<%
//=================================================================================================
/*
作為上 2 篇的補充:
http://blog.csdn.net/playyuer/archive/2004/08/02/58281.aspx
http://blog.csdn.net/playyuer/archive/2004/08/02/58430.aspx
如何使 FlashGet "正常合法" 下載 Session 中的自訂檔案連結呢? JSP/Servlet 實現!
IE 中肯定是沒有任何問題的!
只要你的頁面在 Session 中(例如: 在已登陸的狀態下),你就可以正常下載!
FlashGet 經測試是不行的!
FlashGet 取不到 Session 中的任何值!
但是我們可以採取變通的辦法!
讓 FlashGet 在下載時登陸即可!
即讓 FlashGet 發出帶 Authorization 頭的請求!
可在 FlashGet 下載時通過:
勾選 登入到伺服器 並填寫 使用者名稱 和 密碼 實現下載登陸!
這樣也算合理,不用 IE 下載,當然需要另外的手段判斷下載是否合法!
當然也可通過如下格式 URL 在 IE 和 FlashGet 中均可正常下載:
http://playyuer:Microshaoft@localhost:8180/examples/basic/servlet/DownLoad.jsp
伺服器端程式可從請求中讀取 Authorization 頭的資訊,並判斷是否合法,決定是否允許下載!
細心的朋友還應注意到
http://blog.csdn.net/playyuer/archive/2004/08/02/58281.aspx
我還回複了:
防盜鏈的處理
http://blog.csdn.net/playyuer/archive/2004/08/02/58281.aspx#58285
http://blog.csdn.net/playyuer/archive/2004/08/02/58281.aspx#58287
*/
/*
檔案名稱可存為: Download.jsp
HTTP 協議的請求與響應的會話過程可通過使用 FlashGet 下載 Http:// 串連的過程監視:
藍色部分為: 用戶端請求
紫色部分為: 伺服器端響應
:
http://blog.csdn.net/images/blog_csdn_net/playyuer/30110/o_FlashGet.gif
或參閱,後面的 FlashGet 會話列表:
*/
boolean OK = false;
//java.io.PrintWriter out = response.getWriter(); //Servlet
//不在 Session 中,或是用 FlashGet 等下載
if (request.getHeader("Authorization") != null)
{
//從請求中得到使用者名稱和密碼
//請求的格式是:
//Authorization: Basic cGxheXl1ZXI6TWljcm9zaGFvZnQ=
//其中使用者名稱和密碼是經過用戶端 BASE64 編碼的
//所以要解碼:
String s = new String(new sun.misc.BASE64Decoder().decodeBuffer(request.getHeader("Authorization").substring(6).trim()));
int i = s.indexOf(":");
String user = s.substring(0, i); //使用者名稱
String password = s.substring(i + 1); //密碼
//這裡可改寫成你自己的驗證規則
//本例驗證規則是:
//使用者名稱: playyuer
// 密碼: Microshaoft
if (user.equals("playyuer") && password.equals("Microshaoft"))
//如驗證通過,允許用 FlashGet 下載,並設定標誌
OK = true;
}
if (!OK)
{
if (request.getSession().getAttribute("IsLoginedd") != null)
{
//允許直接用 IE 下載,並設定標誌
OK = true;
}
}
//=================================================================================================
if (OK == true)
{
//你可以使用你伺服器上的檔案及其路徑
String s = "I://SetupRes//Sun//j2re-1_4_2_05-windows-i586-p.exe";
//String s = "e://tree.mdb";
//經測試 RandomAccessFile 也可以實現,有興趣可將注釋去掉,並注釋掉 FileInputStream 版本的語句
//java.io.RandomAccessFile raf = new java.io.RandomAccessFile(s,"r");
java.io.File f = new java.io.File(s);
java.io.FileInputStream fis = new java.io.FileInputStream(f);
response.reset();
response.setHeader("Server", "playyuer@Microshaoft.com");
//告訴用戶端允許斷點續傳多線程串連下載
//響應的格式是:
//Accept-Ranges: bytes
response.setHeader("Accept-Ranges", "bytes");
long p = 0;
long l = 0;
//l = raf.length();
l = f.length();
//如果是第一次下,還沒有斷點續傳,狀態是預設的 200,無需顯式設定
//響應的格式是:
//HTTP/1.1 200 OK
if (request.getHeader("Range") != null) //用戶端請求的下載的檔案塊的開始位元組
{
//如果是下載檔案的範圍而不是全部,向用戶端聲明支援並開始檔案塊下載
//要設定狀態
//響應的格式是:
//HTTP/1.1 206 Partial Content
response.setStatus(javax.servlet.http.HttpServletResponse.SC_PARTIAL_CONTENT);//206
//從請求中得到開始的位元組
