首頁 > 開發者 > Java

java web工程,過濾器判斷session失效

來源:互聯網
上載者:User
創建阿里雲帳戶,並獲得超過 40 款產品的免費試用版;而企業帳戶則可以享有總值 $1200 的免費試用版。立即註冊!

通常情況下,java web項目都是通過過濾器來判斷session是否失效。下面做了一個例子,實現過濾器驗證使用者的會話是否丟失。

web.xml中的配置:

<filter><filter-name>filter</filter-name><filter-class>com.zyujie.common.LoginFilter</filter-class></filter><!-- servlet規範,不能以/*.jsp這樣的結尾,寫全,或者寫成/app/*,這樣的才行 --><filter-mapping><filter-name>filter</filter-name><url-pattern>/*</url-pattern></filter-mapping><session-config> <session-timeout>1</session-timeout></session-config>

過濾器類:

package com.zyujie.common;import java.io.IOException;import java.io.PrintWriter;import javax.servlet.Filter;import javax.servlet.FilterChain;import javax.servlet.FilterConfig;import javax.servlet.ServletException;import javax.servlet.ServletRequest;import javax.servlet.ServletResponse;import javax.servlet.http.HttpServletRequest;import javax.servlet.http.HttpServletResponse;import javax.servlet.http.HttpSession;public class LoginFilter implements Filter {public void destroy() {// TODO Auto-generated method stub}public void doFilter(ServletRequest req, ServletResponse res, FilterChain chain) throws IOException, ServletException {// TODO Auto-generated method stubHttpServletRequest request = (HttpServletRequest) req;HttpServletResponse response = (HttpServletResponse) res;HttpSession session = request.getSession();// 如果session不為空白,則可以瀏覽其他頁面String url = request.getServletPath();System.out.println(url);//這裡判斷目錄,尾碼名,當然也可以寫在web.xml中,用url-pattern進行攔截映射if ((!request.getServletPath().equals("/login.action"))&& (!request.getServletPath().equals("/login.jsp"))&& (!request.getServletPath().equals("/relogin.jsp"))&& (!request.getServletPath().equals("/jquery-1.8.0.min.js"))) {System.out.println(request.getServletPath());if (session.getAttribute("userInfo") == null) {session.invalidate();response.setContentType("text/html;charset=gb2312");PrintWriter out = response.getWriter();out.println("<script language='javascript' type='text/javascript'>");out.println("alert('由於你長時間沒有操作,導致Session失效!請你重新登入!');window.location.href='" + request.getContextPath() + "/relogin.jsp'");out.println("</script>");} else {chain.doFilter(request, response);}} else {chain.doFilter(request, response);}}public void init(FilterConfig arg0) throws ServletException {// TODO Auto-generated method stub}}

做了一個測試:所有的ajax請求,都不能過濾,也不知道為什麼。如果ajax要進行session判斷的話,可以通過攔截器:代碼如下:(ajax請求不能跳轉頁面,不知道怎麼實現這種ajax請求,session丟失,頁面跳轉。)

struts2配置,攔截器:

<package name="myInterceptors" namespace="/system/login" extends="struts-default"><interceptors><interceptor name="timer" class="com.zyujie.common.TimerInterceptor" /><interceptor name="logger" class="com.zyujie.common.LoggerInterceptor" /><interceptor name="sessionFilter" class="com.zyujie.common.SessionFilterInterceptor" /></interceptors><action name="userLogin" class="userLoginAction" method="userLogin">        <interceptor-ref name="logger" />        <interceptor-ref name="timer" /><result name="input" type="redirect">/login.jsp</result><result name="success" type="redirect">/ok.jsp</result>   </action>      <action name="getSession" class="userLoginAction" method="getSession">   <result name="input" type="redirect">/login.jsp</result>   </action><action name="reLogin" class="userLoginAction" method="reLogin"><result name="input" type="redirect">/relogin.jsp</result><result name="success" type="redirect">/ok.jsp</result></action><action name="testSession" class="userLoginAction" method="testSession"><interceptor-ref name="sessionFilter" /><result name="input" type="redirect">/login.jsp</result><result name="success" type="redirect">/ok.jsp</result></action></package>

攔截類:

package com.zyujie.common;import java.io.PrintWriter;import javax.servlet.http.HttpServletResponse;import javax.servlet.http.HttpSession;import org.apache.struts2.ServletActionContext;import com.opensymphony.xwork2.Action;import com.opensymphony.xwork2.ActionInvocation;import com.opensymphony.xwork2.interceptor.AbstractInterceptor;public class SessionFilterInterceptor extends AbstractInterceptor {@Overridepublic String intercept(ActionInvocation invocation) throws Exception {HttpSession session = ServletActionContext.getRequest().getSession();if(session.getAttribute("userInfo") == null){//HttpServletResponse response = ServletActionContext.getResponse();//ServletActionContext.getResponse().sendRedirect(Action.INPUT);//session.invalidate();//response.setContentType("text/html;charset=gb2312");//PrintWriter out = response.getWriter();//out.println("<script language='javascript' type='text/javascript'>");//out.println("alert('由於你長時間沒有操作,導致Session失效!請你重新登入!');window.location.href='/login.jsp'");//out.println("</script>");//return "none";return Action.INPUT;}else{return invocation.invoke();}}}

對於ajax的請求,不能跳轉頁面。很多人說的,還是只有在頁面端判斷傳回值,進行跳轉。

本文章原先以中文撰寫並發佈於 aliyun.com,亦設英文版本,僅作資訊用途。本網站不對文章的準確性,完整性或可靠性或其任何翻譯作出任何明示或暗示的陳述或保證。如對該文章有任何疑慮或投訴,請傳送電郵至 info-contact@alibabacloud.com 並提供相關疑慮或投訴的詳細說明。職員會於 5 個工作天內與您聯絡,一經驗證之後,即會刪除該侵權內容。

聯繫我們

該頁面正文內容均來源於網絡整理,並不代表阿里雲官方的觀點,該頁面所提到的產品和服務也與阿里云無關,如果該頁面內容對您造成了困擾,歡迎寫郵件給我們,收到郵件我們將在5個工作日內處理。

如果您發現本社區中有涉嫌抄襲的內容,歡迎發送郵件至: info-contact@alibabacloud.com 進行舉報並提供相關證據,工作人員會在 5 個工作天內聯絡您,一經查實,本站將立刻刪除涉嫌侵權內容。

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More