个人中心
gpt4 book ai didi

java - 尝试在 JSF 中使用 Servlet Filter 登录时出现无限循环

转载 作者:行者123 更新时间:2023-12-01 13:37:43 24 4
gpt4 key购买 nike

我正在尝试使用 JSF 和 servlet 过滤器创建登录应用程序,但是当用户登录时没有任何反应。它再次重定向到登录页面。

这是项目目录: enter image description here

这是 web.xml

<?xml version="1.0" encoding="UTF-8"?>
<web-app version="3.1" 
         xmlns="http://xmlns.jcp.org/xml/ns/javaee" 
         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" 
         xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee http://xmlns.jcp.org/xml/ns/javaee/web-app_3_1.xsd">
    <context-param>
        <param-name>javax.faces.PROJECT_STAGE</param-name>
        <param-value>Development</param-value>
    </context-param>
    <filter>
        <filter-name>LoginFilter</filter-name>
        <filter-class>javaeetutorial.guessnumber.filters.LoggedInFilter</filter-class>
    </filter>
    <!-- Set the login filter to secure all the pages in the /secured/* path of the application  -->
    <filter-mapping>
        <filter-name>LoginFilter</filter-name>
        <url-pattern>/secured/*</url-pattern>
    </filter-mapping>
    <servlet>
        <servlet-name>Faces Servlet</servlet-name>
        <servlet-class>javax.faces.webapp.FacesServlet</servlet-class>
        <load-on-startup>1</load-on-startup>
    </servlet>
    <servlet-mapping>
        <servlet-name>Faces Servlet</servlet-name>
        <url-pattern>*.xhtml</url-pattern>
    </servlet-mapping>
    <session-config>
        <session-timeout>
            30
        </session-timeout>
    </session-config>
    <welcome-file-list>
        <welcome-file>greeting.xhtml</welcome-file>
    </welcome-file-list>
</web-app>

这是 LoggedInFilter.java

/*
 * To change this template, choose Tools | Templates
 * and open the template in the editor.
 */
package javaeetutorial.guessnumber.filters;

import java.io.IOException;
import java.util.Enumeration;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import javaeetutorial.guessnumber.TestBean;

/**
 *
 * @author salih
 */
public class LoggedInFilter implements Filter {

    FilterConfig fc;

    @Override
    public void init(FilterConfig filterConfig) throws ServletException {
        fc = filterConfig;
        //throw new UnsupportedOperationException("Not supported yet."); //To change body of generated methods, choose Tools | Templates.
    }

    @Override
    public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
        Enumeration<String> t = ((HttpServletRequest) request).getSession().getAttributeNames();

        while(t.hasMoreElements()) { System.out.println(t.nextElement().toString());}
        TestBean loginBean = (TestBean) ((HttpServletRequest) request).getSession().getAttribute("testBean");

        // For the first application request there is no loginBean in the session so user needs to log in
        // For other requests loginBean is present but we need to check if user has logged in successfully
        if (loginBean == null || !loginBean.isLoggedIn()) {
            String contextPath = ((HttpServletRequest) request).getContextPath();
            ((HttpServletResponse) response).sendRedirect(contextPath + "/login.xhtml");
        }

        chain.doFilter(request, response);
    }

    @Override
    public void destroy() {
        throw new UnsupportedOperationException("Not supported yet."); //To change body of generated methods, choose Tools | Templates.
    }
}

这是 TestBean.java

/*
 * To change this template, choose Tools | Templates
 * and open the template in the editor.
 */
package javaeetutorial.guessnumber;

import java.io.Serializable;
import javax.enterprise.context.SessionScoped;
import javax.faces.application.FacesMessage;
import javax.faces.bean.ManagedProperty;
import javax.faces.context.FacesContext;
import javax.inject.Named;

