rightfilter.java

java项目 通用的在线考试系统 可用于毕业论文 jsp+struts+hibernate+oracle9i Eclipse+tomcat开发 高质量代码 导入数据库即可用

package com.xdf.exams.filter;

import java.io.IOException;

import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import com.xdf.exams.bean.Teacher;

public class RightFilter implements Filter{

	public void destroy() {
	}

	public void doFilter(ServletRequest req, ServletResponse resp, FilterChain chain) throws IOException, ServletException {
		HttpServletRequest request = (HttpServletRequest) req;
		HttpServletResponse response = (HttpServletResponse)resp;
		String uri = request.getRequestURI();
		String ctx = request.getContextPath();
		uri = uri.substring(ctx.length());
		//考试中
		if(request.getSession().getAttribute("examinglist")!=null) {
			if((uri.endsWith(".do")||uri.endsWith(".jsp")||uri.equals("/"))&&!uri.equals("/student/exam/go.do")&&!uri.equals("/student/exam/end.do")) {
				request.setAttribute("message","正在考试请不要访问其他页面!");
				request.getRequestDispatcher("/student/exam/go.do").forward(request,response);
				return;
			}
		}
		
		if(uri.startsWith("/student")) {
			if(request.getSession().getAttribute("student")==null) {
				request.setAttribute("message","您没有登陆");
				request.getRequestDispatcher("/index.jsp").forward(req,resp);
				return;
			}
		}
		if(uri.startsWith("/teacher")) {
			if(request.getSession().getAttribute("teacher")==null) {
				request.setAttribute("message","您没有登陆");
				request.getRequestDispatcher("/index.jsp").forward(req,resp);
				return;
			}
			if(uri.endsWith("/delete.do")||uri.endsWith("/updatedo.do")
					||uri.endsWith("/deletequestion.do")||uri.endsWith("/updatequestiondo.do")
					) {
						Teacher t = (Teacher)request.getSession().getAttribute("teacher");
						if(!t.getUsername().equals("admin")) {
							request.setAttribute("message","您没有删除和修改的权限");
							request.getRequestDispatcher("/teacher/message.jsp").forward(req,resp);
							return;
						}			
					}			
		}		
		if(uri.startsWith("/teacher/admin")) {
			Teacher t = (Teacher)request.getSession().getAttribute("teacher");
			if(!t.getUsername().equals("admin")) {
				request.setAttribute("message","您没有修改教师的权限");
				request.getRequestDispatcher("/teacher/message.jsp").forward(req,resp);
				return;
			}
		}
		chain.doFilter(req,resp);
	}

	public void init(FilterConfig config) throws ServletException {
	}
}