car_rental_sys.zip_java租车_租车_租车系统

package controller; /* * To change this template, choose Tools | Templates * and open the template in the editor. */ import Entity.UserInfo; import Manager.UserManager; import java.io.IOException; import java.io.PrintStream; import java.io.PrintWriter; import java.io.StringWriter; import javax.servlet.Filter; import javax.servlet.FilterChain; import javax.servlet.FilterConfig; import javax.servlet.ServletException; import javax.servlet.ServletRequest; import javax.servlet.ServletResponse; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import javax.servlet.http.HttpSession; /** * * @author changliu */ public class AuthorizationController implements Filter { private static final boolean debug = true; // The filter configuration object we are associated with. If // this value is null, this filter instance is not currently // configured. private FilterConfig filterConfig = null; public AuthorizationController() { } private boolean checkAuthorization(HttpServletRequest request, int[] roles) throws Exception { boolean authorized = false; HttpSession session = request.getSession(); int uid = -1; try { uid = Integer.parseInt(session.getAttribute("uid").toString()); } catch (Exception ex) { return authorized; } UserManager mgnr = new UserManager(); UserInfo user = mgnr.getUserById(uid); if (user == null) { return authorized; } //if user's role is one of the roles, authorized is true for (int i = 0; i < roles.length; i++) { if (user.role == roles[i]) { authorized = true; break; } } return authorized; } private void doBeforeProcessing(ServletRequest request, ServletResponse response) throws IOException, ServletException { if (debug) { log("AuthorizationController:DoBeforeProcessing"); } response.setContentType("text/html;charset=UTF-8"); PrintWriter out = response.getWriter(); String url; HttpServletRequest req = (HttpServletRequest) request; HttpServletResponse res = (HttpServletResponse) response; url = req.getRequestURL().toString(); int[] roles = null; if (url.contains("manage_car.jsp") || url.contains("manage_employee.jsp")) { roles = new int[1]; roles[0] = 0; } else if (url.contains("rent_car.jsp") || url.contains("return_car.jsp")){ roles = new int[1]; roles[0] = 1; } try { if (this.checkAuthorization(req, roles) == false) { res.sendRedirect("error_page.jsp?code=1"); } else { //RequestDispatcher dispatcher = request.getRequestDispatcher("manage_car.jsp"); //dispatcher.forward(request, response); } } catch (Exception ex) { res.sendRedirect("error_page.jsp?code=2"); } } private void doAfterProcessing(ServletRequest request, ServletResponse response) throws IOException, ServletException { if (debug) { log("AuthorizationController:DoAfterProcessing"); } // Write code here to process the request and/or response after // the rest of the filter chain is invoked. // For example, a logging filter might log the attributes on the // request object after the request has been processed. /* for (Enumeration en = request.getAttributeNames(); en.hasMoreElements(); ) { String name = (String)en.nextElement(); Object value = request.getAttribute(name); log("attribute: " + name + "=" + value.toString()); } */ // For example, a filter might append something to the response. /* PrintWriter respOut = new PrintWriter(response.getWriter()); respOut.println("<P><B>This has been appended by an intrusive filter.</B>"); */ } /** * * @param request The servlet request we are processing * @param response The servlet response we are creating * @param chain The filter chain we are processing * * @exception IOException if an input/output error occurs * @exception ServletException if a servlet error occurs */ public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException { if (debug) { log("AuthorizationController:doFilter()"); } doBeforeProcessing(request, response); Throwable problem = null; try { chain.doFilter(request, response); } catch (Throwable t) { // If an exception is thrown somewhere down the filter chain, // we still want to execute our after processing, and then // rethrow the problem after that. problem = t; t.printStackTrace(); } doAfterProcessing(request, response); // If there was a problem, we want to rethrow it if it is // a known type, otherwise log it. if (problem != null) { if (problem instanceof ServletException) { throw (ServletException) problem; } if (problem instanceof IOException) { throw (IOException) problem; } sendProcessingError(problem, response); } } /** * Return the filter configuration object for this filter. */ public FilterConfig getFilterConfig() { return (this.filterConfig); } /** * Set the filter configuration object for this filter. * * @param filterConfig The filter configuration object */ public void setFilterConfig(FilterConfig filterConfig) { this.filterConfig = filterConfig; } /** * Destroy method for this filter */ public void destroy() { } /** * Init method for this filter */ public void init(FilterConfig filterConfig) { this.filterConfig = filterConfig; if (filterConfig != null) { if (debug) { log("AuthorizationController:Initializing filter"); } } } /** * Return a String representation of this object. */ @Override public String toString() { if (filterConfig == null) { return ("AuthorizationController()"); } StringBuffer sb = new StringBuffer("AuthorizationController("); sb.append(filterConfig); sb.append(")"); return (sb.toString()); } private void sendProcessingError(Throwable t, ServletResponse response) { String stackTrace = getStackTrace(t); if (stackTrace != null && !stackTrace.equals("")) { try { response.setContentType("text/html"); PrintStream ps = new PrintStream(response.getOutputStream()); PrintWriter pw = new PrintWriter(ps); pw.print("<html>\n<head>\n<title>Error</title>\n</head>\n<body>\n"); //NOI18N // PENDING! Localize this for next official release pw.print("<h1>The resource did not process correctly</h1>\n<pre>\n"); pw.print(stackTrace); pw.print("</pre></body>\n</html>"); //NOI18N pw.close(); ps.close(); response.getOutputStream().close(); } catch (Exception ex) { } } else { try { PrintStream ps = new PrintStream(response.getOutputStream()); t.printStackTrace(ps); ps.close(); response.getOutputStream().close(); } catch (Exception ex) { } }