使用过滤器处理Session失效的问题
2010-07-09 12:47
671 查看
以下是Servlet过滤器的部分代码
SessionControlFilter.java
package com.xqx.multiuploadservlet;
import java.io.IOException;
import java.io.PrintWriter;
import java.io.UnsupportedEncodingException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import com.cyzt.model.Tuser;
import com.cyzt.util.Pubutil;
public class SessionControlFilter implements Filter {
protected FilterConfig filterConfig;
private String orgAndPersonloginpage;
private String projectloginpage;
Pubutil pub=new Pubutil();
public void destroy() {
// TODO Auto-generated method stub
this.filterConfig = null;
}
public void doFilter(ServletRequest request, ServletResponse response,
FilterChain chain) throws IOException, ServletException {
// TODO Auto-generated method stub
HttpServletRequest rq = (HttpServletRequest) request;
String path = pub.getBasePath(rq);
HttpServletResponse rp = (HttpServletResponse) response;
HttpSession session = rq.getSession(true);
Tuser user = (Tuser) session.getAttribute("User");
Tuser ouser = (Tuser) session.getAttribute("OUser");
Tuser puser = (Tuser) session.getAttribute("PUser");
Tuser duser = (Tuser) session.getAttribute("DUser");
rp.setCharacterEncoding("GBK");
String request_url = rq.getRequestURI();// 得到用户的请求路径
String contentpath_url = rq.getContextPath();// 得到web的上下文路径;
String url = request_url.substring(contentpath_url.length());
try {
if (!request_url.equals("/kmcyzt/")&&request_url.indexOf("login.jsp") == -1
&& request_url.indexOf("projectlogin.jsp") == -1
&& request_url.indexOf("organizationlogin.do") == -1
&& request_url.indexOf("personlogin.do")==-1
&& request_url.indexOf("departmentlogin.do")==-1
&& user == null && ouser == null && puser == null
&& duser == null) {
PrintWriter out = rp.getWriter();
out.println("<script language='javascript' type='text/javascript'>");
out.println("alert('由于你长时间没有操作,导致Session失效!请你重新登录!');window.top.location.href='"+path+"/projectlogin.jsp'");
out.println("</script>");
} else {
chain.doFilter(request, response);
}
} catch (IOException e) {
e.getMessage();
e.printStackTrace();
}
}
public void init(FilterConfig config) throws ServletException {
// TODO Auto-generated method stub
this.filterConfig = config;
orgAndPersonloginpage = config
.getInitParameter("OrgAndPersonLoginPage");
projectloginpage = config.getInitParameter("ProjectLoginPage");
if (orgAndPersonloginpage == null || projectloginpage == null) {
throw new ServletException("InitialLoginPage faild!");
}
}
}
web.xml的配置文件如下:
<filter>
<filter-name>SessionControlFilter</filter-name>
<filter-class>com.xqx.multiuploadservlet.SessionControlFilter</filter-class>
<init-param>
<param-name>OrgAndPersonLoginPage</param-name>
<param-value>login.jsp</param-value>
</init-param>
<init-param>
<param-name>ProjectLoginPage</param-name>
<param-value>projectlogin.jsp</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>SessionControlFilter</filter-name>
<url-pattern>*.jsp</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>SessionControlFilter</filter-name>
<url-pattern>*.do</url-pattern>
</filter-mapping>
<session-config>
<session-timeout>1</session-timeout>
</session-config>
另附如下的知识供理解:
假定你的web application 名称为news,你在浏览器中输入请求路径:
http://localhost:8080/news/main/list.jsp
则执行下面向行代码后打印出如下结果:
1、 System.out.println(request.getContextPath());
打印结果:/news
2、System.out.println(request.getServletPath());
打印结果:/main/list.jsp
3、 System.out.println(request.getRequestURI());
打印结果:/news/main/list.jsp
4、 System.out.println(request.getRealPath("/"));
打印结果:F:/Tomcat 6.0/webapps/news/test
SessionControlFilter.java
package com.xqx.multiuploadservlet;
import java.io.IOException;
import java.io.PrintWriter;
import java.io.UnsupportedEncodingException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import com.cyzt.model.Tuser;
import com.cyzt.util.Pubutil;
public class SessionControlFilter implements Filter {
protected FilterConfig filterConfig;
