request通过反射修改参数方法
这种方法parameterMap是变了,但是parameter并没有改变
Map<String, String[]> parameterMap = request.getParameterMap();
Field lockedField = parameterMap.getClass().getDeclaredField("locked");
lockedField.setAccessible(true);//打开访问权限,让他裸奔,private类型照样玩他
lockedField.setBoolean(parameterMap, false);//将lock参数设置为false了,就是可以修改了
// parameterMap.put(Constant.GW_APICODE, new String[]{"getCodeCombine"});
// parameterMap.put(Constant.GW_SYSTEMSOURCE, new String[]{"1"});
// parameterMap.put(Constant.GW_OKEY, new String[]{"1"});
lockedField.setBoolean(parameterMap, true);
使用以下方法修改request里的参数
private Map<String, ArrayList<String>> getRequestMap(ServletRequest request) {
try {
Class clazz = ((RequestFacade)request).getClass();
Field requestField = clazz.getDeclaredField("request");
requestField.setAccessible(true);
Field parametersParsedField = requestField.getType().getDeclaredField("parametersParsed");
parametersParsedField.setAccessible(true);
Field coyoteRequestField = requestField.getType().getDeclaredField("coyoteRequest");
coyoteRequestField.setAccessible(true);
Field parametersField = coyoteRequestField.getType().getDeclaredField("parameters");
parametersField.setAccessible(true);
Field hashTabArrField = parametersField.getType().getDeclaredField("paramHashValues");
hashTabArrField.setAccessible(true);
Object innerRequest = requestField.get(request);
parametersParsedField.setBoolean(innerRequest, true);
Object coyoteRequestObject = coyoteRequestField.get(innerRequest);
Object parameterObject = parametersField.get(coyoteRequestObject);
return (Map<String, ArrayList<String>>) hashTabArrField.get(parameterObject);
} catch (Exception e) {
e.printStackTrace();
return Collections.emptyMap();
}
}
参考:https://www.jb51.net/article/219435.htm
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
