本文介绍了一个用于处理用户非法登录尝试的过滤器组件。该过滤器通过检查用户的会话状态来确定是否允许用户访问特定资源,并在未授权访问时重定向至登录页面。
/*
* Created on 2004-11-19
*
* TODO To change the template for this generated file go to
* Window - Preferences - Java - Code Style - Code Templates
*/
package com.aisino.common.util;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import com.aisino.privisys.Constants;
/**
*
* @author vincent.shan
*
* 功能:用户非法登录访问跳转处理
*/
public class AuthFilter extends HttpServlet implements Filter {
/**
*
*/
private static final long serialVersionUID = 3435621465821410076L;
private FilterConfig fileterConfig;
public void init(FilterConfig arg0) throws ServletException {
this.fileterConfig = arg0;
}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain filterChain) throws IOException,
ServletException {
HttpServletRequest httpRequest = (HttpServletRequest) request;
String uri = httpRequest.getRequestURI();
boolean flag=(httpRequest.getSession().getAttribute(Constants.userKey)==null);
uri=uri.replaceAll("([?].*)|([/].*[/])","");
String authUrls = fileterConfig.getInitParameter("authUrls");
if (flag) {
if(authUrls.length()>0&&authUrls.indexOf(uri)!=-1){
filterChain.doFilter(request, response);
return;
}
((HttpServletResponse) response).sendRedirect(WebUtil.getCompeleteContext(httpRequest)+"login.jsp");
return;
} else {
filterChain.doFilter(request, response);
return;
}
}
public void destroy() {
this.fileterConfig = null;
}
}
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" "http://java.sun.com/dtd/web-app_2_3.dtd">
<web-app>
<context-param>
<param-name>contextConfigLocation</param-name>
<param-value>/WEB-INF/classes/config/spring/*.xml</param-value>
</context-param>
<context-param>
<param-name>javax.servlet.jsp.jstl.fmt.localizationContext</param-name>
<param-value>config/i18n/messages_zh_CN</param-value>
</context-param>
<context-param>
<param-name>extremecomponentsPreferencesLocation</param-name>
<param-value>/config/i18n/extremetable.properties</param-value>
</context-param>
<context-param>
<param-name>extremecomponentsMessagesLocation</param-name>
<param-value>config/i18n/extremetableResourceBundle</param-value>
</context-param>
<filter>
<filter-name>encodingFilter</filter-name>
<filter-class>org.springframework.web.filter.CharacterEncodingFilter</filter-class>
<init-param>
<param-name>encoding</param-name>
<param-value>UTF-8</param-value>
</init-param>
</filter>
<filter>
<filter-name>eXtremeExport</filter-name>
<filter-class>org.extremecomponents.table.filter.ExportFilter</filter-class>
<init-param>
<param-name>responseHeadersSetBeforeDoFilter</param-name>
<param-value>true</param-value>
</init-param>
</filter>
<filter>
<filter-name>Auth</filter-name>
<filter-class>com.aisino.common.util.AuthFilter</filter-class>
<init-param>
<param-name>authUrls</param-name>
<param-value>ctaisRequest.do,login.do,authQueryService.do</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>encodingFilter</filter-name>
<url-pattern>*.do</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>encodingFilter</filter-name>
<url-pattern>*.jsp</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>eXtremeExport</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>Auth</filter-name>
<url-pattern>*.do</url-pattern>
</filter-mapping>
<listener>
<listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
</listener>
<listener>
<listener-class>org.springframework.web.util.IntrospectorCleanupListener</listener-class>
</listener>
<servlet>
<servlet-name>action</servlet-name>
<servlet-class>org.apache.struts.action.ActionServlet</servlet-class>
<init-param>
<param-name>config</param-name>
<param-value>/WEB-INF/classes/config/struts/struts-config.xml,
/WEB-INF/classes/config/struts/privisys-struts-config.xml,
/WEB-INF/classes/config/struts/netinv-struts-config.xml,
/WEB-INF/classes/config/struts/notice-struts-config.xml,
/WEB-INF/classes/config/struts/baseInf-struts-config.xml,
/WEB-INF/classes/config/struts/invoiceFail-struts-config.xml,
/WEB-INF/classes/config/struts/fpyj-struts-config.xml
</param-value>
</init-param>
<init-param>
<param-name>debug</param-name>
<param-value>2</param-value>
</init-param>
<init-param>
<param-name>detail</param-name>
<param-value>2</param-value>
</init-param>
<load-on-startup>2</load-on-startup>
</servlet>
<!--
<servlet>
<servlet-name>xfire</servlet-name>
<servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
<init-param>
