本文介绍了一个基于Java Servlet的权限过滤器实现,该过滤器用于检查用户是否已经登录,并且能够根据请求路径判断是否需要进行权限验证。如果用户未登录而尝试访问受保护资源,则将被重定向到登录页面。
package com.dxcollector.commen;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import com.dxcollector.entity.DxAdmin;
public class PermissionsFilter implements Filter {
@Override
public void destroy() {
}
@Override
public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse,
FilterChain filterChain) throws IOException, ServletException {
HttpServletRequest request = (HttpServletRequest) servletRequest;
HttpSession session = request.getSession();
HttpServletResponse response = (HttpServletResponse) servletResponse;
String requestURL = request.getRequestURI();
String contentpath = request.getContextPath();
if(requestURL.indexOf("/manager/") != -1){
DxAdmin admin = null;
if(null != session.getAttribute("session_admin")){
admin = (DxAdmin)session.getAttribute("session_admin");
}
if(null != admin){//用户已登录
filterChain.doFilter(request, response);
}else{
response.sendRedirect(contentpath+"/public/login.html");
}
}else{
filterChain.doFilter(request, response);
}
}
@Override
public void init(FilterConfig arg0) throws ServletException {
}
}
扫一扫
评论
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
查看更多评论
添加红包