/**
 *
 * @author salih
 */
@Named
@SessionScoped
public class TestBean implements Serializable {

    private boolean loggedIn;
    private String username;
    private String password;


    private NavigationBean navigationBean = new NavigationBean();

    private static final String[] users = {"anna:qazwsx", "kate:123456"};

    public String getUsername() {
        return username;
    }

    public void setUsername(String username) {
        this.username = username;
    }

    public String getPassword() {
        return password;
    }

    public void setPassword(String password) {
        this.password = password;
    }

    public boolean isLoggedIn() {
        return loggedIn;
    }

    public void setLoggedIn(boolean loggedIn) {
        this.loggedIn = loggedIn;
    }

    public String doLogin() {
        // Get every user from our sample database :)
        for (String user : users) {
            String dbUsername = user.split(":")[0];
            String dbPassword = user.split(":")[1];

            // Successful login
            if (dbUsername.equals(username) && dbPassword.equals(password)) {
                loggedIn = true;
                return navigationBean.redirectToWelcome();
            }
        }

        // Set login ERROR
        FacesMessage msg = new FacesMessage("Login error!", "ERROR MSG");
        msg.setSeverity(FacesMessage.SEVERITY_ERROR);
        FacesContext.getCurrentInstance().addMessage(null, msg);

        // To to login page
        return navigationBean.toLogin();

    }
}

这是登录.xhtml

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"htth://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"
      xmlns:f="http://java.sun.com/jsf/core"     
      xmlns:h="http://java.sun.com/jsf/html">

    <h:head>
        <title>Login form</title>
    </h:head>
    <h:body>
        <h3>Login here</h3>
        <h:form id="login-form">
           <h:outputText value="username:"/>
           <h:inputText value="#{testBean.username}" id="username"/>
           <br/>
           <h:outputText value="password:"/>
           <h:inputSecret value="#{testBean.password}" id="password"/>
           <br/>
           <h:commandButton id="button" value="Login" action="#{testBean.doLogin}"/>
           <br/>
           <h:commandLink action="#{navigationBean.redirectToInfo}" value="Info page"/>
           <br/>
           <h:messages />
           <br/>
        </h:form>
    </h:body>
</html>

最佳答案

您正在将 JSF 托管 Bean/概念与 CDI 托管 Bean 混合在一起。

首先,您忽略了指定容器,但我将为普通 servlet 容器编写一个答案,并为支持 CDI 的 Java 应用程序服务器(例如 TomEE/Wildfly/Glassfish)编写一个答案。

使用@Named@SessionScoped但请确保您拥有正确的@SessionScoped。 javax.enterprise.context 是包名称。如果您使用 JSF 中的 SessionScoped,该 bean 将具有依赖作用域,这是错误的。

现在删除过滤器并使用测试页进行快速测试。使用 <h:inputText /> 设置字段和<h:commandButton> (都在 <h:form> 中)。确保 F5 之后该值仍然存在,从而成功 @SessionScoped.

如果它不起作用,请确保您使用的是 CDI 1.1 或者您有根据文档提供的 beans.xml。

最后使用

@Inject
private TestBean testBean;

或者,如果您有像 Tomcat 或 Jetty 这样的普通容器,您需要使用 Deltaspike Core,然后:TestBean testBean = BeanProvider.getContextualReference(TestBean.class, false);

祝你好运

关于java - 尝试在 JSF 中使用 Servlet Filter 登录时出现无限循环,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/21137561/

24 4 0
文章推荐: Scala 隐式包含 Map 的 Option
文章推荐: java - 从 Java 8 升级到 Java 11 后收到加载器约束违规
文章推荐: Wix - WixBundleOriginalSourceFolder 与 WixBundleSourceProcessFolder
文章推荐: sql-server - 如何获取解决方案中所有 SSIS 包的所有错误
行者123
个人简介

我是一名优秀的程序员,十分优秀!

滴滴打车优惠券免费领取
滴滴打车优惠券
全站热门文章
Copyright 2021 - 2024 cfsdn All Rights Reserved 蜀ICP备2022000587号
广告合作:1813099741@qq.com 6ren.com