//請求的格式是:
//Range: bytes=[檔案塊的開始位元組]-
p = Long.parseLong(request.getHeader("Range").replaceAll("bytes=","").replaceAll("-",""));
}
//下載的檔案(或塊)長度
//響應的格式是:
//Content-Length: [檔案的總大小] - [用戶端請求的下載的檔案塊的開始位元組]
response.setHeader("Content-Length", new Long(l - p).toString());
if (p != 0)
{
//不是從最開始下載,
//響應的格式是:
//Content-Range: bytes [檔案塊的開始位元組]-[檔案的總大小 - 1]/[檔案的總大小]
response.setHeader("Content-Range","bytes " + new Long(p).toString() + "-" + new Long(l -1).toString() + "/" + new Long(l).toString());
}
//response.setHeader("Connection", "Close"); //如果有此句話不能用 IE 直接下載
//使用戶端直接下載
//響應的格式是:
//Content-Type: application/octet-stream
response.setContentType("application/octet-stream");
//為用戶端下載指定預設的下載檔案名稱
//響應的格式是:
//Content-Disposition: attachment;filename="[檔案名稱]"
//response.setHeader("Content-Disposition", "attachment;filename=/"" + s.substring(s.lastIndexOf("//") + 1) + "/""); //經測試 RandomAccessFile 也可以實現,有興趣可將注釋去掉,並注釋掉 FileInputStream 版本的語句
response.setHeader("Content-Disposition", "attachment;filename=/"" + f.getName() + "/"");
//raf.seek(p);
fis.skip(p);
byte[] b = new byte[1024];
int i;
//while ( (i = raf.read(b)) != -1 ) //經測試 RandomAccessFile 也可以實現,有興趣可將注釋去掉,並注釋掉 FileInputStream 版本的語句
while ( (i = fis.read(b)) != -1 )
{
response.getOutputStream().write(b,0,i);
}
//raf.close();//經測試 RandomAccessFile 也可以實現,有興趣可將注釋去掉,並注釋掉 FileInputStream 版本的語句
fis.close();
}
else
//要設定驗證失敗狀態,拒絕下載請求
//響應的格式是:
//HTTP/1.1 401 Unauthorized
response.setStatus(javax.servlet.http.HttpServletResponse.SC_UNAUTHORIZED);
%>
//-----------------------------------------------------------------------------------
在 FlashGet 中
一組第一次直接下載,還沒有斷點續傳 HTTP 會話過程:
用戶端請求:
Mon Aug 02 05:46:36 2004 正在串連 download2.flashfxp.com:80
Mon Aug 02 05:46:36 2004 正在串連 download2.flashfxp.com [IP=66.98.228.125:80]
Mon Aug 02 05:46:37 2004 已串連.
Mon Aug 02 05:46:37 2004 GET /zip/FlashFXP_30_Setup.exe HTTP/1.1
Mon Aug 02 05:46:37 2004 Host: download2.flashfxp.com
Mon Aug 02 05:46:37 2004 Accept: */*
Mon Aug 02 05:46:37 2004 Referer: http://playyuer.microshaoft.com
Mon Aug 02 05:46:37 2004 User-Agent: Mozilla/4.0 (compatible; MSIE 5.00; Windows 98)
Mon Aug 02 05:46:37 2004 Pragma: no-cache
Mon Aug 02 05:46:37 2004 Cache-Control: no-cache
Mon Aug 02 05:46:37 2004 Authorization: Basic MGRheTpjY2ZfZG93bmxvYWQ=
Mon Aug 02 05:46:37 2004 Connection: close
伺服器端響應:
Mon Aug 02 05:46:37 2004 HTTP/1.1 200 OK
Mon Aug 02 05:46:37 2004 Date: Sun, 01 Aug 2004 21:46:29 GMT
Mon Aug 02 05:46:37 2004 Server: Apache/1.3.27 (Unix)? (Red-Hat/Linux) mod_fastcgi/2.2.12 mod_gzip/1.3.19.1a mod_jk/1.2.0 mod_perl/1.26 PHP/4.3.3 FrontPage/5.0.2 mod_ssl/2.8.12 OpenSSL/0.9.6b
Mon Aug 02 05:46:37 2004 Last-Modified: Fri, 30 Jul 2004 18:41:18 GMT
Mon Aug 02 05:46:37 2004 ETag: "4f80fa-1ecf20-410a964e"
Mon Aug 02 05:46:37 2004 Accept-Ranges: bytes
Mon Aug 02 05:46:37 2004 Content-Length: 2019104
Mon Aug 02 05:46:37 2004 Connection: close
Mon Aug 02 05:46:37 2004 Content-Type: application/octet-stream
?
