HTML特殊字符过滤器
2015-06-10 14:42
656 查看
package com.pdsu.filter;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletRequestWrapper;
import javax.servlet.http.HttpServletResponse;
/**
* 类说明:HTML特殊字符过滤器
*
* @author 作者: LiuJunGuang
* @version 创建时间:2011-11-18 下午07:36:44
*/
public class HTMLCharacterFilter implements Filter {
public void init(FilterConfig filterConfig) throws ServletException {
}
public void doFilter(ServletRequest req, ServletResponse resp,
FilterChain chain) throws IOException, ServletException {
HttpServletRequest request = (HttpServletRequest) req;
HttpServletResponse response = (HttpServletResponse) resp;
chain.doFilter(new HTMLCharacterRequest(request), response);
}
public void destroy() {
}
}
// html特殊字符处理类
class HTMLCharacterRequest extends HttpServletRequestWrapper {
public HTMLCharacterRequest(HttpServletRequest request) {
super(request);
}
@Override
public String getParameter(String name) {
return filter(super.getParameter(name));
}
@Override
public String[] getParameterValues(String name) {
String[] values = super.getParameterValues(name);
if (values == null || values.length == 0)
return values;
for (int i = 0; i < values.length; i++) {
String str = values[i];
values[i] = filter(str);
}
return values;
}
/**
* 对特殊的html字符进行编码
*
* @param message
* @return
*/
private String filter(String message) {
if (message == null)
return (null);
char content[] = new char[message.length()];
message.getChars(0, message.length(), content, 0);
StringBuilder result = new StringBuilder(content.length + 50);
for (int i = 0; i < content.length; i++) {
switch (content[i]) {
case '<':
result.append("<");
break;
case '>':
result.append(">");
break;
case '&':
result.append("&");
break;
case '"':
result.append(""");
break;
default:
result.append(content[i]);
}
}
return (result.toString());
}
}
在web.xml中添加如下内容:
[html] view
plaincopy
<!-- HTML特殊字符过滤器 -->
<filter>
<filter-name>HTMLFiter</filter-name>
<filter-class>com.pdsu.filter.HTMLCharacterFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>HTMLFiter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletRequestWrapper;
import javax.servlet.http.HttpServletResponse;
/**
* 类说明:HTML特殊字符过滤器
*
* @author 作者: LiuJunGuang
* @version 创建时间:2011-11-18 下午07:36:44
*/
public class HTMLCharacterFilter implements Filter {
public void init(FilterConfig filterConfig) throws ServletException {
}
public void doFilter(ServletRequest req, ServletResponse resp,
FilterChain chain) throws IOException, ServletException {
HttpServletRequest request = (HttpServletRequest) req;
HttpServletResponse response = (HttpServletResponse) resp;
chain.doFilter(new HTMLCharacterRequest(request), response);
}
public void destroy() {
}
}
// html特殊字符处理类
class HTMLCharacterRequest extends HttpServletRequestWrapper {
public HTMLCharacterRequest(HttpServletRequest request) {
super(request);
}
@Override
public String getParameter(String name) {
return filter(super.getParameter(name));
}
@Override
public String[] getParameterValues(String name) {
String[] values = super.getParameterValues(name);
if (values == null || values.length == 0)
return values;
for (int i = 0; i < values.length; i++) {
String str = values[i];
values[i] = filter(str);
}
return values;
}
/**
* 对特殊的html字符进行编码
*
* @param message
* @return
*/
private String filter(String message) {
if (message == null)
return (null);
char content[] = new char[message.length()];
message.getChars(0, message.length(), content, 0);
StringBuilder result = new StringBuilder(content.length + 50);
for (int i = 0; i < content.length; i++) {
switch (content[i]) {
case '<':
result.append("<");
break;
case '>':
result.append(">");
break;
case '&':
result.append("&");
break;
case '"':
result.append(""");
break;
default:
result.append(content[i]);
}
}
return (result.toString());
}
}
在web.xml中添加如下内容:
[html] view
plaincopy
<!-- HTML特殊字符过滤器 -->
<filter>
<filter-name>HTMLFiter</filter-name>
<filter-class>com.pdsu.filter.HTMLCharacterFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>HTMLFiter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- HTML空格占位符
- 利用html 自身支持的<meta>实现页面过渡特效
- HTML--Canvas基础入门
- C#检查HTML是否闭合以及自动修复代码
- CodeIgniter使用smtp服务发送html邮件的方法
- CodeIgniter使用smtp服务发送html邮件的方法
- html中a连接不跳转的写法
- html 跨域问题-引用别人
- html学习笔记(2)——页面布局之浮动布局
- html checkbox 全选与反选
- 利用HtmlAgilityPack库进行HTML数据抓取
- HTML表单元素
- HTML URL 编码
- org.tinygroup.htmlparser-Html解析器
- 关于系统首页绘制问题(ext布局+c#后台添加数据)经html输出流输出响应客户端
- XmlParser和HtmlParser
- TinyHtmlParser开源喽
- libgdx html 跨平台的坑
- kindEditor,html编辑器用法与体会,及如何获取文本域中的值 (转)
- kindeditor html代码过滤(丢失某些HTML标签)