一切福田,不離方寸,從心而覓,感無不通。

Daily Archives: 2018年5月11日

javaweb利用filter拦截未授权请求

项目上有个小需求,要限制访问者的IP,屏蔽未授权的请求。该场景使用过滤器来做再合适不过了。 SecurityFilter.java:

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
public class SecurityFilter implements Filter {
 
    private Log log = LogFactory.getLog(SecurityFilter.class);
    private List<String> whitelist = new ArrayList<String>();
    private List<String> regexlist = new ArrayList<String>();
    private static final String _JSON_CONTENT = "application/json; charset=UTF-8";
    private static final String _HTML_CONTENT = "text/html; charset=UTF-8";
    private static final String _403_JSON = "{'code': '403', 'msg': '访问被拒绝,客户端未授权!'}";
    private static final String _403_HTML = "<html><body><div style='text-align:center'><h1 style='margin-top: 10px;'>403 Forbidden!</h1><hr><span>@lichmama</span></div></body></html>";
 
    @Override
    public void destroy() {
    }
 
    @Override
    public void doFilter(ServletRequest servletrequest, ServletResponse servletresponse, FilterChain filterchain)
            throws IOException, ServletException {
        HttpServletRequest request = (HttpServletRequest) servletrequest;
        HttpServletResponse response = (HttpServletResponse) servletresponse;
        if (isSecurityRequest(request)) {
            filterchain.doFilter(request, response);
        } else {
            log.info("拒绝来自[" + request.getRemoteAddr() + "]的访问请求:" + request.getRequestURI());
            response.setStatus(403);
            if (isAjaxRequest(request)) {
                response.setContentType(_JSON_CONTENT);
                response.getWriter().print(_403_JSON);
            } else {
                response.setContentType(_HTML_CONTENT);
                response.getWriter().print(_403_HTML);
            }
        }
    }
 
    @Override
    public void init(FilterConfig filterconfig) throws ServletException {
        String allowedIP = filterconfig.getInitParameter("allowedIP");
        if (allowedIP != null && allowedIP.length() > 0) {
            for (String item : allowedIP.split(",\\s*")) {
                // 支持通配符*
                if (item.contains("*")) {
                    String regex = item.replace(".", "\\.").replace("*", "\\d{1,3}");
                    regexlist.add(regex);
                } else {
                    whitelist.add(item);
                }
            }
        }
    }
 
    /**
     * 判断当前请求是否来自可信任的地址
     *
     * @param request
     * @return
     */
    private boolean isSecurityRequest(HttpServletRequest request) {
        String ip = request.getRemoteAddr();
        for (String item : whitelist) {
            if (ip.equals(item))
                return true;
        }
        for (String item : regexlist) {
            if (ip.matches(item))
                return true;
        }
        return false;
    }
 
    /**
     * 判断请求是否是AJAX请求
     * @param request
     * @return
     */
    private boolean isAjaxRequest(HttpServletRequest request) {
        String header = request.getHeader("X-Requested-With");
        if (header != null && header.length() > 0) {
            if ("XMLHttpRequest".equalsIgnoreCase(header))
                return true;
        }
        return false;
    }
}

web.xml增加配置:

1
2
3
4
5
6
7
8
9
10
11
12
13
<filter>  
        <filter-name>securityFilter</filter-name>  
        <filter-class>com.lichmama.webdemo.filter.SecurityFilter</filter-class>  
        <init-param>  
            <param-name>allowedIP</param-name>  
            <param-value>192.168.5.*</param-value>  
        </init-param>
    </filter>  
    
    <filter-mapping>  
        <filter-name>securityFilter</filter-name>  
        <url-pattern>/*</url-pattern>  
    </filter-mapping>

from:https://www.cnblogs.com/lichmama/p/7063587.html

龙生   11 May 2018
View Details

Java获取此次请求URL以及服务器根路径的方法

本文介绍了Java获取此次请求URL以及获取服务器根路径的方法,并且进行举例说明,感兴趣的朋友可以学习借鉴下文的内容。 一、 获取此次请求的URL 1 2 3 4 5 6 String requestUrl = request.getScheme() //当前链接使用的协议     +"://" + request.getServerName()//服务器地址     + ":" + request.getServerPort() //端口号     + request.getContextPath() //应用名称,如果应用名称为     + request.getServletPath() //请求的相对url     + "?" + request.getQueryString(); //请求参数 举例: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 http://127.0.0.1:8080/world/index.jsp?name=lilei&sex=1 <Context path="world" docBase="/home/webapps" debug="0" reloadable="true"/> request.getScheme() = "http"; request.getServerName() = "127.0.0.1"; request.getServerPort() = "8080"; request.getContextPath() = "world"; request.getServletPath() = "index.jsp"; request.getQueryString() = "name=lilei&sex=1"; http://127.0.0.1:8080/world/index.jsp?name=lilei&sex=1 <Context path="" docBase="/home/webapps" debug="0" reloadable="true"/> request.getScheme() = "http"; request.getServerName() = […]

龙生   11 May 2018
View Details

java 通过user-agent获取客户端

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
/**java获取客户端*/
public static void getPlatform(HttpServletRequest request){
 
    /**User Agent中文名为用户代理,简称 UA,它是一个特殊字符串头,使得服务器
    能够识别客户使用的操作系统及版本、CPU 类型、浏览器及版本、浏览器渲染引擎、浏览器语言、浏览器插件等*/  
    String agent= request.getHeader("user-agent");
    //客户端类型常量
    String type = "";
    if(agent.contains("iPhone")||agent.contains("iPod")||agent.contains("iPad")){  
        type = "ios";
    } else if(agent.contains("Android") || agent.contains("Linux")) {
        type = "apk";
    } else if(agent.indexOf("micromessenger") > 0){
        type = "wx";
    }else {
        type = "pc";
    }
    return pc;
}

from:https://blog.csdn.net/mr_caoshuai/article/details/78284010

龙生   11 May 2018
View Details

Copyright © 2025 Longsheng All rights reserved