<param-name>contextConfigLocation</param-name>
<param-value>classpath:org/codehaus/xfire/spring/xfire.xml,/WEB-INF/classes/config/spring/xfire-servlet.xml</param-value>
</init-param>
</servlet>
-->
<!--
<servlet-mapping>
<servlet-name>xfire</servlet-name>
<url-pattern>/webservice/*</url-pattern>
</servlet-mapping>
-->
<servlet-mapping>
<servlet-name>action</servlet-name>
<url-pattern>*.do</url-pattern>
</servlet-mapping>
<session-config>
<session-timeout>600</session-timeout>
</session-config>
<welcome-file-list>
<welcome-file>index.html</welcome-file>
<welcome-file>welcome.jsp</welcome-file>
<welcome-file>login.jsp</welcome-file>
</welcome-file-list>
<error-page>
<error-code>500</error-code>
<location>/errorPage.jsp</location>
</error-page>
<error-page>
<error-code>404</error-code>
<location>/404.jsp</location>
</error-page>
<error-page>
<error-code>403</error-code>
<location>/errorPage.jsp</location>
</error-page>
<error-page>
<exception-type>java.lang.Exception</exception-type>
<location>/errorPage.jsp</location>
</error-page>
<taglib>
<taglib-uri>struts-bean</taglib-uri>
<taglib-location>/WEB-INF/tld/struts-bean.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>struts-html</taglib-uri>
<taglib-location>/WEB-INF/tld/struts-html.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>struts-logic</taglib-uri>
<taglib-location>/WEB-INF/tld/struts-logic.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>extremecomponents</taglib-uri>
<taglib-location>/WEB-INF/tld/extremecomponents.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>http://java.sun.com/jstl/core</taglib-uri>
<taglib-location>/WEB-INF/tld/c-1_0.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>/tags/struts-menu</taglib-uri>
<taglib-location>/WEB-INF/tld/struts-menu.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>/tags/struts-menu-el</taglib-uri>
<taglib-location>/WEB-INF/tld/struts-menu-el.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>automatic</taglib-uri>
<taglib-location>/WEB-INF/tld/automatic.tld</taglib-location>
</taglib>
<resource-ref>
<res-ref-name>login</res-ref-name>
<res-type>javax.sql.DataSource</res-type>
<res-auth>Container</res-auth>
</resource-ref>
</web-app>
* Created on 2004-11-19
*
* TODO To change the template for this generated file go to
* Window - Preferences - Java - Code Style - Code Templates
*/
package com.aisino.common.util;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import com.aisino.privisys.Constants;
/**
*
* @author vincent.shan
*
* 功能:用户非法登录访问跳转处理
*/
public class AuthFilter extends HttpServlet implements Filter {
/**
*
*/
private static final long serialVersionUID = 3435621465821410076L;
private FilterConfig fileterConfig;
public void init(FilterConfig arg0) throws ServletException {
this.fileterConfig = arg0;
}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain filterChain) throws IOException,
ServletException {
HttpServletRequest httpRequest = (HttpServletRequest) request;
String uri = httpRequest.getRequestURI();
boolean flag=(httpRequest.getSession().getAttribute(Constants.userKey)==null);
uri=uri.replaceAll("([?].*)|([/].*[/])","");
String authUrls = fileterConfig.getInitParameter("authUrls");
if (flag) {
if(authUrls.length()>0&&authUrls.indexOf(uri)!=-1){
filterChain.doFilter(request, response);
return;
}
((HttpServletResponse) response).sendRedirect(WebUtil.getCompeleteContext(httpRequest)+"login.jsp");
return;
} else {
filterChain.doFilter(request, response);
return;
}
}
public void destroy() {
this.fileterConfig = null;
}
}
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" "http://java.sun.com/dtd/web-app_2_3.dtd">
<web-app>
<context-param>
<param-name>contextConfigLocation</param-name>
<param-value>/WEB-INF/classes/config/spring/*.xml</param-value>
</context-param>
<context-param>
<param-name>javax.servlet.jsp.jstl.fmt.localizationContext</param-name>
<param-value>config/i18n/messages_zh_CN</param-value>
</context-param>
<context-param>
<param-name>extremecomponentsPreferencesLocation</param-name>
<param-value>/config/i18n/extremetable.properties</param-value>
</context-param>
<context-param>
<param-name>extremecomponentsMessagesLocation</param-name>
<param-value>config/i18n/extremetableResourceBundle</param-value>
</context-param>
<filter>
<filter-name>encodingFilter</filter-name>
<filter-class>org.springframework.web.filter.CharacterEncodingFilter</filter-class>
