关于tomcat,request.getParameterMap修改map值的问题

最新推荐文章于 2022-02-17 16:48:02 发布
原创 最新推荐文章于 2022-02-17 16:48:02 发布 · 1k 阅读 · 2 ·
CC 4.0 BY-SA版权
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
文章标签:

#tomcat #request #ParameterMap

本文探讨了如何通过继承HttpServletRequestWrapper类来修改HttpServletRequest的getParameterMap数据,并解释了Tomcat中ParameterMap类的锁定机制。通过实例代码演示了如何实现对请求参数的XSS过滤和修改。
网上都是getParameterMap取到的数据不能修改 但是我继承HttpServletRequestWrapper的类竟然修改成功了
看代码:

package com.uniresource.framework.security;

import java.util.Iterator;
import java.util.Map;
import java.util.Set;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletRequestWrapper;

import org.springframework.web.util.HtmlUtils;

public class XssHttpServletRequestWrapper extends HttpServletRequestWrapper {  
    public XssHttpServletRequestWrapper(HttpServletRequest servletRequest) {
        super(servletRequest);
    }
    public String[] getParameterValues(String parameter) {
      String[] values = super.getParameterValues(parameter);
      if (values==null)  {
                  return null;
          }
      int count = values.length;
      String[] encodedValues = new String[count];
      for (int i = 0; i < count; i++) {
                 encodedValues[i] = cleanXSS(values[i]);
       }
      return encodedValues;
    }
    public String getParameter(String parameter) {
          String value = super.getParameter(parameter);
          if (value == null) {
                 return null;
                  }
          return cleanXSS(value);
    }

	@Override
	public Map getParameterMap() {
    	Map map=super.getParameterMap();
    	Set set=map.keySet();
    	Iterator iter=set.iterator();
    	while(iter.hasNext()){
    		String key=iter.next().toString();
    		Object obj=map.get(key);
    		String[] param=(String[])obj;
    		//String[] newParam=new String[param.length];
    		for(int i=0;i<param.length;i++){
    			String s=param[i];
    			param[i]=HtmlUtils.htmlEscape(s);
    			//newParam[i]=HtmlUtils.htmlEscape(s);
    		}
    		//map.put(key, newParam);
    	}
    	/*for(int i=0;i<map.size();i++){
    		Object obj=map.get(i);
    		if(obj instanceof String){
    			System.out.println(obj.toString());
    		}
    	}*/
		return map;
	}
	public String getHeader(String name) {
        String value = super.getHeader(name);
        if (value == null)
            return null;
        return cleanXSS(value);
    }
    private String cleanXSS(String value) {
        //You'll need to remove the spaces from the html entities below
        value = value.replaceAll("<", "& lt;").replaceAll(">", "& gt;");
        value = value.replaceAll("\\(", "& #40;").replaceAll("\\)", "& #41;");
        value = value.replaceAll("'", "& #39;");
        value = value.replaceAll("eval\\((.*)\\)", "");
        value = value.replaceAll("[\\\"\\\'][\\s]*javascript:(.*)[\\\"\\\']", "\"\"");
        value = value.replaceAll("script", "script");
        value = HtmlUtils.htmlEscape(value);
        return value;
    }

}


所以就去查看了下org.apache.catalina.util.ParameterMap的源码 原来我的tomcat中这个类的locked是非锁定的。还是说现在的tomcat这个值都是非锁定状态的。
/*     */ package org.apache.catalina.util;
/*     */ 
/*     */ import java.util.HashMap;
/*     */ import java.util.Map;
/*     */ import org.apache.tomcat.util.res.StringManager;
/*     */ 
