方式一:直接使用JDK中ThreadLocal方式
1.先定義一個存放登錄用戶信息的實體類,並在這里面操縱用戶信息
- public class UserContext implements Serializable{
- private static ThreadLocal<LoginEntity> loginEntityThreadLocal=new ThreadLocal<>();
- public static LoginEntity getUserSession() {
- return loginEntityThreadLocal.get();
- }
- public static void setUserSession(LoginEntity entity) {
- loginEntityThreadLocal.set(entity);
- }
- public static void removeUserSession() {
- loginEntityThreadLocal.remove();
- }
- }
- public void doFilter(ServletRequest req, ServletResponse resp, FilterChain chain) throws IOException,
- ServletException {
- HttpServletRequest request = (HttpServletRequest) req;
- HttpServletResponse response = (HttpServletResponse) resp;
- HttpSession session = request.getSession();
- request.setCharacterEncoding("UTF-8");
- response.setCharacterEncoding("UTF-8");
- response.addHeader("Access-Control-Allow-Origin","*");
- response.addHeader("Access-Control-Allow-Credentials", "true");
- response.addHeader("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept,X-Pagination");
- response.addHeader("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE, OPTIONS");
- response.addHeader("Access-Control-Expose-Headers", "X-Pagination");
- //System.out.println(session.getId());
- if (isInclude(request.getServletPath())) {
- LoginEntity loginEntity = (LoginEntity) session.getAttribute(Const.LOGINED_KEY);
- if (loginEntity != null) {
- UserContext.setUserSession(loginEntity);
- chain.doFilter(request, response);
- } else {
- unLogin(response);
- }
- } else {
- chain.doFilter(request, response);
- }
- }
方式二:RequestContextHolder是Spring中對ThreadLocal進行了封裝
1.先定義一個存放登錄用戶信息的實體類,並在這里面操縱用戶信息
- public class UserContext implements Serializable{
- /**
- * 獲取當前線程綁定的用戶登錄對象
- *
- * @return
- */
- public static LoginEntity getUserSession() {
- return (LoginEntity) RequestContextHolder.getRequestAttributes().getAttribute(Constant.LOGINED_KEY, RequestAttributes.SCOPE_REQUEST);
- }
- /**
- * 將用戶登錄對象綁定到當前線程
- *
- * @param loginEntity
- */
- public static void setUserSession(LoginEntity loginEntity) {
- RequestContextHolder.getRequestAttributes().setAttribute(Constant.LOGINED_KEY, loginEntity, RequestAttributes.SCOPE_REQUEST);
- }
- /**
- * 將用戶登錄對象從當前線程銷毀
- */
- public static void removeUserSession() {
- RequestContextHolder.getRequestAttributes().removeAttribute(Constant.LOGINED_KEY,RequestAttributes.SCOPE_REQUEST);
- }
- }</strong></span>
2.在過濾其中進行存放用戶登錄信息
- public void doFilter(ServletRequest req, ServletResponse resp, FilterChain chain) throws IOException,
- ServletException {
- HttpServletRequest request = (HttpServletRequest) req;
- HttpServletResponse response = (HttpServletResponse) resp;
- HttpSession session = request.getSession();
- request.setCharacterEncoding("UTF-8");
- response.setCharacterEncoding("UTF-8");
- response.addHeader("Access-Control-Allow-Origin","*");
- response.addHeader("Access-Control-Allow-Credentials", "true");
- response.addHeader("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept,X-Pagination");
- response.addHeader("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE, OPTIONS");
- response.addHeader("Access-Control-Expose-Headers", "X-Pagination");
- //System.out.println(session.getId());
- if (isInclude(request.getServletPath())) {
- LoginEntity loginEntity = (LoginEntity) session.getAttribute(Const.LOGINED_KEY);
- if (loginEntity != null) {
- UserContext.setUserSession(loginEntity);
- chain.doFilter(request, response);
- } else {
- unLogin(response);
- }
- } else {
- chain.doFilter(request, response);
- }
- }