用户登录时,将用户信息放到session中
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
|
package cn.woniubushiniu.controller;
import cn.woniubushiniu.po.user;
import org.springframework.stereotype.controller;
import org.springframework.ui.model;
import org.springframework.web.bind.annotation.requestmapping;
import org.springframework.web.bind.annotation.requestmethod;
import javax.servlet.http.httpsession;
@controller
public class usercontroller {
/**
* 向用户登录页面跳转
*/
@requestmapping(value = "/login",method = requestmethod.get)
public string tologin(){
return "login";
}
/**
* 用户登录
* @param user
* @param model
* @param session
* @return
*/
@requestmapping(value = "/login",method = requestmethod.post)
public string login(user user, model model, httpsession session){
//获取用户名和密码
string username=user.getusername();
string password=user.getpassword();
//些处横板从数据库中获取对用户名和密码后进行判断
if(username!=null&&username.equals("admin")&&password!=null&&password.equals("admin")){
//将用户对象添加到session中
session.setattribute("user_session",user);
//重定向到主页面的跳转方法
return "redirect:main";
}
model.addattribute("msg","用户名或密码错误,请重新登录!");
return "login";
}
@requestmapping(value = "/main")
public string tomain(){
return "main";
}
@requestmapping(value = "/logout")
public string logout(httpsession session){
//清除session
session.invalidate();
//重定向到登录页面的跳转方法
return "redirect:login";
}
}
|
拦截未登录的用户
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
|
public class logininterceptor implements handlerinterceptor {
@override
public boolean prehandle(httpservletrequest request, httpservletresponse response, object o) throws exception {
//获取请求的rui:去除http:localhost:8080这部分剩下的
string uri = request.getrequesturi();
//utl:除了login.jsp是可以公开访问的,其他的url都进行拦截控制
if (uri.indexof("/login") >= 0) {
return true;
}
//获取session
httpsession session = request.getsession();
user user = (user) session.getattribute("user_session");
//判断session中是否有用户数据,如果有,则返回true,继续向下执行
if (user != null) {
return true;
}
//不符合条件的给出提示信息,并转发到登录页面
request.setattribute("msg", "您还没有登录,请先登录!");
request.getrequestdispatcher("/web-inf/jsp/login.jsp").forward(request, response);
return false;
}
@override
public void posthandle(httpservletrequest httpservletrequest, httpservletresponse httpservletresponse, object o, modelandview modelandview) throws exception {
}
@override
public void aftercompletion(httpservletrequest httpservletrequest, httpservletresponse httpservletresponse, object o, exception e) throws exception {
}
}
|
配置文件
配置到spring 的配置文件中
|
1
2
3
4
5
6
|
<!--登录拦截器-->
<mvc:interceptor>
<mvc:mapping path="/**"/>
<bean class="cn.woniubushiniu.interceptor.logininterceptor"/>
</mvc:interceptor>
</mvc:interceptors>
|
配置web.xml 拦截所有url,并设置需要扫描的spring文件
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
|
<!--配置前端控制器-->
<servlet>
<servlet-name>springmvc</servlet-name>
<servlet-class>org.springframework.web.servlet.dispatcherservlet</servlet-class>
<init-param>
<param-name>contextconfiglocation</param-name>
<param-value>classpath:springmvc-config.xml</param-value>
</init-param>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet-mapping>
<servlet-name>springmvc</servlet-name>
<url-pattern>/</url-pattern>
</servlet-mapping>
|
以上就是本文的全部内容,希望对大家的学习有所帮助,也希望大家多多支持服务器之家。
原文链接:https://segmentfault.com/a/1190000015642264