1.实现第一个Filter
首先在Eclipse中创建一个名为chapter08的Web项目,然后在该项目的src目录下创建一个名为baixiao.filter包,
最后在该包下创建一个名为MyServlet的Servlet 类,该类用于访问时在浏览器中输出“Hello MyServlet”。
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
| package baixiao.filter;
import java.io.IOException;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
public class MyServlet extends HttpServlet {
private static final long serialVersionUID = 1L;
protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
response.getWriter().print("hello dashuju2004-------pidan<br />");
}
protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
// TODO Auto-generated method stub
doGet(request, response);
}
}
|
在web.xml文件中对Servlet进行如下配置
1
2
3
4
5
6
7
8
9
10
| <servlet>
<description></description>
<display-name>MyServlet</display-name>
<servlet-name>MyServlet</servlet-name>
<servlet-class>baixiao.filter.MyServlet</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>MyServlet</servlet-name>
<url-pattern>/MyServlet</url-pattern>
</servlet-mapping>
|
启动Tomcat 服务器,在浏览器的地址栏中输入地址“http://localhost:8080/chapterO8/MyServlet”
在pidan.filter包中创建一个名为MyFilter的Fiter类,该类用于拦截MyServlet程序。
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
| package baixiao.filter;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
public class MyFilter implements Filter {
public void destroy() {
}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
response.setContentType("text/html;charset=utf-8");
System.out.println("拦截了原网站的响应");
response.getWriter().print("这是filter输出到网页的内容");
}
public void init(FilterConfig fConfig) throws ServletException {
}
}
|
过滤器程序与Servlet程序类似,同样需要在 web.xml文件中进行配置,从而设置它所能拦截的资源
1
2
3
4
5
6
7
8
| <filter>
<filter-name>MyFilter</filter-name>
<filter-class>pidan.filter.MyFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>MyFilter</filter-name>
<url-pattern>/MyServlet</url-pattern>
</filter-mapping>
|
在上述代码中,过滤器的配置信息中包含多个元素,这些元素分别具有不同的作用,具体如下。
根元素用于注册一个Filter。
子元素用于设置Filter名称。
子元素用于设置Filter类的完整名称。
根元素用于设置一个过滤器所拦截的资源。
子元素必须与中的子元素相同。
子元素用于匹配用户请求的URL,例如“/MyServlet”,这个URL还可以使用通配符“”来表示,例如“.do”适用于所有以“.do”结尾的Servlet路径。
重新启动Tomcat 服务器,在浏览器访问MyServlet
2.Filter映射
2.1拦截不同方式的访问请求
在web.xml文件中,一个元素用于配置一个Fiter所负责拦截的资源。
元素中有一个特殊的子元素,该元素用于指定过滤器所拦截的资源被Servlet容器调用的方式,、
元素的值共有4个:
REQUEST
当用户直接访问页面时,Web容器将会调用过滤器。如果目标资源是通过RequestDispatcher的include()或 forward()方法访问的,那么该过滤器将不会被调用。
INCLUDE
如果目标资源是通过RequestDispatcher的 include()方法访问的,那么该过滤器将被调用。
除此之外,该过滤器不会被调用。
FORWARD
如果目标资源是通过RequestDispatcher的forward()方法访问的,那么该过滤器将被调用。
除此之外,该过滤器不会被调用。
ERROR
如果目标资源是通过声明式异常处理机制调用的,那么该过滤器将被调用。除此之外,过滤器不会被调用。
在chapter08项目的baixiao.filter包中,
创建一个名为ForwardServlet的Servlet类,该类用于将请求转发给first.jsp页面
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
|
package baixiao.filter;
import java.io.IOException;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
public class ForwardServlet extends HttpServlet {
protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
request.getRequestDispatcher("/first.jsp").forward(request,response);
}
protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
doGet(request, response);
}
}
|
在web.xml文件中,配置ForwardServlet信息
1
2
3
4
5
6
7
8
| <servlet>
<servlet-name>ForwardServlet</servlet-name>
<servlet-class>baixiao.filter.ForwardServlet</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>ForwardServlet</servlet-name>
<url-pattern>/ForwardServlet</url-pattern>
</servlet-mapping>
|
在WebContent目录中创建一个first.jsp页面,该页面用于输出内容
1
2
3
4
5
6
7
8
9
10
11
12
| <%@ page language="java" contentType="text/html; charset=UTF-8"
pageEncoding="UTF-8"%>
<!DOCTYPE html>
<html>
<head>
<meta charset="UTF-8">
<title>Insert title here</title>
</head>
<body>
first.jsp
