy() {
}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws ServletException, IOException {
HttpServletRequest request1=(HttpServletRequest) request;
HttpServletResponse response1=(HttpServletResponse) response;
String servleturl=request1.getRequestURI();
StringBuffer requesturl=new StringBuffer(servleturl).append("?username=");
String usernmae=request1.getParameter("username");
if (usernmae!=null&&!"".equals(usernmae)){
System.out.println(usernmae+"---------------");
requesturl.append(usernmae);
}
HttpSession session=request1.getSession();
List<String> userroleList=(List<String>) session.getAttribute("userroles");
if (userroleList!=null){
if (userroleList.contains(requesturl.toString())){
chain.doFilter(request,response);
}else {
request.setAttribute("message","对不起请重新登陆");
request.getRequestDispatcher("admin.jsp").forward(request1,response1);
}
}
}
public void init(FilterConfig config) throws ServletException {
}
}
相关文章推荐
- 使用Filter验证用户是否登陆,完整示例
- 使用Filter验证用户是否登陆,完整示例
- 【学习笔记】--Java过滤器,用户登陆验证过滤等
- django学习——用户注册时的密码加密及登陆时的密码验证问题
- 【学习笔记】--Java过滤器,用户登陆验证过滤等
- 7,javase代码实战-条件语句——简单的验证用户登陆(二)
- 【PHP】简单的登陆验证和权限管理
- Python使用装饰器模拟用户登陆验证功能示例
- 用户登陆与验证的简单实现
- Mvc示例之三——用Filter进行简单身份验证
- 通过用户登陆消息类,来学习面向对象的实体统一接口和验证统一接口
- 用SHA1或MD5 算法加密数据(示例:对用户身份验证的简单实现)
- UsernamePasswordAuthenticationFilter是登陆用户密码验证过滤器,
- 破解android的root权限的本质是:在系统中加入一个任何用户都可能用于登陆的su命令。或者说替换掉系统中的su程序,因为系统中的默认su程序需要验证实际用户权限,只有root和 shell用户才
- 用SHA1或MD5 算法加密数据(示例:对用户身份验证的简单实现)
- 编程语言的学习 ------ python3文件读取+用户登录简单验证(优化2)
- Spring Security学习——自定义数据源的用户权限验证
- 用SHA1或MD5 算法加密数据(示例:对用户身份验证的简单实现)
- 用SHA1或MD5 算法加密数据(示例:对用户身份验证的简单实现)
- App登陆java后台处理和用户权限验证