Session实现验证码登陆笔记
1.生成验证码Servlet
1 package com.isit.servlet; 2 3 import javax.imageio.ImageIO; 4 import javax.servlet.ServletException; 5 import javax.servlet.annotation.WebServlet; 6 import javax.servlet.http.HttpServlet; 7 import javax.servlet.http.HttpServletRequest; 8 import javax.servlet.http.HttpServletResponse; 9 import javax.servlet.http.HttpSession; 10 import java.awt.*; 11 import java.awt.image.BufferedImage; 12 import java.io.IOException; 13 import java.util.Random; 14 15 @WebServlet("/checkCodeServlet") 16 public class CheckCodeServlet extends HttpServlet { 17 protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { 18 19 20 int width = 100; 21 int height = 50; 22 23 //1.创建一对象,在内存中图片(验证码图片对象) 24 BufferedImage image = new BufferedImage(width, height, BufferedImage.TYPE_INT_RGB); 25 26 27 //2.美化图片 28 //2.1 填充背景色 29 Graphics g = image.getGraphics();//画笔对象 30 g.setColor(Color.PINK);//设置画笔颜色 31 g.fillRect(0, 0, width, height); 32 33 //2.2画边框 34 g.setColor(Color.BLUE); 35 g.drawRect(0, 0, width - 1, height - 1); 36 37 String str = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghigklmnopqrstuvwxyz0123456789"; 38 //生成随机角标 39 StringBuffer sb = new StringBuffer(); 40 Random ran = new Random(); 41 for (int i = 1; i <= 4; i++) { 42 int index = ran.nextInt(str.length()); 43 //获取字符 44 char ch = str.charAt(index);//随机字符 45 sb.append(ch); 46 //2.3写验证码 47 g.drawString(ch + "", width / 5 * i, height / 2); 48 } 49 String checkCode = sb.toString(); 50 HttpSession session = request.getSession(); 51 session.setAttribute("checkCode", checkCode); 52 //2.4画干扰线 53 g.setColor(Color.GREEN); 54 55 //随机生成坐标点 56 57 for (int i = 0; i < 10; i++) { 58 int x1 = ran.nextInt(width); 59 int x2 = ran.nextInt(width); 60 61 int y1 = ran.nextInt(height); 62 int y2 = ran.nextInt(height); 63 g.drawLine(x1, y1, x2, y2); 64 } 65 66 67 //3.将图片输出到页面展示 68 ImageIO.write(image, "jpg", response.getOutputStream()); 69 70 71 } 72 73 protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { 74 this.doPost(request, response); 75 } 76 }
2.登陆Servlet
1 package com.isit.servlet; 2 3 import com.isit.dao.UserDao; 4 import com.isit.entity.User; 5 import org.apache.commons.beanutils.BeanUtils; 6 7 import javax.servlet.ServletException; 8 import javax.servlet.annotation.WebServlet; 9 import javax.servlet.http.HttpServlet; 10 import javax.servlet.http.HttpServletRequest; 11 import javax.servlet.http.HttpServletResponse; 12 import javax.servlet.http.HttpSession; 13 import java.io.IOException; 14 import java.lang.reflect.InvocationTargetException; 15 import java.util.Map; 16 17 /** 18 * @program: LoginServlet 19 * @description: 登陆 20 * @author: wxh 21 * @date: 2019-06-11 15:03 22 **/ 23 @WebServlet("/loginServlet") 24 public class LoginServlet extends HttpServlet { 25 @Override 26 protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException { 27 this.doPost(req, resp); 28 } 29 30 @Override 31 protected void doPost(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException { 32 req.setCharacterEncoding("utf-8"); 33 //1.验证验证码是否正确 34 HttpSession session = req.getSession(); 35 String checkCode = (String) session.getAttribute("checkCode"); 36 //1.1.验证码错误 37 String code = req.getParameter("checkCode"); 38 if (checkCode != null && !checkCode.equalsIgnoreCase(code)) { 39 req.setAttribute("msg", "验证码错误"); 40 req.getRequestDispatcher("/index.jsp").forward(req, resp); 41 } else { 42 //1.2.验证码正确 43 //2.校验登陆密码 44 User user = new User(); 45 Map<String, String[]> parameterMap = req.getParameterMap(); 46 //使用BeanUtils工具类封装成JavaBean对象 47 try { 48 BeanUtils.populate(user, parameterMap); 49 } catch (IllegalAccessException e) { 50 e.printStackTrace(); 51 } catch (InvocationTargetException e) { 52 e.printStackTrace(); 53 } 54 UserDao userDao = new UserDao(); 55 User entity = userDao.checkUser(user); 56 if (entity != null) { 57 //2.1.匹配重定向到登录成功 Success.jsp 页面 58 session.setAttribute("username", entity.getUsername()); 59 resp.sendRedirect(req.getContextPath() + "/success.jsp"); 60 } else { 61 //2.2.不匹配,转发到登陆界面 62 req.setAttribute("msg", "用户名或密码错误"); 63 req.getRequestDispatcher("/index.jsp").forward(req, resp); 64 } 65 } 66 } 67 }