</body>
</html>
|
在baixiao.filter包中,创建一个过滤器ForwardFiter.java,该过滤器专门用于对first.jsp页面进行拦截
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
| package baixiao.filter;
import java.io.IOException;
import java.io.PrintWriter;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
public class ForwardFilter implements Filter {
public void destroy() {
}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
PrintWriter out=response.getWriter();
out.write("Hello FilterYest");
}
public void init(FilterConfig fConfig) throws ServletException {
}
}
|
在web.xml文件中,配置过滤器的映射信息,拦截first.jsp页面
1
2
3
4
5
6
7
8
| <filter>
<filter-name>ForwardFilter</filter-name>
<filter-class>baixiao.filter.ForwardFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>ForwardFilter</filter-name>
<url-pattern>/first.jsp</url-pattern>
</filter-mapping>
|
启动Tomcat 服务器,在浏览器访问ForwardServlet
浏览器可以正常访问JSP页面,说明ForwardFilter没有拦截到ForwardServlet转发的first.jsp页面。
为了拦截ForwardServlet通过forward()方法转发的first.jsp页面,需要在web.xml文件中的对应过滤器配置信息中增加一个子元素,将该元素的值设置为FORWARD
1
2
3
4
5
6
7
8
9
| <filter>
<filter-name>ForwardFilter</filter-name>
<filter-class>baixiao.filter.ForwardFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>ForwardFilter</filter-name>
<url-pattern>/first.jsp</url-pattern>
<dispatcher>FORWARD</dispatcher>
</filter-mapping>
|
浏览器窗口显示的是ForwardFilter类中的内容,而first.jsp页面的输出内容没有显示。
由此可见,ForwardServlet中通过 forward()方法转发的 first.jsp页面被成功拦截了。
3.Filter链
3.1 在 chapter08 项目的pidan.filter 包中新建两个过滤器 MyFilter01 和MyFilter02
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
| package baixiao.filter;
import java.io.IOException;
import java.io.PrintWriter;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
public class MyFilter01 implements Filter {
public void destroy() {
}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
PrintWriter out=response.getWriter();
out.write("Hello MyFilter01<br />");
chain.doFilter(request, response);
}
public void init(FilterConfig fConfig) throws ServletException {
}
}
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
| package baixiao.filter;
import java.io.IOException;
import java.io.PrintWriter;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
public class MyFilter02 implements Filter {
public void destroy() {
}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
PrintWriter out=response.getWriter();
out.write("MyFilter02 Before<br />");
chain.doFilter(request, response);
out.write("MyFilter02 After<br />");
}
public void init(FilterConfig fConfig) throws ServletException {
}
}
|
为了防止其他过滤器影响此次Filter链的演示效果,请先在web.xml文件中注释掉其他过滤器的配置信息。
然后,将MyFilter01和MyFilter02过滤器的映射信息配置在MyServlet配置信息前面
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
| <filter>
<filter-name>MyFilter01</filter-name>
<filter-class>pidan.filter.MyFilter01</filter-class>
</filter>
<filter-mapping>
<filter-name>MyFilter01</filter-name>
<url-pattern>/MyServlet</url-pattern>
</filter-mapping>
<filter>
<filter-name>MyFilter02</filter-name>
<filter-class>baixiao.filter.MyFilter02</filter-class>
</filter>
<filter-mapping>
<filter-name>MyFilter02</filter-name>
<url-pattern>/MyServlet</url-pattern>
</filter-mapping>
|
MyServlet首先被MyFilter01拦截了,打印出MyFilter01中的内容,然后被MyFilter02拦截,
直到MyServlet被MyFilterO2放行后,浏览器才显示出MyServlet中的输出内容。
4.FilterConfig接口
在 chapter08项目的baixiao.filter包中创建过滤器MyFilter03,来获取 web.xml中设置的参数
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
| package baixiao.filter;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
public class MyFilter03 implements Filter {
private String characterEncoding;
FilterConfig fc;
public void destroy() {
}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