/*     */ public final class ParameterMap<K, V> extends HashMap<K, V>
/*     */ {
/*     */   private static final long serialVersionUID = 1L;
/* 101 */   private boolean locked = false;
/*     */ 
/* 129 */   private static final StringManager sm = StringManager.getManager("org.apache.catalina.util");
/*     */ 
/*     */   public ParameterMap()
/*     */   {
/*     */   }
/*     */ 
/*     */   public ParameterMap(int initialCapacity)
/*     */   {
/*  64 */     super(initialCapacity);
/*     */   }
/*     */ 
/*     */   public ParameterMap(int initialCapacity, float loadFactor)
/*     */   {
/*  78 */     super(initialCapacity, loadFactor);
/*     */   }
/*     */ 
/*     */   public ParameterMap(Map<K, V> map)
/*     */   {
/*  90 */     super(map);
/*     */   }
/*     */ 
/*     */   public boolean isLocked()
/*     */   {
/* 109 */     return this.locked;
/*     */   }
/*     */ 
/*     */   public void setLocked(boolean locked)
/*     */   {
/* 121 */     this.locked = locked;
/*     */   }
/*     */ 
/*     */   public void clear()
/*     */   {
/* 145 */     if (this.locked) {
/* 146 */       throw new IllegalStateException(sm.getString("parameterMap.locked"));
/*     */     }
/* 148 */     super.clear();
/*     */   }
/*     */ 
/*     */   public V put(K key, V value)
/*     */   {
/* 169 */     if (this.locked) {
/* 170 */       throw new IllegalStateException(sm.getString("parameterMap.locked"));
/*     */     }
/* 172 */     return super.put(key, value);
/*     */   }
/*     */ 
/*     */   public void putAll(Map<? extends K, ? extends V> map)
/*     */   {
/* 189 */     if (this.locked) {
/* 190 */       throw new IllegalStateException(sm.getString("parameterMap.locked"));
/*     */     }
/* 192 */     super.putAll(map);
/*     */   }
/*     */ 
/*     */   public V remove(Object key)
/*     */   {
/* 210 */     if (this.locked) {
/* 211 */       throw new IllegalStateException(sm.getString("parameterMap.locked"));
/*     */     }
/* 213 */     return super.remove(key);
/*     */   }
/*     */ }

/* Location:           E:\apache-tomcat-7.0.30\lib\catalina.jar
 * Qualified Name:     org.apache.catalina.util.ParameterMap
 * Java Class Version: 6 (50.0)
 * JD-Core Version:    0.5.3
 */
ajax提交的方式、 request.getParameterMap()用法
此后如竟没有炬火我便是唯一的光
06-02 659
Ajax(Asynchronous JavaScript and XML),直译为“”,是一种创建应用的网页开发技术,用于,由杰西·詹姆士·贾瑞特所提出。与传统的Web应用相比,通过与进行就可以实现网页的异步更新,在。
java web 修改request携带的参数信息
09-08
在`doFilter()`方法中,我们可以对`HttpServletRequest`的`getParameterMap()`方法返回的参数映射进行修改。这个映射包含了所有请求参数的键对,其中键是参数名,是一个字符串数组,因为同一个参数名可能对应多...
修改request.getParameterMap()报错:No modifications are allowed to a locked ParameterMap
lyt的博客
11-16 682
问题修改request.getParameterMap()内容时报错:java.lang.IllegalStateException: No modifications are allowed to a locked ParameterMap 解决方案: Map<String, String[]> parameterMap = request.getParameterMap(); 改为 Map<String, String[]> parameterMap = new Hash
在springmvc的Filter过滤器中更改请求参数,servletRequest.getParameter或者servletRequest.getParameterMap的参数教程
qq_32635221的博客
01-13 3367
如何更改servletRequest.getParameterMap的参数? 今天接到一个需求,需要对整个项目的请求参数做加密处理,但是项目已经成型,想要更改参数就需要使用MVC的过滤器了。 想要实现的结果是 前端发送一个这样的请求:/chaopin-boot/api/v1/short/add?ec=O9xLAKlugFVUl8NVY-4PHkg-0_KpQZ-IPzc9mYCKY31Rpg2ptsEkkdkEVnsT-6b3JaVY1I6T8Fy97t95AKNP2GfIgyaF5uQ46fo.