一組斷點續傳的 HTTP 會話過程:
用戶端請求:
Mon Aug 02 05:27:05 2004 正在串連 download2.flashfxp.com:80
Mon Aug 02 05:27:05 2004 正在串連 download2.flashfxp.com [IP=66.98.228.125:80]
Mon Aug 02 05:27:05 2004 已串連.
Mon Aug 02 05:27:05 2004 GET /zip/FlashFXP_30_Setup.exe HTTP/1.1
Mon Aug 02 05:27:05 2004 Host: download2.flashfxp.com
Mon Aug 02 05:27:05 2004 Accept: */*
Mon Aug 02 05:27:05 2004 Referer: http://playyuer.microshaoft.com
Mon Aug 02 05:27:05 2004 User-Agent: Mozilla/4.0 (compatible; MSIE 5.00; Windows 98)
Mon Aug 02 05:27:05 2004 Range: bytes=191621-
Mon Aug 02 05:27:05 2004 Pragma: no-cache
Mon Aug 02 05:27:05 2004 Cache-Control: no-cache
Mon Aug 02 05:27:05 2004 Authorization: Basic MGRheTpjY2ZfZG93bmxvYWQ=
Mon Aug 02 05:27:05 2004 Connection: close
伺服器端響應:
Mon Aug 02 05:27:06 2004 HTTP/1.1 206 Partial Content
Mon Aug 02 05:27:06 2004 Date: Sun, 01 Aug 2004 21:26:57 GMT
Mon Aug 02 05:27:06 2004 Server: Apache/1.3.27 (Unix)? (Red-Hat/Linux) mod_fastcgi/2.2.12 mod_gzip/1.3.19.1a mod_jk/1.2.0 mod_perl/1.26 PHP/4.3.3 FrontPage/5.0.2 mod_ssl/2.8.12 OpenSSL/0.9.6b
Mon Aug 02 05:27:06 2004 Last-Modified: Fri, 30 Jul 2004 18:41:18 GMT
Mon Aug 02 05:27:06 2004
用戶端請求:
Fri Aug 06 08:25:28 2004 正在串連 localhost:8180
Fri Aug 06 08:25:28 2004 正在串連 localhost [IP=127.0.0.1:8180]
Fri Aug 06 08:25:28 2004 已串連.
Fri Aug 06 08:25:28 2004 GET /examples/basic/servlet/DownLoad1.jsp HTTP/1.1
Fri Aug 06 08:25:28 2004 Host: localhost:8180
Fri Aug 06 08:25:28 2004 Accept: */*
Fri Aug 06 08:25:28 2004 Referer: http://Server
Fri Aug 06 08:25:28 2004 Cookie: .ASPXAUTH=BE5BF4ADA48516FFD56ED0B6B5172BF4C33020E9D6348E1A83E8B720E67A56B2026A3C96FC540CE94A7E6D94B368AA608341A04056929872AD3360953D97863448BB7785C75F4136F1CC449B1ECCF5707685CC5D9967D95494321E7585E3CA52CB7961ED7168876D
Fri Aug 06 08:25:28 2004 User-Agent: Mozilla/4.0 (compatible; MSIE 5.00; Windows 98)
Fri Aug 06 08:25:28 2004 Range: bytes=1607796-
Fri Aug 06 08:25:28 2004 Pragma: no-cache
Fri Aug 06 08:25:28 2004 Cache-Control: no-cache
Fri Aug 06 08:25:28 2004 Authorization: Basic cGxheXl1ZXIxOk1pY3Jvc2hhb2Z0
Fri Aug 06 08:25:28 2004 Connection: close
伺服器端響應:
Fri Aug 06 08:25:28 2004 HTTP/1.1 401 Unauthorized
Fri Aug 06 08:25:28 2004 Server: Resin/2.1.14
Fri Aug 06 08:25:28 2004 Cache-Control: private
Fri Aug 06 08:25:28 2004 Set-Cookie: JSESSIONID=aGzRDyz-b3ye; path=/
Fri Aug 06 08:25:28 2004 Content-Type: text/html
Fri Aug 06 08:25:28 2004 Transfer-Encoding: chunked
Fri Aug 06 08:25:28 2004 Date: Fri, 06 Aug 2004 00:25:27 GMT
Fri Aug 06 08:25:28 2004 有錯誤發生!
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
