仅供参考
设置session值,根据自己的需求设置值
/**
* 登入验证
*
* @return
*/
@RequestMapping(value = "/loginCheck.htm", method = RequestMethod.POST)
@ResponseBody
public Response loginCheck(User user) {
responseUtil = new Response();
List<User> list = userService.getUser(user);
if (list != null && list.size() > 0) {
this.getSession().setAttribute("user", list.get(0));//向session中填入登入信息
responseUtil.setStatusAndMessage(HttpStatus.HTTP_SUCCESS, "验证成功");
}
return responseUtil;
}
web.xml设置session时间
<!-- session60分钟时间 -->
<session-config>
<session-timeout>60</session-timeout>
</session-config>
设置拦截器,可以在这里设置日志、权限、是否登入。下面是判断是否登入,如果没有登入就跳转登入页面
package com.springmvc.util.action; import java.io.PrintWriter; import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse; import org.springframework.stereotype.Repository;
import org.springframework.web.servlet.ModelAndView;
import org.springframework.web.servlet.handler.HandlerInterceptorAdapter; import com.springmvc.model.User; @Repository
public class SystemInterceptor extends HandlerInterceptorAdapter{
/**
* 访问前判断session是否有值,是否登入
*/
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
request.setCharacterEncoding("UTF-8");
response.setCharacterEncoding("UTF-8");
response.setContentType("text/html;charset=UTF-8");
User user = (User)request.getSession().getAttribute("user");
if (user == null) {
// 未登录
PrintWriter out = response.getWriter();
StringBuilder builder = new StringBuilder();
builder.append("<script type=\"text/javascript\" charset=\"UTF-8\">");
builder.append("alert(\"页面过期,请重新登录\");");
builder.append("window.top.location.href=\"");
String basePath = String.valueOf(request.getAttribute("basePath"));
builder.append(basePath+"101/login.htm\";</script>");
out.print(builder.toString());
out.close();
return false;
} else {
return true;
} }
@Override
public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) throws Exception {
}
@Override
public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception {
}
}
在对应dispatcher-servlet.xml,也就是servlet中设置需要拦截的路径、不需要拦截的、拦截之后需要在哪个类中处理
<mvc:interceptors>
<mvc:interceptor>
<!-- 需拦截的地址 -->
<!-- 一级目录 -->
<mvc:mapping path="/*.do" />
<mvc:mapping path="/*.ajax" />
<mvc:mapping path="/*.htm" /> <!-- 二级目录 -->
<mvc:mapping path="/*/*.do" />
<mvc:mapping path="/*/*.ajax" />
<mvc:mapping path="/*/*.htm" />
<!-- 需排除拦截的地址 -->
<mvc:exclude-mapping path="/*/login.htm"/>
<mvc:exclude-mapping path="/*/loginCheck.htm"/>
<!-- 拦截之后处理类 -->
<bean class="com.springmvc.util.action.SystemInterceptor" />
</mvc:interceptor>
</mvc:interceptors>
可以在baseAction中添加session获取方法
public User getSessionObject(){
User user = (User)getRequest().getSession().getAttribute("user");
return user;
}