关于request.getParameterMap()不能被改变
weixin_30691871的博客
08-15 789
request.getParameterMap()的返回类型为 org.apache.catalina.util.ParameterMap 类型 在 ParameterMap 中有个加锁的方法 当改变getParameterMap时 控制台会报Cannot find message associated with key parameterMap.locked,错误 转载于:https:/...
request.getParameterMap()返回map是一个不可更改的map
熊熊熊猫的专栏
07-21 4953
原处答案        讲答案之前,先说说原因吧。其实出现这个问题很有意思。        学了BaseServlet,可以在service中添加需要调用的方法。但是必须通过参数传递的方法指明需要调用的方法。而我写了一个form,method=post。是一个类似于注册的表单吧。所以hidden了一个参数。但是不巧,我传递过去之后使用的request.getParameterMap()去给对象...
关于request.getParameterMap()
songwenbinasdf的专栏
11-11 807
request.getParameterMap()返回的,是一个Map类型的,记录着所提交的请求中请求参数和请求参数的映射关系。它的返回有个特别之处——只能读。不像普通的map数据一样可以修改。这是因为服务器为了实现一定的安全规范,所作的限制,WebLogic,Tomcat,Resin,JBoss等服务器均实现了此规范。但是有必要在拿到此修改的话,要新建一个map对象,将返回复制到此新
package com.ruoyi.common.utils; import cn.hutool.core.convert.Convert; import cn.hutool.extra.servlet.ServletUtil; import cn.hutool.http.HttpStatus; import com.ruoyi.common.constant.Constants; import lombok.AccessLevel; import lombok.NoArgsConstructor; import org.springframework.http.MediaType; import org.springframework.web.context.request.RequestAttributes; import org.springframework.web.context.request.RequestContextHolder; import org.springframework.web.context.request.ServletRequestAttributes; import jakarta.servlet.ServletRequest; import jakarta.servlet.http.HttpServletRequest; import jakarta.servlet.http.HttpServletResponse; import jakarta.servlet.http.HttpSession; import java.io.IOException; import java.io.UnsupportedEncodingException; import java.net.InetAddress; import java.net.URLDecoder; import java.net.URLEncoder; import java.net.UnknownHostException; import java.nio.charset.StandardCharsets; import java.util.Collections; import java.util.HashMap; import java.util.Map; /** * 客户端工具类 * * @author ruoyi */ @NoArgsConstructor(access = AccessLevel.PRIVATE) public class ServletUtils extends ServletUtil { /** * 获取String参数 */ public static String getParameter(String name) { return getRequest().getParameter(name); } /** * 获取String参数 */ public static String getParameter(String name, String defaultValue) { return Convert.toStr(getRequest().getParameter(name), defaultValue); } /** * 获取Integer参数 */ public static Integer getParameterToInt(String name) { return Convert.toInt(getRequest().getParameter(name)); } /** * 获取Integer参数 */ public static Integer getParameterToInt(String name, Integer defaultValue) { return Convert.toInt(getRequest().getParameter(name), defaultValue); } /** * 获取Boolean参数 */ public static Boolean getParameterToBool(String name) { return Convert.toBool(getRequest().getParameter(name)); } /** * 获取Boolean参数 */ public static Boolean getParameterToBool(String name, Boolean defaultValue) { return Convert.toBool(getRequest().getParameter(name), defaultValue); } /** * 获得所有请求参数 * * @param request 请求对象{@link ServletRequest} * @return Map */ public static Map<String, String[]> getParams(ServletRequest request) { final Map<String, String[]> map = request.getParameterMap(); return Collections.unmodifiableMap(map); } /** * 获得所有请求参数 * * @param request 请求对象{@link ServletRequest} * @return Map */ /*public static Map<String, String> getParamMap(ServletRequest request) { Map<String, String> params = new HashMap<>(); for (Map.Entry<String, String[]> entry : getParams(request).entrySet()) { params.put(entry.getKey(), StringUtils.join(entry.getValue(), StringUtils.SEPARATOR)); } return params; }*/ /** * 获取request */ public static HttpServletRequest getRequest() { return getRequestAttributes().getRequest(); } /** * 获取response */ public static HttpServletResponse getResponse() { return getRequestAttributes().getResponse(); } /** * 获取session */ public static HttpSession