springMVC盜鏈接詳解
springMVC配置文件
<?xml version="1.0" encoding="UTF-8"?> <beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:context="http://www.springframework.org/schema/context" xmlns:mvc="http://www.springframework.org/schema/mvc" xsi:schemaLocation=" http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context.xsd http://www.springframework.org/schema/mvc http://www.springframework.org/schema/mvc/spring-mvc.xsd"> <!--自動掃描包--> <!-- 開啟ioc 註解事務支持--> <context:component-scan base-package="cn"></context:component-scan> <!--開啟spiring mvc註解支持--> <mvc:annotation-driven></mvc:annotation-driven> <!--配置spring 中的視圖解析器--> <bean class="org.springframework.web.servlet.view.InternalResourceViewResolver" id="resolver"> <property name="prefix" value="/"></property> <property name="suffix" value=".jsp"></property> </bean> <mvc:interceptors> <mvc:interceptor> <mvc:mapping path="/**"/> <bean id="loginInterceptor" class="cn.hp.interceptor.LoginInterceptor"></bean> </mvc:interceptor> </mvc:interceptors> </beans>
web.xml文件在我上一篇文章中攔截器https://blog.csdn.net/best_p1/article/details/118637785
登陸驗證
package cn.hp.action; import org.springframework.stereotype.Controller; import org.springframework.ui.Model; import org.springframework.web.bind.annotation.RequestMapping; import javax.servlet.http.HttpSession; @Controller public class UserAction { @RequestMapping("/test1.do") public String test01(){ System.out.println("正在執行test1這個業務邏輯"); return "index"; } @RequestMapping("/test2.do") public String test02(){ System.out.println("正在執行test2這個業務邏輯"); return "index"; } @RequestMapping("/login.do") public String login(String userName, String pwd, Model model,HttpSession session){ if (userName.equals("zs")&&pwd.equals("123")){ session.setAttribute("user",userName); return "redirect:/main.do"; }else { model.addAttribute("msg","用戶名和密碼錯誤"); return "login"; } } @RequestMapping("/main.do") public String main(){ return "main"; } @RequestMapping("/loginOut.do") public String loginOut(HttpSession session){ session.invalidate(); return "login"; } }
登錄的攔截器LoginInterceptor:
package cn.hp.interceptor; import org.springframework.web.servlet.HandlerInterceptor; import org.springframework.web.servlet.ModelAndView; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; public class LoginInterceptor implements HandlerInterceptor { @Override public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception { String path= request.getRequestURI(); if(path.indexOf("login.do")>0){ return true; } Object obj= request.getSession().getAttribute("user"); if (obj!=null){ return true; }else { request.setAttribute("msg","別想歪心思!請登錄!"); request.getRequestDispatcher("login.jsp").forward(request,response); return false; } } @Override public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) throws Exception { } @Override public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception { } }
jsp頁面: login.jsp
<%@ page contentType="text/html;charset=UTF-8" language="java" %> <html> <head> <title>Title</title> </head> <body> <form action="login.do" method="post"> 賬號:<input type="text" name="userName"><br/> 密碼:<input type="password" name="pwd"><br/> <input type="submit" value="登錄"> </form> ${msg} </body> </html>
main.jsp
<%@ page contentType="text/html;charset=UTF-8" language="java" %> <html> <head> <title>Title</title> </head> <body> ${user} <a href="loginOut.do">退出</a> </body> </html>
驗證賬號密碼
進行攔截 登錄才能訪問
登錄成功 可以訪問test1.do test2.do
點擊退出清除session
總結
本篇文章就到這裡瞭,希望能給你帶來幫助,也希望能夠您能夠關註WalkonNet的更多內容!