首页 > 代码库 > spring拦截器(interceptor)简介
spring拦截器(interceptor)简介
1. 拦截器用途
(1)拦截未登录用户直接访问某些链接
(2)拦截日志信息
(3)拦截非法攻击,比如sql注入
2. 涉及jar、类
(1)spring-webmvc.jar
(2)HandlerInterceptor(org.springframework.web.servlet:接口)、
AsyncHandlerInterceptor(org.springframework.web.servlet:接口)、
HandlerInterceptorAdapter(org.springframework.web.servlet.handler.HandlerInterceptorAdapter:抽象类)
3.业务类
(1)实现(implements) 实现HandlerInterceptor接口或者子接口
(2)继承(extends) 继承HandlerInterceptor接口子类(抽象类)
(3)涉及的方法
preHandle、postHandle、afterCompletion
4.测试代码
LoginInterceptor
1 public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler throws Exception { 2 LOGGER.info("--------preHandle-------" + request.getRequestURI()); 3 HttpSession session = request.getSession(); 4 String login_account = String.valueOf(session.getAttribute(CommonConstants.SESSION_KEY+session.getId())); 5 if(!request.getRequestURI().contains("/baselogin/")){ 6 if (StringUtils.isBlank(login_account) || "null".equalsIgnoreCase(login_account)) { 7 response.sendRedirect("/baselogin/loginPage.htm"); 8 return false; 9 } 10 } 11 return true; 12 } 13 14 public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView)throws Exception { 15 LOGGER.info("--------postHandle-------" + request.getRequestURI()); 16 } 17 18 public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception { 19 LOGGER.info("--------afterCompletion-------" + request.getRequestURI()); 20 } 21 22 public void afterConcurrentHandlingStarted(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception { 23 LOGGER.info("--------afterConcurrentHandlingStarted-------" + request.getRequestURI()); 24 }
执行顺序:preHandle -> controller -> postHandle -> afterCompletion
配置:
<?xml version="1.0" encoding="UTF-8"?> <beans xmlns="http://www.springframework.org/schema/beans" xmlns:context="http://www.springframework.org/schema/context" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:aop="http://www.springframework.org/schema/aop" xmlns:p="http://www.springframework.org/schema/p" xmlns:mvc="http://www.springframework.org/schema/mvc" xsi:schemaLocation="http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-3.2.xsd http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.2.xsd http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop-3.2.xsd http://www.springframework.org/schema/mvc http://www.springframework.org/schema/mvc/spring-mvc-3.2.xsd ">
<!-- 拦截排除
<mvc:interceptors>
<mvc:interceptor>
<mvc:exclude-mapping path=""/>
<bean class="org.bighead.interceptor.LoginInterceptor" />
</mvc:interceptor>
</mvc:interceptors>
-->
<!-- 拦截登录 -->
<mvc:interceptors>
<mvc:interceptor>
<mvc:mapping path="/*/*.htm"/>
<bean class="org.bighead.interceptor.LoginInterceptor" />
</mvc:interceptor>
</mvc:interceptors>
<beans>
spring拦截器(interceptor)简介
声明:以上内容来自用户投稿及互联网公开渠道收集整理发布,本网站不拥有所有权,未作人工编辑处理,也不承担相关法律责任,若内容有误或涉及侵权可进行投诉: 投诉/举报 工作人员会在5个工作日内联系你,一经查实,本站将立刻删除涉嫌侵权内容。