【Java】SpringMVC拦截器

1.定义拦截器

• 实现HandlerInterceptor接口
• 继承HandlerInterceptorAdaptor类

2.拦截器方法

• preHandle：拦截于请求刚进入时，进行判断，需要boolean返回值，如果返回true将继续执行，如果返回false，将不进行执行。
• postHandle：拦截于方法成功返回后，视图渲染前，可以对modelAndView进行操作。
• afterCompletion：拦截于方法成功返回后，视图渲染前，可以进行成功返回的日志记录。

3.拦截器配置

    <mvc:interceptors>
        <mvc:interceptor>
            <!-- 配置拦截URL -->
            <mvc:mapping path="/*"/>
            <!-- 配置拦截器实现类 -->
            <bean class="Interceptor"></bean>
        </mvc:interceptor>
    </mvc:interceptors>

4.登录校验的实现

//AuthcInterceptor.java - 拦截器实现
public class AuthcInterceptor implements HandlerInterceptor {

    @Override
    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
        String uri = request.getRequestURI();
        System.out.println("已进入拦截器,拦截URL: " + uri);
        //如果匹配上URI中存在login,即不拦截该请求
        if (uri.matches(".+login$")) {
            return true;
        }
        User c_user = (User) request.getSession().getAttribute("USER_SESSION");
        if (null != c_user) {
            return true;
        }
        response.sendRedirect("../");
        return false;
    }

    @Override
    public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) throws Exception {

    }

    @Override
    public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception {

    }

}

// UserController.java - 实现用户登录的controller
@Controller
@RequestMapping("/user")
public class UserController {

    @Autowired
    IUserService userService;

    @RequestMapping(value = "/login", method = RequestMethod.POST)
    @ResponseBody
    public Result login(@Valid User user, BindingResult bindingResult, @ApiIgnore HttpSession session) {
        if (bindingResult.hasFieldErrors()) {
            for (FieldError error : bindingResult.getFieldErrors()) {
                return ResultGenerator.genFailResult(error.getDefaultMessage());
            }
        }
        User c_user = userService.login(user);
        if(null == c_user) {
            return ResultGenerator.genFailResult("该用户不存在");
        }
        session.setAttribute("USER_SESSION", c_user);
        return ResultGenerator.genSuccessResult();
    }

    @RequestMapping(value = "/logout", method = RequestMethod.GET)
    public String logout(HttpSession session) {
        //用户正常退出，销毁session对象
        session.invalidate();
        return "redirect:login";
    }
}

<!-- spring-mvc.xml - 拦截器的配置 -->
<?xml version="1.0" encoding="UTF-8"?>
<beans xmlns="http://www.springframework.org/schema/beans"
       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
       xmlns:mvc="http://www.springframework.org/schema/mvc"
       xsi:schemaLocation="http://www.springframework.org/schema/beans
       http://www.springframework.org/schema/beans/spring-beans.xsd
       http://www.springframework.org/schema/mvc
       http://www.springframework.org/schema/mvc/spring-mvc.xsd">

    <mvc:interceptors>
        <mvc:interceptor>
            <!-- 拦截对象是方法 -->
            <mvc:mapping path="/user/**"/>
            <bean class="cn.edu.yau.interceptors.AuthcInterceptor"></bean>
        </mvc:interceptor>
    </mvc:interceptors>

</beans>