java web限制访问的ip地址.

1、$9b.kh&z#E,b6y0java 服务器端的例子类：海峡博客po9rTb海峡博客#K4A4_;Abimport java.io.IOException;a;i2;rO0import java.util.Date;0x c)Q2W9vmplD*0海峡博客7Jj7SQ$bSimport javax.servlet.Filter;Bn;kdw:D0import javax.servlet.FilterChain;海峡博客l3IUxcWimport javax.servlet.FilterConfig;Kqcr nl!X0import javax.servlet.ServletException

2、;海峡博客ebSB-DVimport javax.servlet.ServletRequest;7dx;Z:h2ab O0import javax.servlet.ServletResponse;RHIa?m-;c7W0import javax.servlet.http.HttpServletRequest;海峡博客j:vXWP:eo-d feVp*Np:L3l7qYp0import mons.logging.Log;海峡博客9Nkn%$yximport mons.logging.LogFactory;MB5L 8L ucg) U0import org.springframework.web.

3、context.WebApplicationContext;l/|u$iDiv$EY1a0import org.springframework.web.context.support.WebApplicationContextUtils;tU%R.PS9gu0(n%gD y-x$Ofk0 海峡博客Zf)QR$XjE_海峡博客 z/vJJhpublic class IpFilter implements Filter 海峡博客/i+Z!e7zln9H4H(BZ private final Log logger = LogFactory.getLog(this.getClass();VA 2n+n

4、6I#Dh0 private static String forward = null;L9L d.u$CE0 private String ipString = null;&wr0Z;d0 private ICheckAdminLogin CheckAdminLoginService = null;海峡博客g*s6C-PW |tH:MkT#k /private ICheckAdminLogin CheckAdminLoginService= new CheckAdminLogin();海峡博客D%Hg!N;m private FilterConfig filterConfig = null;

5、 7_*mqp(q2y&l&e0 /*_1Z?TU.V0 * Filter init?|E)eH5I&t5z0 */海峡博客T)F/m#E2st6u;|/A public void init(FilterConfig filterConfig) eem$gCYE0 this.filterConfig=filterConfig;L8B$dMH!oL$U0 /ipString = filterConfig.getInitParameter(allowIp);海峡博客sh5OB,Yf /System.out.println(1、获取初始化IP：+ipString);海峡博客/&|A#ke%Xuv*V

6、 this.forward = filterConfig.getInitParameter(forward);海峡博客)V vSz1_lUxq 海峡博客U:h4M-WUas3JIN%UQ3N4KU kmf0 public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws ServletException, IOException (t;O%Ix6i*LS0 WebApplicationContext wac = WebApplicationContextUtils.

7、getWebApplicationContext(filterConfig.getServletContext();海峡博客7pffY&a1vg7K this.CheckAdminLoginService = (ICheckAdminLogin) wac.getBean(checkAdminDAO);+J/k;S-lx(!D9K0/ String ipAddr = getIpAddr(HttpServletRequest)request);海峡博客n I(Pi4MJ?/ String ipAddrTrim = Tools.checkNull(ipAddr);海峡博客 8-S;m6iz/ Sys

8、tem.out.println(2、获取当前登录人员IP：+ipAddr);#c&_#srE-/I0/ System.out.println(1、获取IP：+ipString);海峡博客;ydV7c/6N/ int i=ipAddrTrim.lastIndexOf(.);L B-x tYBl&qKj0/ int r=ipString.lastIndexOf(.) ;海峡博客nu!GF4K/ String relPscope=ipString.substring(0,r);/过滤lP段;v.p?.V_ $Oa4t)xdow0/ int intRtn = CheckAdminLoginServic

9、e.checkAdminLoginIp(ipAddr);海峡博客QK/IY%Hx)x/ System.out.println(判断之后返回的结果：+intRtn);9G;N&f;X|BBoy#of.C0/ if(relPscope.equals(ipAddrTrim.substring(0,i) 海峡博客.n _w$h/ request.setAttribute(error, 禁止访问的IP地址！);/ /登录错误海峡博客w&nM qp Tu/ request.getRequestDispatcher(forward).forward(request, response);/重定向到admin