<init-param>
<param-name>encoding</param-name>
<param-value>UTF-8</param-value>
</init-param>
</filter>
<filter>
<filter-name>eXtremeExport</filter-name>
<filter-class>org.extremecomponents.table.filter.ExportFilter</filter-class>
<init-param>
<param-name>responseHeadersSetBeforeDoFilter</param-name>
<param-value>true</param-value>
</init-param>
</filter>
<filter>
<filter-name>Auth</filter-name>
<filter-class>com.aisino.common.util.AuthFilter</filter-class>
<init-param>
<param-name>authUrls</param-name>
<param-value>ctaisRequest.do,login.do,authQueryService.do</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>encodingFilter</filter-name>
<url-pattern>*.do</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>encodingFilter</filter-name>
<url-pattern>*.jsp</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>eXtremeExport</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>Auth</filter-name>
<url-pattern>*.do</url-pattern>
</filter-mapping>
<listener>
<listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
</listener>
<listener>
<listener-class>org.springframework.web.util.IntrospectorCleanupListener</listener-class>
</listener>
<servlet>
<servlet-name>action</servlet-name>
<servlet-class>org.apache.struts.action.ActionServlet</servlet-class>
<init-param>
<param-name>config</param-name>
<param-value>/WEB-INF/classes/config/struts/struts-config.xml,
/WEB-INF/classes/config/struts/privisys-struts-config.xml,
/WEB-INF/classes/config/struts/netinv-struts-config.xml,
/WEB-INF/classes/config/struts/notice-struts-config.xml,
/WEB-INF/classes/config/struts/baseInf-struts-config.xml,
/WEB-INF/classes/config/struts/invoiceFail-struts-config.xml,
/WEB-INF/classes/config/struts/fpyj-struts-config.xml
</param-value>
</init-param>
<init-param>
<param-name>debug</param-name>
<param-value>2</param-value>
</init-param>
<init-param>
<param-name>detail</param-name>
<param-value>2</param-value>
</init-param>
<load-on-startup>2</load-on-startup>
</servlet>
<!--
<servlet>
<servlet-name>xfire</servlet-name>
<servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
<init-param>
<param-name>contextConfigLocation</param-name>
<param-value>classpath:org/codehaus/xfire/spring/xfire.xml,/WEB-INF/classes/config/spring/xfire-servlet.xml</param-value>
</init-param>
</servlet>
-->
<!--
<servlet-mapping>
<servlet-name>xfire</servlet-name>
<url-pattern>/webservice/*</url-pattern>
</servlet-mapping>
-->
<servlet-mapping>
<servlet-name>action</servlet-name>
<url-pattern>*.do</url-pattern>
</servlet-mapping>
<session-config>
<session-timeout>600</session-timeout>
</session-config>
<welcome-file-list>
<welcome-file>index.html</welcome-file>
<welcome-file>welcome.jsp</welcome-file>
<welcome-file>login.jsp</welcome-file>
</welcome-file-list>
<error-page>
<error-code>500</error-code>
<location>/errorPage.jsp</location>
</error-page>
<error-page>
<error-code>404</error-code>
<location>/404.jsp</location>
</error-page>
<error-page>
<error-code>403</error-code>
<location>/errorPage.jsp</location>
</error-page>
<error-page>
<exception-type>java.lang.Exception</exception-type>
<location>/errorPage.jsp</location>
</error-page>
<taglib>
<taglib-uri>struts-bean</taglib-uri>
<taglib-location>/WEB-INF/tld/struts-bean.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>struts-html</taglib-uri>
<taglib-location>/WEB-INF/tld/struts-html.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>struts-logic</taglib-uri>
<taglib-location>/WEB-INF/tld/struts-logic.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>extremecomponents</taglib-uri>
<taglib-location>/WEB-INF/tld/extremecomponents.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>http://java.sun.com/jstl/core</taglib-uri>
<taglib-location>/WEB-INF/tld/c-1_0.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>/tags/struts-menu</taglib-uri>
<taglib-location>/WEB-INF/tld/struts-menu.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>/tags/struts-menu-el</taglib-uri>
<taglib-location>/WEB-INF/tld/struts-menu-el.tld</taglib-location>
</taglib>
<taglib>
<taglib-uri>automatic</taglib-uri>
<taglib-location>/WEB-INF/tld/automatic.tld</taglib-location>
</taglib>
<resource-ref>
<res-ref-name>login</res-ref-name>
<res-type>javax.sql.DataSource</res-type>
<res-auth>Container</res-auth>
</resource-ref>
</web-app>
扫一扫
2625
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