getSession() { return getRequest().getSession(); } public static ServletRequestAttributes getRequestAttributes() { RequestAttributes attributes = RequestContextHolder.getRequestAttributes(); return (ServletRequestAttributes) attributes; } /** * 将字符串渲染到客户端 * * @param response 渲染对象 * @param string 待渲染的字符串 */ public static void renderString(HttpServletResponse response, String string) { try { response.setStatus(HttpStatus.HTTP_OK); response.setContentType(MediaType.APPLICATION_JSON_VALUE); response.setCharacterEncoding(StandardCharsets.UTF_8.toString()); response.getWriter().print(string); } catch (IOException e) { e.printStackTrace(); } } /** * 是否是Ajax异步请求 * * @param request */ public static boolean isAjaxRequest(HttpServletRequest request) { String accept = request.getHeader("accept"); if (accept != null && accept.contains(MediaType.APPLICATION_JSON_VALUE)) { return true; } String xRequestedWith = request.getHeader("X-Requested-With"); if (xRequestedWith != null && xRequestedWith.contains("XMLHttpRequest")) { return true; } String uri = request.getRequestURI(); if (StringUtils.equalsAnyIgnoreCase(uri, ".json", ".xml")) { return true; } String ajax = request.getParameter("__ajax"); return StringUtils.equalsAnyIgnoreCase(ajax, "json", "xml"); } public static String getClientIP() { return getReqIp(getRequest()); } public static String getReqIp(HttpServletRequest request) { String ip = request.getHeader("X-Forwarded-For"); if (StringUtils.isBlank(ip) || "unknown".equalsIgnoreCase(ip)) { ip = request.getHeader("X-Real-IP"); } if (StringUtils.isBlank(ip) || "unknown".equalsIgnoreCase(ip)) { ip = request.getHeader("Proxy-Client-IP"); } if (StringUtils.isBlank(ip) || "unknown".equalsIgnoreCase(ip)) { ip = request.getHeader("WL-Proxy-Client-IP"); } if (StringUtils.isBlank(ip) || "unknown".equalsIgnoreCase(ip)) { ip = request.getHeader("HTTP_CLIENT_IP"); } if (StringUtils.isBlank(ip) || "unknown".equalsIgnoreCase(ip)) { ip = request.getHeader("HTTP_X_FORWARDED_FOR"); } if (StringUtils.isBlank(ip) || "unknown".equalsIgnoreCase(ip)) { ip = request.getRemoteAddr(); } if (StringUtils.isNotBlank(ip) && !"unknown".equalsIgnoreCase(ip) && StringUtils.contains(ip, ",")) { // 多次反向代理后会有多个IP,第一个为真实IP。 ip = StringUtils.substringBefore(ip, ","); } // 处理localhost访问 if (StringUtils.isBlank(ip) || "unkown".equalsIgnoreCase(ip) || StringUtils.split(ip, ".").length != 4) { try { InetAddress inetAddress = InetAddress.getLocalHost(); ip = inetAddress.getHostAddress(); } catch (UnknownHostException e) { e.printStackTrace(); } } return ip; } /** * 内容编码 * * @param str 内容 * @return 编码后的内容 */ public static String urlEncode(String str) { try { return URLEncoder.encode(str, Constants.UTF8); } catch (UnsupportedEncodingException e) { return StringUtils.EMPTY; } } /** * 内容解码 * * @param str 内容 * @return 解码后的内容 */ public static String urlDecode(String str) { try { return URLDecoder.decode(str, Constants.UTF8); } catch (UnsupportedEncodingException e) { return StringUtils.EMPTY; } } } // // Source code recreated from a .class file by IntelliJ IDEA // (powered by FernFlower decompiler) // package cn.hutool.extra.servlet; import cn.hutool.core.bean.BeanUtil; import cn.hutool.core.bean.copier.CopyOptions; import cn.hutool.core.bean.copier.ValueProvider; import cn.hutool.core.collection.ArrayIter; import cn.hutool.core.collection.IterUtil; import cn.hutool.core.collection.ListUtil; import cn.hutool.core.exceptions.UtilException; import cn.hutool.core.io.FileUtil; import cn.hutool.core.io.IORuntimeException; import cn.hutool.core.io.IoUtil; import cn.hutool.core.map.CaseInsensitiveMap; import cn.hutool.core.map.MapUtil; import cn.hutool.core.net.NetUtil; import