1、JAVA代码
package com.yihaodian.pis.util; import java.io.IOException; import java.io.PrintWriter; import javax.servlet.Filter; import javax.servlet.FilterChain; import javax.servlet.FilterConfig; import javax.servlet.ServletException; import javax.servlet.ServletRequest; import javax.servlet.ServletResponse; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import javax.servlet.http.HttpSession; public class LoginFilter implements Filter { private static final String LOGON_URI = "LOGON_URI"; private static final String HOME_URI = "HOME_URI"; private String logon_page; private String home_page; public void destroy() { } public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException { HttpServletRequest req = (HttpServletRequest) request; HttpServletResponse resp = (HttpServletResponse) response; resp.setContentType("text/html;"); resp.setCharacterEncoding("utf-8"); HttpSession session = req.getSession(); PrintWriter out = resp.getWriter(); // 得到用户请求的URI String request_uri = req.getRequestURI(); // 得到web应用程序的上下文路径 String ctxPath = req.getContextPath(); // 去除上下文路径,得到剩余部分的路径 String uri = request_uri.substring(ctxPath.length()); // 判断用户访问的是否是登录页面 if (uri.equals(logon_page) || uri.equals(home_page)) { chain.doFilter(request, response); return; } else { // 如果访问的不是登录页面,则判断用户是否已经登录 if (null != session.getAttribute("admin") && "" != session.getAttribute("admin")) { chain.doFilter(request, response); return; } else { out.println("<script language=\"javaScript\">" + "parent.location.href='" + ctxPath + logon_page + "'" + "</script>"); return; } } } public void init(FilterConfig config) throws ServletException { // TODO Auto-generated method stub // 从部署描述符中获取登录页面和首页的URI logon_page = config.getInitParameter(LOGON_URI); home_page = config.getInitParameter(HOME_URI); // System.out.println(logon_page); if (null == logon_page || null == home_page) { throw new ServletException("没有找到登录页面或主页"); } } }
?
2、web.xml
<?xml version="1.0" encoding="UTF-8"?> <web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:web="http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd" id="WebApp_ID" version="2.5"> <display-name>pcs</display-name> <welcome-file-list> <welcome-file>webpage/login/login.jsp</welcome-file> </welcome-file-list> <context-param> <param-name>contextConfigLocation</param-name> <param-value>classpath*:config/spring/spring-*.xml</param-value> </context-param> <!-- log4j在spring中的配置 --> <!--然后加上这个Spring的Log4j侦听类,注意在JBOSS里面,不需要这个类,注释掉,不然会冲突, --> <listener> <listener-class>org.springframework.web.util.Log4jConfigListener</listener-class> </listener> <!--webAppRootKey 属性为webApp.root 代表webApp的根目录,这样就能在properties文件中定义 --> <!-- 这里的webApp是http://localhost:8080/webApp/ --> <context-param> <param-name>webAppRootKey</param-name> <param-value>pcs.WebContent</param-value> </context-param> <!--log4jConfigLocation 属性代表log4j.properties文件的地址 --> <!-- log4j.appender.file.File=${webApp.root}/WEB-INF/logs/subject.log --> <context-param> <param-name>log4jConfigLocation</param-name> <param-value>/WEB-INF/classes/config/log4j/log4j.properties</param-value> </context-param> <!-- spring2全局上下文监听器 --> <listener> <listener-class>org.springframework.web.context.ContextLoaderListener</listener-class> </listener> <!-- 应删除这段,不然汇报重复定义ContextLoader错误 --> <!-- <servlet> <servlet-name>context</servlet-name> <servlet-class>org.springframework.web.context.ContextLoaderServlet</servlet-class> <load-on-startup>1</load-on-startup> </servlet> --> <!-- spring 的httpinvoker --> <!-- <servlet> <servlet-name>editweboffice</servlet-name> <servlet-class>com.jspsmart.web.action.EditWebOfficeServlet</servlet-class> </servlet> <servlet-mapping> <servlet-name>editweboffice</servlet-name> <url-pattern>/editweboffice.goto</url-pattern> </servlet-mapping> --> <!-- <servlet> <description>HTTP Exporters</description> <servlet-name>remote</servlet-name> <servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class> <init-param> <param-name>contextConfigLocation</param-name> <param-value>classpath:config/spring/remote-servlet.xml</param-value> </init-param> <load-on-startup>2</load-on-startup> </servlet> <servlet-mapping> <servlet-name>remote</servlet-name> <url-pattern>/remote/*</url-pattern> </servlet-mapping> --> <session-config> <session-timeout> 1 </session-timeout > </session-config> <!-- spring 全局字符编码器--> <filter> <filter-name>encodingFilter</filter-name> <filter-class>org.springframework.web.filter.CharacterEncodingFilter</filter-class> <init-param> <param-name>encoding</param-name> <param-value>UTF-8</param-value> </init-param> <init-param> <param-name>forceEncoding</param-name> <param-value>true</param-value> </init-param> </filter> <filter-mapping> <filter-name>encodingFilter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> <!-- Struts2配置 --> <filter> <filter-name>struts2</filter-name> <filter-class> org.apache.struts2.dispatcher.ng.filter.StrutsPrepareAndExecuteFilter</filter-class> <init-param> <param-name>config</param-name> <param-value>struts-default.xml,struts-plugin.xml,/config/struts/struts.xml </param-value> </init-param> </filter> <filter-mapping> <filter-name>struts2</filter-name> <url-pattern>*.do</url-pattern> </filter-mapping> <filter-mapping> <filter-name>struts2</filter-name> <url-pattern>*.jsp</url-pattern> </filter-mapping> <!-- session 拦截器 --> <filter> <filter-name>loginFilter</filter-name> <filter-class>com.yihaodian.pis.util.LoginFilter</filter-class> <init-param> <param-name>LOGON_URI</param-name> <param-value>/</param-value> </init-param> <init-param> <param-name>HOME_URI</param-name> <param-value>/index.jsp</param-value> </init-param> </filter> <filter-mapping> <filter-name>loginFilter</filter-name> <url-pattern>*.jsp</url-pattern> </filter-mapping> <!-- session 拦截器 --> <!-- <filter> <filter-name>SessionInvalidate</filter-name> <filter-class>com.yihaodian.pcs.session.SessionCheckFilter</filter-class> <init-param> <param-name>checkSessionKey</param-name> <param-value>APP_SESSION_TOKEN</param-value> </init-param> <init-param> <param-name>redirectURL</param-name> <param-value>/sessionInvalidate.jsp</param-value> </init-param> <init-param> <param-name>notCheckURLList</param-name> <param-value>/webpage/login/login.jsp,/logon.do,/logout.jsp,/sessionInvalidate.jsp</param-value> </init-param> </filter> <filter-mapping> <filter-name>SessionInvalidate</filter-name> <url-pattern>*.do</url-pattern> </filter-mapping> <filter-mapping> <filter-name>SessionInvalidate</filter-name> <url-pattern>*.jsp</url-pattern> </filter-mapping> --> </web-app>?