private String orgAndPersonloginpage;
private String projectloginpage;
Pubutil pub=new Pubutil();
public void destroy() {
// TODO Auto-generated method stub
this.filterConfig = null;
}
public void doFilter(ServletRequest request, ServletResponse response,
FilterChain chain) throws IOException, ServletException {
// TODO Auto-generated method stub
HttpServletRequest rq = (HttpServletRequest) request;
String path = pub.getBasePath(rq);
HttpServletResponse rp = (HttpServletResponse) response;
HttpSession session = rq.getSession(true);
Tuser user = (Tuser) session.getAttribute("User");
Tuser ouser = (Tuser) session.getAttribute("OUser");
Tuser puser = (Tuser) session.getAttribute("PUser");
Tuser duser = (Tuser) session.getAttribute("DUser");
rp.setCharacterEncoding("GBK");
String request_url = rq.getRequestURI();// 得到用户的请求路径
String contentpath_url = rq.getContextPath();// 得到web的上下文路径;
String url = request_url.substring(contentpath_url.length());
try {
if (!request_url.equals("/kmcyzt/")&&request_url.indexOf("login.jsp") == -1
&& request_url.indexOf("projectlogin.jsp") == -1
&& request_url.indexOf("organizationlogin.do") == -1
&& request_url.indexOf("personlogin.do")==-1
&& request_url.indexOf("departmentlogin.do")==-1
&& user == null && ouser == null && puser == null
&& duser == null) {
PrintWriter out = rp.getWriter();
out.println("<script language='javascript' type='text/javascript'>");
out.println("alert('由于你长时间没有操作,导致Session失效!请你重新登录!');window.top.location.href='"+path+"/projectlogin.jsp'");
out.println("</script>");
} else {
chain.doFilter(request, response);
}
} catch (IOException e) {
e.getMessage();
e.printStackTrace();
}
}
public void init(FilterConfig config) throws ServletException {
// TODO Auto-generated method stub
this.filterConfig = config;
orgAndPersonloginpage = config
.getInitParameter("OrgAndPersonLoginPage");
projectloginpage = config.getInitParameter("ProjectLoginPage");
if (orgAndPersonloginpage == null || projectloginpage == null) {
throw new ServletException("InitialLoginPage faild!");
}
}
}
web.xml的配置文件如下:
<filter>
<filter-name>SessionControlFilter</filter-name>
<filter-class>com.xqx.multiuploadservlet.SessionControlFilter</filter-class>
<init-param>
<param-name>OrgAndPersonLoginPage</param-name>
<param-value>login.jsp</param-value>
</init-param>
<init-param>
<param-name>ProjectLoginPage</param-name>
<param-value>projectlogin.jsp</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>SessionControlFilter</filter-name>
<url-pattern>*.jsp</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>SessionControlFilter</filter-name>
<url-pattern>*.do</url-pattern>
</filter-mapping>
<session-config>
<session-timeout>1</session-timeout>
</session-config>
另附如下的知识供理解:
假定你的web application 名称为news,你在浏览器中输入请求路径:
http://localhost:8080/news/main/list.jsp
则执行下面向行代码后打印出如下结果:
1、 System.out.println(request.getContextPath());
打印结果:/news
2、System.out.println(request.getServletPath());
打印结果:/main/list.jsp
3、 System.out.println(request.getRequestURI());
打印结果:/news/main/list.jsp
4、 System.out.println(request.getRealPath("/"));
打印结果:F:/Tomcat 6.0/webapps/news/test
相关文章推荐
- 使用Ajax时处理用户session失效问题的解决方法
- 使用Ajax时处理用户session失效的问题
- session失效,使用ajax请求数据被拦截,此时正常的处理逻辑是跳到登录界面,而不是界面没有变化(java推断是否是ajax请求)
- 使用ashx一般处理程序,读取不到Session的问题
- 过滤器案例之编码问题处理、代理对象的使用、过滤器案例之无效数据的过滤
- vue前后端分离使用fetch 跨域请求时 session失效问题解决
- struts2 uploadify配合使用,以及处理session丢失问题
- 基于ASP.net C#技术来实现,介绍如何处理Session对象变量失效的问题
- SpringMVC 拦截器遇到浏览器请求/favicon.ico被拦截导致触发session失效问题的处理办法
- PHP中使用asort进行中文排序失效的问题处理
- sqlplus的session下无法使用退格键的问题处理
- 编写SESSION过滤器时,SESSION失效时,登录页在顶层TOP中显示SHOW出的问题
- sqlplus的session下无法使用退格键的问题处理
- 3ff8 使用spring-session管理session时,针对flash上传组件丢失session的问题处理
- ASP.NET一般处理程序(.ashx.cs)中使用Session的问题
- 使用 Filter 过滤器 处理中文 乱码问题
- 过滤器面对ajax访问遇到Session失效问题
- JAVA Web 安全机制----使用filter验证session用户和页面缓存问题处理
- 使用过滤器来处理Session超时和权限管理
- session失效,使用ajax请求数据被拦截,此时正常的处理逻辑是跳到登录界面,而不是界面没有变化(java判断是否是ajax请求)