cn.hutool.core.net.multipart.MultipartFormData; import cn.hutool.core.net.multipart.UploadSetting; import cn.hutool.core.util.ArrayUtil; import cn.hutool.core.util.CharsetUtil; import cn.hutool.core.util.ObjectUtil; import cn.hutool.core.util.ReflectUtil; import cn.hutool.core.util.StrUtil; import cn.hutool.core.util.URLUtil; import java.io.BufferedInputStream; import java.io.BufferedReader; import java.io.File; import java.io.IOException; import java.io.InputStream; import java.io.PrintWriter; import java.io.Writer; import java.lang.reflect.Type; import java.nio.charset.Charset; import java.util.Collection; import java.util.Collections; import java.util.Date; import java.util.Enumeration; import java.util.HashMap; import java.util.LinkedHashMap; import java.util.List; import java.util.Map; import javax.servlet.ServletOutputStream; import javax.servlet.ServletRequest; import javax.servlet.http.Cookie; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; public class ServletUtil { public static final String METHOD_DELETE = "DELETE"; public static final String METHOD_HEAD = "HEAD"; public static final String METHOD_GET = "GET"; public static final String METHOD_OPTIONS = "OPTIONS"; public static final String METHOD_POST = "POST"; public static final String METHOD_PUT = "PUT"; public static final String METHOD_TRACE = "TRACE"; public ServletUtil() { } public static Map<String, String[]> getParams(ServletRequest request) { Map<String, String[]> map = request.getParameterMap(); return Collections.unmodifiableMap(map); } public static Map<String, String> getParamMap(ServletRequest request) { Map<String, String> params = new HashMap(); for(Map.Entry<String, String[]> entry : getParams(request).entrySet()) { params.put(entry.getKey(), ArrayUtil.join(entry.getValue(), ",")); } return params; } public static String getBody(ServletRequest request) { try (BufferedReader reader = request.getReader()) { String var3 = IoUtil.read(reader); return var3; } catch (IOException e) { throw new IORuntimeException(e); } } public static byte[] getBodyBytes(ServletRequest request) { try { return IoUtil.readBytes(request.getInputStream()); } catch (IOException e) { throw new IORuntimeException(e); } } public static <T> T fillBean(final ServletRequest request, T bean, CopyOptions copyOptions) { final String beanName = StrUtil.lowerFirst(bean.getClass().getSimpleName()); return (T)BeanUtil.fillBean(bean, new ValueProvider<String>() { public Object value(String key, Type valueType) { String[] values = request.getParameterValues(key); if (ArrayUtil.isEmpty(values)) { values = request.getParameterValues(beanName + "." + key); if (ArrayUtil.isEmpty(values)) { return null; } } return 1 == values.length ? values[0] : values; } public boolean containsKey(String key) { return null != request.getParameter(key) || null != request.getParameter(beanName + "." + key); } }, copyOptions); } public static <T> T fillBean(ServletRequest request, T bean, boolean isIgnoreError) { return (T)fillBean(request, bean, CopyOptions.create().setIgnoreError(isIgnoreError)); } public static <T> T toBean(ServletRequest request, Class<T> beanClass, boolean isIgnoreError) { return (T)fillBean(request, ReflectUtil.newInstanceIfPossible(beanClass), isIgnoreError); } public static String getClientIP(HttpServletRequest request, String... otherHeaderNames) { String[] headers = new String[]{"X-Forwarded-For", "X-Real-IP", "Proxy-Client-IP", "WL-Proxy-Client-IP", "HTTP_CLIENT_IP", "HTTP_X_FORWARDED_FOR"}; if (ArrayUtil.isNotEmpty(otherHeaderNames)) { headers = (String[])ArrayUtil.addAll(new String[][]{headers, otherHeaderNames}); } return getClientIPByHeader(request, headers); } public