-
FEATURED COMPONENTS
First time here? Check out the FAQ!
1 | initial version | |
<filter-mapping>
<filter-name>MySecurityFilter</filter-name>
<url-pattern>/pages/*</url-pattern>
</filter-mapping>
You're security filter than is something like...
@Override
public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
HttpServletRequest request = (HttpServletRequest) servletRequest;
HttpServletResponse response = (HttpServletResponse) servletResponse;
HttpSession session = request.getSession(false);
if (session == null || session.getAttribute("user") == null) {
//redirec to login page or whatever you need to do
//be sure login.zul resides outside of your secure pages directory
} else {
filterChain.doFilter(request, response);
return;
}
}
You Login ViewModel/Controller would be responsible for setting the User in session
2 | clarification |
I use a more traditional approach using a ServletFilter. All my page are under a "pages" directory.
<filter-mapping>
<filter-name>MySecurityFilter</filter-name>
<url-pattern>/pages/*</url-pattern>
</filter-mapping>
You're security filter than is something like...
public class MySecurityFilter implements Filter {
@Override
public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
HttpServletRequest request = (HttpServletRequest) servletRequest;
HttpServletResponse response = (HttpServletResponse) servletResponse;
HttpSession session = request.getSession(false);
if (session == null || session.getAttribute("user") == null) {
//redirec to login page or whatever you need to do
//be sure login.zul resides outside of your secure pages directory
} else {
filterChain.doFilter(request, response);
return;
}
}
You Login ViewModel/Controller would be responsible for setting the User in session