safefilter.java

一个简单的汽车租赁系统 jsp+struts+oracle

package com.bluedot.userModule.web.filter;

import java.io.IOException;

import java.util.Iterator;
import java.util.Set;

import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;

import com.bluedot.userModule.common.Constants;
import com.bluedot.userModule.domain.Fun;
import com.bluedot.userModule.domain.User;

public class SafeFilter implements Filter {

	public void destroy() {
		
	}

	public void doFilter(ServletRequest req, ServletResponse resp,
			FilterChain chain) throws IOException, ServletException {
		HttpServletRequest request=(HttpServletRequest)req;
		HttpServletResponse response=(HttpServletResponse)resp;
		String uri=request.getRequestURI();
		if(uri.contains("login.jsp")||uri.contains("login.do")||uri.contains("index.jsp")||uri.contains("ok.jsp")){
			chain.doFilter(request, response);
		}
		else{
			HttpSession session =request.getSession();
			User owner=null;
			owner=(User)session.getAttribute("session_userinfo");
		    Iterator ite=owner.getRole().getFuns().iterator();
		    boolean flag=false;
		    while(ite.hasNext()){
		    	Fun fun=(Fun)ite.next();
		    	if(uri.contains(fun.getUrl())){
		    		
		    		flag=true;
		    		
		    		break;
		      }
		    }
		    System.out.println(flag);
		    if(flag)
		    	chain.doFilter(request, response);
		    else{
		    	response.sendRedirect("demoFrame.jsp");
		    }
		}
	}

	public void init(FilterConfig arg0) throws ServletException {
		
	}

}