static String getClientIPByHeader(HttpServletRequest request, String... headerNames) { for(String header : headerNames) { String ip = request.getHeader(header); if (!NetUtil.isUnknown(ip)) { return NetUtil.getMultistageReverseProxyIp(ip); } } String ip = request.getRemoteAddr(); return NetUtil.getMultistageReverseProxyIp(ip); } public static MultipartFormData getMultipart(ServletRequest request) throws IORuntimeException { return getMultipart(request, new UploadSetting()); } public static MultipartFormData getMultipart(ServletRequest request, UploadSetting uploadSetting) throws IORuntimeException { MultipartFormData formData = new MultipartFormData(uploadSetting); try { formData.parseRequestStream(request.getInputStream(), CharsetUtil.charset(request.getCharacterEncoding())); return formData; } catch (IOException e) { throw new IORuntimeException(e); } } public static Map<String, String> getHeaderMap(HttpServletRequest request) { Map<String, String> headerMap = new HashMap(); Enumeration<String> names = request.getHeaderNames(); while(names.hasMoreElements()) { String name = (String)names.nextElement(); headerMap.put(name, request.getHeader(name)); } return headerMap; } public static Map<String, List<String>> getHeadersMap(HttpServletRequest request) { Map<String, List<String>> headerMap = new LinkedHashMap(); Enumeration<String> names = request.getHeaderNames(); while(names.hasMoreElements()) { String name = (String)names.nextElement(); headerMap.put(name, ListUtil.list(false, request.getHeaders(name))); } return headerMap; } public static Map<String, Collection<String>> getHeadersMap(HttpServletResponse response) { Map<String, Collection<String>> headerMap = new HashMap(); for(String name : response.getHeaderNames()) { headerMap.put(name, response.getHeaders(name)); } return headerMap; } public static String getHeaderIgnoreCase(HttpServletRequest request, String nameIgnoreCase) { Enumeration<String> names = request.getHeaderNames(); while(names.hasMoreElements()) { String name = (String)names.nextElement(); if (name != null && name.equalsIgnoreCase(nameIgnoreCase)) { return request.getHeader(name); } } return null; } public static String getHeader(HttpServletRequest request, String name, String charsetName) { return getHeader(request, name, CharsetUtil.charset(charsetName)); } public static String getHeader(HttpServletRequest request, String name, Charset charset) { String header = request.getHeader(name); return null != header ? CharsetUtil.convert(header, CharsetUtil.CHARSET_ISO_8859_1, charset) : null; } public static boolean isIE(HttpServletRequest request) { String userAgent = getHeaderIgnoreCase(request, "User-Agent"); if (!StrUtil.isNotBlank(userAgent)) { return false; } else { userAgent = userAgent.toUpperCase(); return userAgent.contains("MSIE") || userAgent.contains("TRIDENT"); } } public static boolean isGetMethod(HttpServletRequest request) { return "GET".equalsIgnoreCase(request.getMethod()); } public static boolean isPostMethod(HttpServletRequest request) { return "POST".equalsIgnoreCase(request.getMethod()); } public static boolean isMultipart(HttpServletRequest request) { if (!isPostMethod(request)) { return false; } else { String contentType = request.getContentType(); return StrUtil.isBlank(contentType) ? false : contentType.toLowerCase().startsWith("multipart/"); } } public static Cookie getCookie(HttpServletRequest httpServletRequest, String name) { return (Cookie)readCookieMap(httpServletRequest).get(name); } public static Map<String, Cookie> readCookieMap(HttpServletRequest httpServletRequest) { Cookie[] cookies = httpServletRequest.getCookies(); return ArrayUtil.isEmpty(cookies) ? MapUtil.empty() : IterUtil.toMap(new