四个有用的Java过滤器

于 2009-09-08 11:03:00 发布
阅读量471 收藏
点赞数 2
文章标签: java import encoding authorization string null
本文详细介绍了四种Web应用中常见的过滤器:使浏览器不缓存页面的过滤器、检测用户是否登录的过滤器、设置HTTP请求字符编码的过滤器以及资源保护过滤器。这些过滤器在Java Web开发中起到关键作用。

摘要生成于 C知道 ,由 DeepSeek-R1 满血版支持, 前往体验 >

一、使浏览器不缓存页面的过滤器     

import javax.servlet.*;    

import javax.servlet.http.HttpServletResponse;    

import java.io.IOException;    

   

/**   

* 用于的使 Browser 不缓存页面的过滤器   

*/   

public class ForceNoCacheFilter implements Filter {    

   

public void doFilter(ServletRequest request, ServletResponse response, FilterChain filterChain) throws IOException, ServletException    

{    

    ((HttpServletResponse) response).setHeader("Cache-Control","no-cache");    

    ((HttpServletResponse) response).setHeader("Pragma","no-cache");    

    ((HttpServletResponse) response).setDateHeader ("Expires", -1);    

    filterChain.doFilter(request, response);    

}    

   

public void destroy()    

{    

}    

   

      public void init(FilterConfig filterConfig) throws ServletException    

{    

}    

}    

   

二、检测用户是否登陆的过滤器    

   

import javax.servlet.*;    

import javax.servlet.http.HttpServletRequest;    

import javax.servlet.http.HttpServletResponse;    

import javax.servlet.http.HttpSession;    

import java.util.List;    

import java.util.ArrayList;    

import java.util.StringTokenizer;    

import java.io.IOException;    

   

/**   

* 用于检测用户是否登陆的过滤器,如果未登录,则重定向到指的登录页面    



* 配置参数    



* checkSessionKey 需检查的在 Session 中保存的关键字   


* redirectURL 如果用户未登录,则重定向到指定的页面,URL不包括 ContextPath   


* notCheckURLList 不做检查的URL列表,以分号分开,并且 URL 中不包括 ContextPath   


*/   

public class CheckLoginFilter    

implements Filter    

{    

      protected FilterConfig filterConfig = null;    

      private String redirectURL = null;    

      private List notCheckURLList = new ArrayList();    

      private String sessionKey = null;    

 

 

public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException    


{    

    HttpServletRequest request = (HttpServletRequest) servletRequest;    

    HttpServletResponse response = (HttpServletResponse) servletResponse;    

   

     HttpSession session = request.getSession();    

    if(sessionKey == null)    

    {    

     filterChain.doFilter(request, response);    

     return;    

    }    

    if((!checkRequestURIIntNotFilterList(request)) && session.getAttribute(sessionKey) == null)    

    {    

     response.sendRedirect(request.getContextPath() + redirectURL);    

     return;    

    }    

    filterChain.doFilter(servletRequest, servletResponse);    

}    

   

public void destroy()    

{    

    notCheckURLList.clear();    

}    

   

private boolean checkRequestURIIntNotFilterList(HttpServletRequest request)    

{    

    String uri = request.getServletPath() + (request.getPathInfo() == null ? "" : request.getPathInfo());    

    return notCheckURLList.contains(uri);    

}    

   

public void init(FilterConfig filterConfig) throws ServletException    

{    

    this.filterConfig = filterConfig;    

    redirectURL = filterConfig.getInitParameter("redirectURL");    

    sessionKey = filterConfig.getInitParameter("checkSessionKey");    

   

    String notCheckURLListStr = filterConfig.getInitParameter("notCheckURLList");    

   

    if(notCheckURLListStr != null)    

    {    

     StringTokenizer st = new StringTokenizer(notCheckURLListStr, ";");    

     notCheckURLList.clear();    

     while(st.hasMoreTokens())    

     {   

 

 

   notCheckURLList.add(st.nextToken());    

     }    

    }    

}    

}    

   

三、字符编码的过滤器    

   

import javax.servlet.*;    

import java.io.IOException;    

   

/**   

* 用于设置 HTTP 请求字符编码的过滤器,通过过滤器参数encoding指明使用何种字符编码,用于处理Html Form请求参数的中文问题   

*/   

public class CharacterEncodingFilter    

implements Filter    

{    

protected FilterConfig filterConfig = null;    

protected String encoding = "";    

   

public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException    

{    

          if(encoding != null)    

           servletRequest.setCharacterEncoding(encoding);    

          filterChain.doFilter(servletRequest, servletResponse);    

}    

   

public void destroy()    

{    

    filterConfig = null;    

    encoding = null;    

}    

   

      public void init(FilterConfig filterConfig) throws ServletException    

{    

           this.filterConfig = filterConfig;    

          this.encoding = filterConfig.getInitParameter("encoding");    

   

}    

}    

 

 

<filter>

<filter-name>CharacterEncoding</filter-name>

<filter-class>com.EncodingFilter</filter-class>

<init-param>

   <param-name>encoding</param-name> 

   <param-value>GBK</param-value>

</init-param>

</filter>

<filter-mapping>

<filter-name>CharacterEncoding</filter-name>

<url-pattern>/*</url-pattern>

</filter-mapping>

 

 


   

四、资源保护过滤器    

   

   

package catalog.view.util;    

   

import javax.servlet.Filter;    

import javax.servlet.FilterConfig;    

import javax.servlet.ServletRequest;    

import javax.servlet.ServletResponse;    

import javax.servlet.FilterChain;    

import javax.servlet.ServletException;    

import javax.servlet.http.HttpServletRequest;    

import java.io.IOException;    

import java.util.Iterator;    

import java.util.Set;    

import java.util.HashSet;

 

 

//    

import org.apache.commons.logging.Log;    

import org.apache.commons.logging.LogFactory;    

   

/**   

* This Filter class handle the security of the application.   

*    

* It should be configured inside the web.xml.   

*    

* @author Derek Y. Shen   

*/   

public class SecurityFilter implements Filter {    

//the login page uri    

private static final String LOGIN_PAGE_URI = "login.jsf";    

     

//the logger object    

private Log logger = LogFactory.getLog(this.getClass());    

     

//a set of restricted resources    

private Set restrictedResources;    

     

/**   

   * Initializes the Filter.   

   */   

public void init(FilterConfig filterConfig) throws ServletException {    

   this.restrictedResources = new HashSet();    

   this.restrictedResources.add("/createProduct.jsf");    

   this.restrictedResources.add("/editProduct.jsf");    

   this.restrictedResources.add("/productList.jsf");    

}    

     

/**   

   * Standard doFilter object.   

   */   

public void doFilter(ServletRequest req, ServletResponse res, FilterChain chain)    

    throws IOException, ServletException {    

   this.logger.debug("doFilter");    

      

   String contextPath = ((HttpServletRequest)req).getContextPath();    

   String requestUri = ((HttpServletRequest)req).getRequestURI();    

      

   this.logger.debug("contextPath = " + contextPath);    

   this.logger.debug("requestUri = " + requestUri);    

      

   if (this.contains(requestUri, contextPath) && !this.authorize((HttpServletRequest)req)) {    

    this.logger.debug("authorization failed");    

    ((HttpServletRequest)req).getRequestDispatcher(LOGIN_PAGE_URI).forward(req, res);    

   }    

   else {    

    this.logger.debug("authorization succeeded");  

sum_binary
关注
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值