使用场景
- web.xml中进行配置,指定过滤具体的URL或者路径或者Servlet信息;同一个Filter可以配置多个需要过滤的信息
- 用于用户登录的校验
- 可以在Filter中配置初始参数,配置多个多个初始参数
Servlet的生命周期
- init()
- doFilter()
- destory()
具体场景使用
用于登录校验
-
1. 首先写一个权限过滤类LoginFilter,实现Filter接口,用于登录验证
public class LoginFilter implements Filter {
@Override
public void doFilter(ServletRequest request, ServletResponse response,
FilterChain chain) throws IOException, ServletException {
// 获得在下面代码中要用的request,response,session对象
HttpServletRequest servletRequest = (HttpServletRequest) request
HttpServletResponse servletResponse = (HttpServletResponse) response
HttpSession session = servletRequest.getSession()
// 获得用户请求的URI
String path = servletRequest.getRequestURI()
//System.out.println(path)
// 从session里取员工工号信息
String empId = (String) session.getAttribute("empId")
/*创建类Constants.java,里面写的是无需过滤的页面
for (int i = 0
if (path.indexOf(Constants.NoFilter_Pages[i]) > -1) {
chain.doFilter(servletRequest, servletResponse)
return
}
}*/
// 登陆页面无需过滤
if(path.indexOf("/login.jsp") > -1) {
chain.doFilter(servletRequest, servletResponse)
return
}
// 判断如果没有取到员工信息,就跳转到登陆页面
if (empId == null || "".equals(empId)) {
// 跳转到登陆页面
servletResponse.sendRedirect("/JingXing_OA/login.jsp")
} else {
// 已经登陆,继续此次请求
chain.doFilter(request, response)
}
}
}
<web-app>
<filter>
<filter-name>login</filter-name>
<filter-class>com.jingxing.oa.filter.LoginFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>login</filter-name>
<url-pattern>/a/*</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>login</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>login</filter-name>
<url-pattern>/index.jsp</url-pattern>
</filter-mapping>
</web-app>
