Ajax Session失效跳转登录页面的方法
在Struts应用中,我们发出的请求都会经过 相应的拦截器进行相关处理,一般都会有一个用户登录拦截(Session失效拦截);一般请求的话,如果Session失效时,我们会跳到登录页面,可是如果我们采用AJAX请求时,将会返回登录页面的HTML代码,这肯定不是我们想要的,那么我们如何解决呢?请看以下步骤:
一、建立拦截器
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
|
package
com.xxx.planeap.interceptor;
import
javax.servlet.http.HttpServletRequest;
import
javax.servlet.http.HttpServletResponse;
import
org.apache.log4j.Logger;
import
org.apache.struts2.ServletActionContext;
import
com.opensymphony.xwork2.ActionContext;
import
com.opensymphony.xwork2.ActionInvocation;
import
com.opensymphony.xwork2.ActionSupport;
import
com.opensymphony.xwork2.interceptor.AbstractInterceptor;
import
com.xxx.common.contants.ConstantsKey;
import
com.xxx.common.contants.SessionKey;
import
com.xxx.planeap.domain.User;
import
com.xxx.planeap.security.SecurityContextUtil;
/**
*
*
@author Goma [email protected]
*
@version v1.0
*
@since 2012-05-31
*
*/
public
class
SecurityInterceptor extends
AbstractInterceptor {
private
static
final
long
serialVersionUID = 1L;
private
Logger logger = Logger.getLogger(SecurityInterceptor. class );
@Override
public
String intercept(ActionInvocation invocation) throws
Exception {
//
TODO Auto-generated method stub
String
className = invocation.getAction().getClass().getName();
String
action = className.substring(className.lastIndexOf( "." )+ 1 ,className.length());
String
actionName = invocation.getProxy().getActionName();
String
result;
HttpServletRequest
request = ServletActionContext.getRequest();
HttpServletResponse
response = ServletActionContext.getResponse();
String
type = request.getHeader( "X-Requested-With" );
User
user = (User) ActionContext.getContext().getSession().get(SessionKey.CURRENT_USER);
if
(user == null )
{
logger.debug( "SECURITY
CHECKED: NEED TO LOGIN" );
if
( "XMLHttpRequest" .equalsIgnoreCase(type))
{ //
AJAX REQUEST PROCESS
response.setHeader( "sessionstatus" ,
ConstantsKey.MSG_TIME_OUT);
result
= null ;
}
else
{ //
NORMAL REQUEST PROCESS
result
= ActionSupport.LOGIN;
}
}
else
{
logger.debug( "SECURITY
CHECKED: USER HAS LOGINED" );
SecurityContextUtil.setCurrentUser(user);
boolean
hanPerm = SecurityContextUtil.hasPerm(action, actionName);
logger.debug( "SECURITY
CHECKED: PERMISSION---" +action+ "." +actionName+ "=" +hanPerm);
result
= invocation.invoke();
}
return
result;
}
}
|
二、定义全局AJAX请求结束处理方法
1
2
3
4
5
6
7
8
9
10
11
12
|
//全局的AJAX访问,处理AJAX清求时SESSION超时
$.ajaxSetup({
contentType: "application/x-www-form-urlencoded;charset=utf-8" ,
complete:function(XMLHttpRequest,textStatus){
//通过XMLHttpRequest取得响应头,sessionstatus
var
sessionstatus=XMLHttpRequest.getResponseHeader( "sessionstatus" );
if (sessionstatus== "timeout" ){
//这里怎么处理在你,这里跳转的登录页面
window.location.replace(PlanEap.getActionURI( "login" ));
}
}
});
|
也就是ajax发送请求时如果拦截返回一个表示就跳转,否则执行正常操作。