springmvc中的拦截器

Author: eson15

WebRoot/WEB-INF/jsp/items/editItems.jsp

@@ -10,7 +10,6 @@
 
 </head>
 <body>
-
 	<form id="itemForm"
 		action="${pageContext.request.contextPath }/editItemsSubmit.action"
 		method="post" enctype="multipart/form-data">

WebRoot/WEB-INF/jsp/items/itemsList.jsp

@@ -19,6 +19,9 @@ function deleteItems() {
 </script>
 </head>
 <body>
+	<c:if test="${username != null }">
+		${username } <a href="${pageContext.request.contextPath }/logout.action">退出</a>
+	</c:if>
 	<form name="itemsForm"
 		action="${pageContext.request.contextPath }/editItemsAllSubmit.action"
 		method="post">

WebRoot/WEB-INF/jsp/login.jsp

@@ -0,0 +1,16 @@
+<%@ page language="java" contentType="text/html; charset=UTF-8"
+    pageEncoding="UTF-8"%>
+<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+<title>登陆页面</title>
+</head>
+<body>
+<form action="${pageContext.request.contextPath }/login.action" method="post">
+	用户名：<input type="text" name="username" /><br>
+	密码：<input type="password" name="password" /><br>
+	<input type="submit" name="提交" />
+</form>
+</body>
+</html>

config/spring/springmvc.xml

@@ -137,4 +137,26 @@
 	<!-- 静态资源解析，包括js,css,img... -->
 	<mvc:resources location="/js/" mapping="/js/**"></mvc:resources>
 	<mvc:resources location="/img/" mapping="/img/**"></mvc:resources>
+	
+	<!-- 配置拦截器 -->
+	<mvc:interceptors>
+		<!-- 多个拦截器，按顺序执行 -->
+		
+		<mvc:interceptor>
+			<mvc:mapping path="/**"/> <!-- 拦截所有的url包括子url路径 -->
+			<bean class="ssm.interceptor.LoginInterceptor"/>
+		</mvc:interceptor>
+		<mvc:interceptor>
+			<mvc:mapping path="/**"/> <!-- 拦截所有的url包括子url路径 -->
+			<bean class="ssm.interceptor.HandlerInterceptor1"/>
+		</mvc:interceptor>
+		<mvc:interceptor>
+			<mvc:mapping path="/**"/>
+			<bean class="ssm.interceptor.HandlerInterceptor2"/>
+		</mvc:interceptor>
+		<mvc:interceptor>
+			<mvc:mapping path="/**"/>
+			<bean class="ssm.interceptor.HandlerInterceptor3"/>
+		</mvc:interceptor>
+	</mvc:interceptors>
 </beans>

src/ssm/controller/ItemsController.java

@@ -5,6 +5,7 @@
 import java.util.UUID;
 
 import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpSession;
 
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Controller;
@@ -205,5 +206,24 @@ public String editItemsQueryResult(ItemsQueryVo itemsQueryVo)
 		return itemsCustom;
 	}
 
-
+	//登陆
+	@RequestMapping("/login")
+	public String login(HttpServletRequest request, String username, String password) throws Exception {
+		
+		//实际中要去和数据库匹配的
+		//....
+		HttpSession session = request.getSession();
+		session.setAttribute("username", username);
+		return "redirect:queryItems.action";
+	}
+	
+	//退出
+	@RequestMapping("/logout")
+	public String logout(HttpServletRequest request) throws Exception {
+		
+		
+		HttpSession session = request.getSession();
+		session.invalidate();
+		return "redirect:queryItems.action";
+	}
 }

src/ssm/interceptor/HandlerInterceptor1.java

@@ -0,0 +1,45 @@
+package ssm.interceptor;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.springframework.web.servlet.HandlerInterceptor;
+import org.springframework.web.servlet.ModelAndView;
+
+//测试拦截器1
+public class HandlerInterceptor1 implements HandlerInterceptor{
+
+	//进入Handler方法之前执行
+	//可以用于身份认证、身份授权。如果认证没有通过表示用户没有登陆，需要此方法拦截不再往下执行，否则就放行
+	@Override
+	public boolean preHandle(HttpServletRequest request,
+			HttpServletResponse response, Object handler) throws Exception {
+		
+		System.out.println("HandlerInterceptor1....preHandle");
+		
+		//false表示拦截，不向下执行；true表示放行
+		return true;
+	}
+
+	//进入Handler方法之后，返回ModelAndView之前执行
+	//应用场景从modelAndView出发：将公用的模型数据（比如菜单导航之类的）在这里传到视图，也可以在这里同一指定视图
+	@Override
+	public void postHandle(HttpServletRequest request,
+			HttpServletResponse response, Object handler,
+			ModelAndView modelAndView) throws Exception {
+
+		System.out.println("HandlerInterceptor1....postHandle");
+		
+	}
+
+	//执行Handler完成之后执行
+	//应用场景：统一异常处理，统一日志处理
+	@Override
+	public void afterCompletion(HttpServletRequest request,
+			HttpServletResponse response, Object handler, Exception ex)
+			throws Exception {
+		
+		System.out.println("HandlerInterceptor1....afterCompletion");
+	}
+
+}