characterEncoding=fc.getInitParameter("encoding");
System.out.println("encoding 初始化参数的值为:"+characterEncoding);
chain.doFilter(request, response);
}
public void init(FilterConfig fConfig) throws ServletException {
this.fc=fConfig;
}
}
|
在 web.xml文件中配置过滤器信息。由于Filter链中各个Filter的拦截顺序与它们在web.xml文件中元素的映射顺序一致,
因此,为了防止其他Filter影响MyFilter03的拦截效果,这里将MyFilter03映射信息配置在web.xml文件最前端
1
2
3
4
5
6
7
8
9
10
11
12
| <filter>
<filter-name>MyFilter03</filter-name>
<filter-class>baixiao.filter.MyFilter03</filter-class>
<init-param>
<param-name>encoding</param-name>
<param-value>GBK</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>MyFilter03</filter-name>
<url-pattern>/MyServlet</url-pattern>
</filter-mapping>
|
使用Filter获取到了配置文件中的初始化参数。当Tomcat服务器启动时,会加载所有的Web应用,
当加载到chapter08这个Web应用时,MyFiter03就会被初始化调用 init()方法,从而可以得到FilterConfig 对象。
然后在doFilter()方法中通过调用FilterConfig对象的qetlnitParameter()方法便可以获取在web.xml文件中配置的某个参数信息。
5.任务——使用Filter实现用户自动登录
5.1 编写User类
在chapter08项目中创建baixiao.entity包,在该包中编写User 类,该类用于封装用户的信息
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
| package baixiao.entity;
public class User {
private String username;
private String password;
public String getUsername() {
return username;
}
public void setUsername(String username) {
this.username = username;
}
public String getPassword() {
return password;
}
public void setPassword(String password) {
this.password = password;
}
}
|
5.2 实现登录页面和首页
(1).在chapter08项目的WebContent根目录中,编写login.jsp页面,该页面用于创建一个用户登录的表单,
这个表单需要填写用户名和密码,以及用户自动登录的时间
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
| <%@ page language="java" contentType="text/html; charset=utf-8"
pageEncoding="utf-8" import="java.util.*"%>
<html>
<head></head>
<center>
<h3>用户登录</h3>
</center>
<body style="text-align: center;">
<form action="${pageContext.request.contextPath }/LoginServlet"
method="post">
<table border="1" width="600px" cellpadding="0" cellspacing="0"
align="center">
<tr>
<td height="30" align="center">用户名:</td>
<td> <input type="text" name="username" />${errorMsg }</td>
</tr>
<tr>
<td height="30" align="center">密 码:</td>
<td> <input type="password" name="password" /></td>
</tr>
<tr>
<td height="35" align="center">自动登录时间</td>
<td><input type="radio" name="autologin"
value="${60*60*24*31 }" />一个月 <input type="radio" name="autologin"
value="${60*60*24*31*3 }" />三个月 <input type="radio"
name="autologin" value="${60*60*24*31*6 }" />半年 <input
type="radio" name="autologin" value="${60*60*24*31*12 }" />一年</td>
</tr>
<tr>
<td height="30" colspan="2" align="center"><input type="submit"
value="登录" /> <input type="reset"
value="重置" /></td>
</tr>
</table>
</form>
</body>
<html>
|
(2).在chapter08项目的WebContent根目录中,编写index.jsp页面,该页面用于显示用户的登录信息。
如果没有用户登录,在index.jsp页面中就显示一个用户登录的超链接。如果用户已经登录,在 index.isp页面中显示登录的用户名,以及一个注销的超链接
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
| <%@ page language="java" contentType="text/html; charset=utf-8"
pageEncoding="utf-8" import="java.util.*"%>
<%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core"%>
<html>
<head>
<title>显示登录的用户信息</title>
</head>
<body>
<br />
<center>
<h3>欢迎光临</h3>
</center>
<br />
<c:choose>
<c:when test="${sessionScope.user==null }">
<a href="http://localhost:9999/chap08/login.jsp">用户登录</a>
</c:when>
<c:otherwise>
欢迎您:${sessionScope.user.username} <a
href="http://localhost:9999/chap08/LogoutServlet">退出</a>
</c:otherwise>
</c:choose>
<hr />
</body>
</html>
|
6.创建Servlet
(1)编写LoginServlet类
在chapter08项目的baixiaon.filter包中,编写LoginServlet类,该类用于处理用户的登录请求。
如果输入的用户名和密码正确,则发送一个用户自动登录的Cookie,并跳转到首页;否则会提示输入的用户名或密码错误,
并跳转至登录页面login.jsp让用户重新登录
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
| package baixiao.filter;
