使用过滤器的Javaservlet重定向
我有以下问题: 我有一个带有登录表单的使用过滤器的Javaservlet重定向,java,servlets,servlet-filters,Java,Servlets,Servlet Filters,我有以下问题: 我有一个带有登录表单的index.html页面: <html> <head> <title>TODO supply a title</title> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> &l
index.html<html>
<head>
<title>TODO supply a title</title>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link href="css/css.css" type="text/css" rel="stylesheet"/>
</head>
<body>
<nav>
<form action="">
<label for="username">User: </label><input name ="username" type="text">
<label for="password">Password: </label><input name ="password" type="password">
<input type="submit" value="Vai">
</form>
</nav>
<section id ="page">
</section>
</body>
</html>
f2public void doFilter(ServletRequest request, ServletResponse response,
FilterChain chain)
throws IOException, ServletException {
if (debug) {
log("f2:doFilter()");
}
doBeforeProcessing(request, response);
HttpServletRequest req = (HttpServletRequest) request;
if(req.getSession().getAttribute("username") == null)
System.out.println("Attributo username = NULL");
if(!req.getParameter("username").equals("admin")){
System.out.println("Username is not ADMIN");
req.getRequestDispatcher("/payroll/public/dipendenti.html").forward(request, response);
}
else{
System.out.println("Username is ADMIN");
req.getRequestDispatcher("/payroll/private/stipendi.html").forward(request, response);
}
Throwable problem = null;
try {
chain.doFilter(request, response); return;
} catch (Throwable t) {
// If an exception is thrown somewhere down the filter chain,
// we still want to execute our after processing, and then
// rethrow the problem after that.
problem = t;
t.printStackTrace();
}
doAfterProcessing(request, response);
// If there was a problem, we want to rethrow it if it is
// a known type, otherwise log it.
if (problem != null) {
if (problem instanceof ServletException) {
throw (ServletException) problem;
}
if (problem instanceof IOException) {
throw (IOException) problem;
}
sendProcessingError(problem, response);
}
}
f2url模式=/*url模式myRedirectServlet.javaindex.htmlaction=“myRedirectServlet”action=“/payroll/”请帮帮我你所做的事不符合安全利益。你应该利用的概念-但让我们把它留到另一天
编辑:我总是被重定向到
/payroll/public/dipendenti.htmlaction/payroll/private/stipendi.htmlelsechain.doFilter(请求、响应)但我总是被重定向到/payroll/private/stipendi.html
。。。我不明白为什么
public void doFilter(ServletRequest request, ServletResponse response,
FilterChain chain)
throws IOException, ServletException {
if (debug) {
log("f2:doFilter()");
}
doBeforeProcessing(request, response);
HttpServletRequest req = (HttpServletRequest) request;
if(req.getSession().getAttribute("username") == null)
System.out.println("Attributo username = NULL");
if(!req.getParameter("username").equals("admin")){
System.out.println("Username is not ADMIN");
req.getRequestDispatcher("/payroll/public/dipendenti.html").forward(request, response);
}
else{
System.out.println("Username is ADMIN");
req.getRequestDispatcher("/payroll/private/stipendi.html").forward(request, response);
}
Throwable problem = null;
try {
chain.doFilter(request, response); return;
} catch (Throwable t) {
// If an exception is thrown somewhere down the filter chain,
// we still want to execute our after processing, and then
// rethrow the problem after that.
problem = t;
t.printStackTrace();
}
doAfterProcessing(request, response);
// If there was a problem, we want to rethrow it if it is
// a known type, otherwise log it.
if (problem != null) {
if (problem instanceof ServletException) {
throw (ServletException) problem;
}
if (problem instanceof IOException) {
throw (IOException) problem;
}
sendProcessingError(problem, response);
}
}