src/ssm/interceptor/HandlerInterceptor2.java

@@ -0,0 +1,45 @@
+package ssm.interceptor;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.springframework.web.servlet.HandlerInterceptor;
+import org.springframework.web.servlet.ModelAndView;
+
+//测试拦截器1
+public class HandlerInterceptor2 implements HandlerInterceptor{
+
+	//进入Handler方法之前执行
+	//可以用于身份认证、身份授权。如果认证没有通过表示用户没有登陆，需要此方法拦截不再往下执行，否则就放行
+	@Override
+	public boolean preHandle(HttpServletRequest request,
+			HttpServletResponse response, Object handler) throws Exception {
+		
+		System.out.println("HandlerInterceptor2....preHandle");
+		
+		//false表示拦截，不向下执行；true表示放行
+		return true;
+	}
+
+	//进入Handler方法之后，返回ModelAndView之前执行
+	//应用场景从modelAndView出发：将公用的模型数据（比如菜单导航之类的）在这里传到视图，也可以在这里同一指定视图
+	@Override
+	public void postHandle(HttpServletRequest request,
+			HttpServletResponse response, Object handler,
+			ModelAndView modelAndView) throws Exception {
+
+		System.out.println("HandlerInterceptor2....postHandle");
+		
+	}
+
+	//执行Handler完成之后执行
+	//应用场景：统一异常处理，统一日志处理
+	@Override
+	public void afterCompletion(HttpServletRequest request,
+			HttpServletResponse response, Object handler, Exception ex)
+			throws Exception {
+		
+		System.out.println("HandlerInterceptor2....afterCompletion");
+	}
+
+}

src/ssm/interceptor/HandlerInterceptor3.java

@@ -0,0 +1,45 @@
+package ssm.interceptor;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.springframework.web.servlet.HandlerInterceptor;
+import org.springframework.web.servlet.ModelAndView;
+
+//测试拦截器1
+public class HandlerInterceptor3 implements HandlerInterceptor{
+
+	//进入Handler方法之前执行
+	//可以用于身份认证、身份授权。如果认证没有通过表示用户没有登陆，需要此方法拦截不再往下执行，否则就放行
+	@Override
+	public boolean preHandle(HttpServletRequest request,
+			HttpServletResponse response, Object handler) throws Exception {
+		
+		System.out.println("HandlerInterceptor3....preHandle");
+		
+		//false表示拦截，不向下执行；true表示放行
+		return true;
+	}
+
+	//进入Handler方法之后，返回ModelAndView之前执行
+	//应用场景从modelAndView出发：将公用的模型数据（比如菜单导航之类的）在这里传到视图，也可以在这里同一指定视图
+	@Override
+	public void postHandle(HttpServletRequest request,
+			HttpServletResponse response, Object handler,
+			ModelAndView modelAndView) throws Exception {
+
+		System.out.println("HandlerInterceptor3....postHandle");
+		
+	}
+
+	//执行Handler完成之后执行
+	//应用场景：统一异常处理，统一日志处理
+	@Override
+	public void afterCompletion(HttpServletRequest request,
+			HttpServletResponse response, Object handler, Exception ex)
+			throws Exception {
+		
+		System.out.println("HandlerInterceptor3....afterCompletion");
+	}
+
+}

src/ssm/interceptor/LoginInterceptor.java

@@ -0,0 +1,64 @@
+package ssm.interceptor;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.servlet.http.HttpSession;
+
+import org.springframework.web.servlet.HandlerInterceptor;
+import org.springframework.web.servlet.ModelAndView;
+
+//测试拦截器1
+public class LoginInterceptor implements HandlerInterceptor{
+
+	//进入Handler方法之前执行
+	//可以用于身份认证、身份授权。如果认证没有通过表示用户没有登陆，需要此方法拦截不再往下执行，否则就放行
+	@Override
+	public boolean preHandle(HttpServletRequest request,
+			HttpServletResponse response, Object handler) throws Exception {
+		
+		//获取请求的url
+		String url = request.getRequestURI();
+		//判断url是否公开地址（实际使用时将公开地址配置到配置文件中）
+		//这里公开地址是否登陆提交的地址
+		if(url.indexOf("login.action") > 0) {
+			//如果进行登陆提交，放行
+			return true;
+		}
+		
+		//判断session
+		HttpSession session = request.getSession();
+		//从session中取出用户身份信息
+		String username = (String) session.getAttribute("username");
+		if(username != null) {
+			return true;
+		}
+		
+		
+		//执行到这里表示用户身份需要验证，跳转到登陆页面
+		request.getRequestDispatcher("/WEB-INF/jsp/login.jsp").forward(request, response);
+		
+		return false;
+	}
+
+	//进入Handler方法之后，返回ModelAndView之前执行
+	//应用场景从modelAndView出发：将公用的模型数据（比如菜单导航之类的）在这里传到视图，也可以在这里同一指定视图
+	@Override
+	public void postHandle(HttpServletRequest request,
+			HttpServletResponse response, Object handler,
+			ModelAndView modelAndView) throws Exception {
+
+		System.out.println("HandlerInterceptor1....postHandle");
+		
+	}
+
+	//执行Handler完成之后执行
+	//应用场景：统一异常处理，统一日志处理
+	@Override
+	public void afterCompletion(HttpServletRequest request,
+			HttpServletResponse response, Object handler, Exception ex)
+			throws Exception {
+		
+		System.out.println("HandlerInterceptor1....afterCompletion");
+	}
+
+}