import java.io.IOException;
import javax.servlet.ServletException;
import javax.servlet.annotation.WebServlet;
import javax.servlet.http.Cookie;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import pidan.entity.User;
public class LoginServlet extends HttpServlet {
public LoginServlet() {
super();
}
protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
String username = request.getParameter("username");
String password = request.getParameter("password");
if ("pidan".equals(username) && "666666".equals(password)) {
User user = new User();
user.setUsername(username);
user.setPassword(password);
request.getSession().setAttribute("user", user);
String autoLogin = request.getParameter("autoLogin");
if (autoLogin != null) {
Cookie cookie = new Cookie(autoLogin, username + "-"+password);
cookie.setMaxAge(Integer.parseInt(autoLogin));
cookie.setPath(request.getContextPath());
response.addCookie(cookie);
}
response.sendRedirect(request.getContextPath()+"/index.jsp");
}else {
request.setAttribute("errerMsg", "用户名或密码错误");
request.getRequestDispatcher("/login.jsp").forward(request, response);
}
}
protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
doGet(request, response);
}
}
|
7.创建过滤器
在chapter08项目的baixiao.filter包中,编写AutoLoginFilter类,该类用于拦截用户登录的访问请求,
判断请求中是否包含用户自动登录的Cookie。
如果包含,则获取Cookie中的用户名和密码,并验证用户名和密码是否正确。如果正确,则将用户的登录信息封装到User对象存入Session域中,完成用户自动登录
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
| package baixiao.filter;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.annotation.WebFilter;
import javax.servlet.http.Cookie;
import javax.servlet.http.HttpServletRequest;
import baixiao.entity.User;
public class AutoLoginFilter implements Filter {
public void destroy() {
}
public void doFilter(ServletRequest req, ServletResponse response, FilterChain chain) throws IOException, ServletException {
HttpServletRequest request = (HttpServletRequest) req;
Cookie[] cookies = request.getCookies();
String autologin = null;
for (int i = 0; cookies != null && i<cookies.length;i++) {
if ("autologin".equals(cookies[i].getValue())) {
autologin = cookies[i].getValue();
break;
}
}
if (autologin != null) {
String[] parts = autologin.split("-");
String username = parts[0];
String password = parts[1];
if ("pidan".equals(username)&&("666666").equals(password)) {
User user = new User();
user.setUsername(username);
user.setPassword(password);
request.getSession().setAttribute("user", user);
}
}
chain.doFilter(request, response);
}
public void init(FilterConfig fConfig) throws ServletException {
}
}
|
8.配置映射信息
在web.xml文件中,配置所有相关Servlet及AutoLoginFilter过滤器信息。
由于要拦截用户访问资源的所有请求,因此,将过滤器元素拦截的路径设置为“/”
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
| <filter>
<filter-name>AutoLoginFilter</filter-name>
<filter-class>baixiao.filter.AutoLoginFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>AutoLoginFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<servlet>
<servlet-name>LoginServlet</servlet-name>
<servlet-class>baixiao.filter.LoginServlet</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>LoginServlet</servlet-name>
<url-pattern>/LoginServlet</url-pattern>
</servlet-mapping>
<servlet>
<servlet-name>LogoutServlet</servlet-name>
<servlet-class>baixiao.filter.LogouServlet</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>LogoutServlet</servlet-name>
<url-pattern>/LogoutServlet</url-pattern>
</servlet-mapping>
|
9.运行项目,查看结果
(1)访问login.jsp页面
重启服务器,打开IE浏览器在地址栏中输入“http://localhost:8888/chapter08/login.jsp”,
此时,浏览器窗口中会显示一个用户登录的表单,在这个表单中输入用户名“baixiao”、密码“123456”,并选择用户自动登录的时间
(2)实现登录
点击登录按钮,便可完成自动登录
(3)注销用户
单击图中的【注销】超链接,就可以注销当前的用户,然后显示index.jsp页面
