安全進入過入SecurityFilter

來源:互聯網
上載者:User

Web.xml
<filter>
    <filter-name>securityfilter</filter-name>
    <filter-class>
        com.XXXX.oss.commons.filter.SecurityFilter
    </filter-class>
</filter>
<filter-mapping>
    <filter-name>securityfilter</filter-name>
    <url-pattern>*.jsp</url-pattern>
</filter-mapping>
<filter-mapping>
    <filter-name>securityfilter</filter-name>
    <url-pattern>*.do</url-pattern>
</filter-mapping>
SecurityFilter類:
package com.XXXX.oss.commons.filter;

import javax.servlet.*;
import javax.servlet.http.*;
import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;

import java.io.*;
import com.XXXX.oss.commons.constant.ReqAttributeType;
import com.XXXX.oss.commons.UserInfo;
import com.XXXX.oss.admin.operpurrela.OperpurrelaDelegate;

public class SecurityFilter extends HttpServlet implements Filter {

    // 日誌log4j
    private static Log log = LogFactory.getLog(SecurityFilter.class);

    private static final long serialVersionUID = 1L;

    private static final String LOGIN_PAGE = "/login.jsp";

    private static final String LOGIN_PAGE2 = "/Login.do";

    private FilterConfig filterConfig;

    // Handle the passed-in FilterConfig
    public void init(FilterConfig filterConfig) throws ServletException {
        this.filterConfig = filterConfig;
    }

    // Process the request/response pair
    public void doFilter(ServletRequest request, ServletResponse response,
            FilterChain filterChain) {
        try {
            HttpServletRequest req = (HttpServletRequest) request;

            // 得到url+param
            String currentURL = req.getRequestURI();
            // if (req.getQueryString() != null) {
            // currentURL = currentURL + "?" + req.getQueryString();
            // }
            String ajax = req.getParameter("CSCOMM");
            if (currentURL != null && null == ajax) {
                if ((currentURL.indexOf(LOGIN_PAGE) >= 0)|| (currentURL.indexOf(LOGIN_PAGE2) >= 0)) {

                } else {
                    HttpServletResponse res = (HttpServletResponse) response;
                    res.setHeader("Pragma", "No-cache");
                    res.setHeader("Cache-Control", "no-cache");
                    res.setDateHeader("Expires", 0);

                    UserInfo userInfo = (UserInfo) req.getSession().getAttribute(ReqAttributeType.USERINFO);
                    
                    if (null == userInfo) {
                        if (currentURL != null&& currentURL.contains("PrintWindow.jsp")) {
                            filterChain.doFilter(request, response);
                            return;
                        }
                        res.sendRedirect(req.getContextPath() + LOGIN_PAGE);
                        return;
                    } else {
                        if (!judgePur(currentURL, userInfo.getOpercode())) {
                            res.sendRedirect(req.getContextPath() + LOGIN_PAGE);
                            return;
                        }
                    }

                }
            }

            filterChain.doFilter(request, response);
        } catch (ServletException sx) {
            log.error(sx);
            filterConfig.getServletContext().log(sx.getMessage());
        } catch (IOException iox) {
            log.error(iox);
            filterConfig.getServletContext().log(iox.getMessage());
        } catch (Exception ex) {
            log.error("", ex);
            filterConfig.getServletContext().log(ex.getMessage());
        }

    }

    public void destroy() {
        filterConfig = null;
    }

    /**
     * 驗證使用者是否能進入該url
     *
     * @param url
     *            String
     * @param opercode
     *            String
     * @return boolean
     * @throws Exception
     */
    public boolean judgePur(String url, String opercode) throws Exception {
        OperpurrelaDelegate delegate = new OperpurrelaDelegate();

        if (delegate.findPurByUrl(url, opercode) == -1) {
            return false;
        }
        return true;
    }
}

OperpurrelaLogic:
/**
     * 根據url查詢操作員在該業務控制點上的高中低許可權
     *
     * @param url
     *            String
     * @param opercode
     *            String
     * @return int 0、1、2 高、中、低 許可權 -1 沒許可權
     * @throws Exception
     */
    public int findPurByUrl(String url, String opercode) throws Exception {
        int purview = -1; // 預設是沒許可權

        // 判斷登入使用者是否是超級工號
        if (Admin.isSuperUser(opercode)) {
            purview = 0; // 最高許可權
        } else {
            /** @todo 要修改的代碼 */
            purview = -1;
        }

        return purview;
    }

public class Admin {
    // 超級工號
    private static final String Super_User[] = { "KFA001", "GD0001" };

    /**
     * 超級工號判斷
     *
     * @param name
     *            String
     * @return boolean
     */
    public static boolean isSuperUser(String name) {
        for (int i = 0; i < Super_User.length; i++) {
            if (name.equals(Super_User[i]))
                return true;
        }
        return false;
    }

}

聯繫我們

該頁面正文內容均來源於網絡整理,並不代表阿里雲官方的觀點,該頁面所提到的產品和服務也與阿里云無關,如果該頁面內容對您造成了困擾,歡迎寫郵件給我們,收到郵件我們將在5個工作日內處理。

如果您發現本社區中有涉嫌抄襲的內容,歡迎發送郵件至: info-contact@alibabacloud.com 進行舉報並提供相關證據,工作人員會在 5 個工作天內聯絡您,一經查實,本站將立刻刪除涉嫌侵權內容。

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.