ArrayIter(httpServletRequest.getCookies()), new CaseInsensitiveMap(), Cookie::getName); } public static void addCookie(HttpServletResponse response, Cookie cookie) { response.addCookie(cookie); } public static void addCookie(HttpServletResponse response, String name, String value) { response.addCookie(new Cookie(name, value)); } public static void addCookie(HttpServletResponse response, String name, String value, int maxAgeInSeconds, String path, String domain) { Cookie cookie = new Cookie(name, value); if (domain != null) { cookie.setDomain(domain); } cookie.setMaxAge(maxAgeInSeconds); cookie.setPath(path); addCookie(response, cookie); } public static void addCookie(HttpServletResponse response, String name, String value, int maxAgeInSeconds) { addCookie(response, name, value, maxAgeInSeconds, "/", (String)null); } public static PrintWriter getWriter(HttpServletResponse response) throws IORuntimeException { try { return response.getWriter(); } catch (IOException e) { throw new IORuntimeException(e); } } public static void write(HttpServletResponse response, String text, String contentType) { response.setContentType(contentType); Writer writer = null; try { writer = response.getWriter(); writer.write(text); writer.flush(); } catch (IOException e) { throw new UtilException(e); } finally { IoUtil.close(writer); } } public static void write(HttpServletResponse response, File file) { String fileName = file.getName(); String contentType = (String)ObjectUtil.defaultIfNull(FileUtil.getMimeType(fileName), "application/octet-stream"); BufferedInputStream in = null; try { in = FileUtil.getInputStream(file); write(response, in, contentType, fileName); } finally { IoUtil.close(in); } } public static void write(HttpServletResponse response, InputStream in, String contentType, String fileName) { String charset = (String)ObjectUtil.defaultIfNull(response.getCharacterEncoding(), "UTF-8"); String encodeText = URLUtil.encodeAll(fileName, CharsetUtil.charset(charset)); response.setHeader("Content-Disposition", StrUtil.format("attachment;filename=\"{}\";filename*={}''{}", new Object[]{encodeText, charset, encodeText})); response.setContentType(contentType); write(response, in); } public static void write(HttpServletResponse response, InputStream in, String contentType) { response.setContentType(contentType); write(response, in); } public static void write(HttpServletResponse response, InputStream in) { write(response, in, 8192); } public static void write(HttpServletResponse response, InputStream in, int bufferSize) { ServletOutputStream out = null; try { out = response.getOutputStream(); IoUtil.copy(in, out, bufferSize); } catch (IOException e) { throw new UtilException(e); } finally { IoUtil.close(out); IoUtil.close(in); } } public static void setHeader(HttpServletResponse response, String name, Object value) { if (value instanceof String) { response.setHeader(name, (String)value); } else if (Date.class.isAssignableFrom(value.getClass())) { response.setDateHeader(name, ((Date)value).getTime()); } else if (!(value instanceof Integer) && !"int".equalsIgnoreCase(value.getClass().getSimpleName())) { response.setHeader(name, value.toString()); } else { response.setIntHeader(name, (Integer)value); } } } 这里使用的javax怎么办?
07-10
修改适用于所有涉及 `javax.servlet` 的类和接口,包括但不限于 `HttpServletResponse`、`FilterChain`、`ServletContextListener` 等 [^4]。 #### 升级第三方库版本 部分第三方库可能尚未完全适配 Jakarta EE 9...
request.getInputStream().transferTo(baos);报红
最新发布
08-08
Map, String[]> originalMap = super.getParameterMap(); Map, String[]> sanitizedMap = new HashMap(); for (Map.Entry, String[]> entry : originalMap.entrySet()) { String[] values = entry.getValue(); ...
