本文介绍了一种在Web应用中实现会话超时处理的方法,通过在web.xml中配置过滤器,并在过滤器中检查用户会话,确保用户在长时间无操作后能被自动登出或跳转到登录页面。
1、在web.xml配置:
WmsFilter com.test.wms.filter.WmsFilter true WmsFilter /mgr/*/*基于请求路径过滤*/2、对应过滤器代码:
public class WmsFilter implements Filter {
// 日志
Logger logger = LoggerFactory.getLogger(WmsFilter.class);
public void destroy() {
// TODO Auto-generated method stub
}
public void doFilter(ServletRequest sreq, ServletResponse sresp, FilterChain chain)
throws IOException, ServletException {
if (!(sreq instanceof HttpServletRequest) || !(sresp instanceof HttpServletResponse)) {
throw new ServletException(“OncePerRequestFilter just supports HTTP requests”);
}
HttpServletRequest httpRequest = (HttpServletRequest) sreq;
HttpServletResponse httpResponse = (HttpServletResponse) sresp;
httpResponse.setHeader(“Cache-Control”,“no-cache”);
httpResponse.setHeader(“Pragma”,“no-cache”);
httpResponse.setDateHeader (“Expires”, -1);
httpResponse.setHeader(“P3P”,“CP=CAO PSA OUR”);
HttpSession session = httpRequest.getSession();
if(!httpResponse.isCommitted()){
if(session != null){
Object object = session.getAttribute(“userName”);
String userName = object == null ? null : (String) object;
if (userName == null) {
boolean isAjaxRequest = isAjaxRequest(httpRequest);
if (isAjaxRequest) {
httpResponse.sendError(HttpStatus.UNAUTHORIZED.value(), “您已经太长时间没有操作,请刷新页面”);
}
httpResponse.sendRedirect("/wms/index.jsp");
}
}else{
httpResponse.sendRedirect("/wms/index.jsp");
}
}
chain.doFilter(sreq, sresp);
}
/**
- 判断是否为Ajax请求
- @param request
-
HttpServletRequest - @return 是true, 否false
*/
public static boolean isAjaxRequest(HttpServletRequest request) {
return (request.getHeader(“X-Requested-With”) != null
&& “XMLHttpRequest”.equals(request.getHeader(“X-Requested-With”).toString()));
}
public void init(FilterConfig config) throws ServletException {
}
}
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