将请求的request的参数重新组装成map。主要是将空的替换成null,因为requestMap是""
10-09 465
/** * 主要用于数据列表展示中,条件查询比较便捷 * 将请求的request的参数重新组装成map。主要是将空的替换成null,因为requestMap是"",这样处理有利于外部判断, * 同时将获取到的映射到页面上,便于页面分页后参数给忽略。 * * @param request HttpServletRequest对象 * @return 返回处理过后的数
struts2 ajax url参数,在Struts2拦截器中更改请求参数(Changing request parameter value in Struts2 interceptor)...
weixin_39943000的博客
08-06 446
在Struts2拦截器中更改请求参数(Changing request parameter value in Struts2 interceptor)有人知道是否可以在Struts2拦截器中更改/删除请求参数?请求参数Map是UnmodifiableMap一个实例,因此看起来它不能在拦截器中操作。更新:我正在使用Liferay,所以uParamsMap将是一个UnmodifiableMappu...
java对过滤器或者拦截器中Request.parameter中参数进行添加或修改
dmlcq的博客
05-24 8002
在讲解这个问题之前,我先讲讲我的需求。 我的需求就是处理前台传来的请求,在过滤器里面给表达式的为系统的。然后传到具体方法中。 过滤器是这么写的: if(StringUtils.isNotEmpty(userId)&&userId.equals(":userId")){ //获取用户id userId=loginUserInfo.getUserId(); //
spring aop 修改请求参数实体类属性的
秀强的专栏
02-17 2744
文章目录创建注解定义 Pointcut定义 advise总结 创建注解 @Target(ElementType.METHOD) @Retention(RetentionPolicy.RUNTIME) public @interface AuthChecker { } 定义 Pointcut @Pointcut("@annotation(com.xxx.annotation.AuthChecker)") public void pointcut() { } 定义 advise
requestgetParameterMap方法
isjun26
06-27 1916
public class UserServlet extends HttpServlet { public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { try { //解决乱码 reques...
Java-Tomcat的请求参数解析分析
aileitianshi的博客
05-14 576
项目场景: 特殊场景需要写代码解析url的请求参数 问题描述: 网上查了一下, 大多数的工具类是使用&号分割, 然后再使用=号分割得到参数的key和value 这种写法有问题: 当value包含&或者=符号都会产生分割不准确的问题 而且单纯的分隔不会解码%22这种url编码 我们来分析一下tomcat是怎么解析的 这里说的参数是GET请求?号后面的参数 和 POST下application/x-www-form-urlencoded类型的参数解析 源码分析: Tomcat环境中参数解析的方法
利用过滤器修改request中的
aiyongbo123456的博客
12-29 2264
1、构建request扩展类 package com.example.demo.wrapper; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletRequestWrapper; import java.util.HashMap; import java.util.Map; ...
spring Controller 之前修改/增加请求参数和
weixin_34149796的博客
04-01 1498
2019独角兽企业重金招聘Python工程师标准>>> ...
【技巧】intelliJ IDEA中导入Tomcat中lib中的包
热门推荐
陶洲川的博客
03-20 2万+
在intelliJ IDEA中如何添加Tomcat的lib包 1、打开intelliJava IDEA,点击“Run”下面的“Edit Configuration”。 2选中“Tomcat 8.0.24”点击“Configure...”按钮 3.1、选中“Tomcat 8..24”,用红色的“-”号去删除原有的东西lib文件,再用“+”号来添加新的lib文件,添加的
servlet利用拦截器改写request和response
明亮的技术博客
08-24 1万+
这些天在对一个项目进行二次开发,要对输入和输出的数据做一些修改,但是上一个开发人员没有进行良好的封装,所有数据直接从request.getParameter(),获取,然后response.getWrite()直接进行输出操作,如果我要一个一个程序去修改的话,应用程序上40多个servlet都得改程序,第一工作量比较大,第二自己看着恶心,以后出了问题BOSS还得找我,所以干脆想了个办法,利用拦截器...
评论 1
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值