10、login.jsp页面TQ%j6eD0/ return;L*n&gB0H8y#?6I0/ .j*C;a+o i6o%P0/ elseNX!IUOr0/ chain.doFilter(request, response);海峡博客:iB.t:5Nb.zM/ 海峡博客M*V*dlEn,rBJ 海峡博客2W.g9HJ0p/k1B String ipAddr = getIpAddr(HttpServletRequest)request);海峡博客)j(m:!?j&T.UORw v Fq.iuq7Eq:Ckz|0 System.out.println(2、获取当前登录人员IP：+ipAddr+-登录时间

11、：+new Date();海峡博客O:l 1g:R int intRtn = CheckAdminLoginService.checkAdminLoginIp(ipAddr);Z+DMJ!C$C+q!w0 /System.out.println(判断之后返回的结果：+intRtn);x;U7v-EC0 if(intRtn = 0 )/返回 0 不允许访问7s I)W.f+bTL0 request.setAttribute(error, 限制访问的IP地址！);/ /登录错误海峡博客g*J!EBW7y!zS request.getRequestDispatcher(forward).forwar

12、d(request, response);/重定向到adminlogin.jsp页面海峡博客9|2NtH)L.t return;海峡博客Yp3O*T7g$S:|&Oa else if(intRtn = 1)/进入后台的登录页面海峡博客 *SKd7SNY2Z chain.doFilter(request, response);海峡博客H;u jj(Y 海峡博客 6Mb&COm 海峡博客7Os6jf(p海峡博客5+o2M!z9wbh |vX 海峡博客QYg_*;K /*海峡博客HX4y_(xg3dan * Filter clean-up海峡博客3w+m6W7 */0SM#Pl-e:VT%ng;J0

13、 public void destroy() 海峡博客d3hG-|Bub /Not much to do.6S0CMk0 3/c yP_Rd#?)eqsM0 海峡博客V2A|$Qf_$GCF#PH)S2t0/*O g*A0uv1y0 * 获取客户端IP地址 */kE3ut+V/NFt0海峡博客pR:k.Xj Vu protected String getIpAddr(HttpServletRequest request) 海峡博客V T-jp/ String ip = request.getHeader(x-forwarded-for); 8E lL*u0/ if(ip = null | ip

14、.length() = 0 | unknown.equalsIgnoreCase(ip) 海峡博客6L(g8 JVB e7E/ ip = request.getHeader(Proxy-Client-IP); 海峡博客1w+s&h(Dv/ u$q/wf1DJX6Xe.kU0/ if(ip = null | ip.length() = 0 | unknown.equalsIgnoreCase(ip) lT0z4NU.z#m0/ ip = request.getHeader(WL-Proxy-Client-IP); Bg#L:dPB4i;P,Y0/ 海峡博客Y4g0_1Dn/ if(ip = nu

15、ll | ip.length() = 0 | unknown.equalsIgnoreCase(ip) 海峡博客d#U)fL0j/j6n-iH/ ip = request.getRemoteAddr(); 2G7c+PCZHi)X0/ 海峡博客D k&U G1zr|7r7/ return ip; ,pL#6ZM&q0 G8ajgjFG0 if (request.getHeader(x-forwarded-for) = null) whh:KWL6_0 return request.getRemoteAddr(); 海峡博客-GJs bC 海峡博客E9_|Su return request.ge

16、tHeader(x-forwarded-for); 4I!?&o;l;Lo0 海峡博客q8JL9m(46C 海峡博客0K-T;v1_8?)_#ISu海峡博客6U5,T! Kws KSWiUo09J%PYhLgs0海峡博客d:9o2Hg1qUu.I由于是SPRING容器，在filter里面server会给它注入一个FilterConfig对象，在filter里可以使用FilterConfig的filterConfig.getServletContext()方法获取servlet上下文，所以在filter里获取spring的上下文方法如下：0A| i4aDl0.IjXt(O0return WebA

17、pplicationContextUtils.getWebApplicationContext(filterConfig.getServletContext(); jV:K e6&ph2R$z0海峡博客%XlAVY接下来 就是web.xml里的配置了：海峡博客d8WuZ0d |&E*m;AU$x-xo0 海峡博客fsd!htJ&w RemoteHostFilterA cm,v:K0o)jU0 com.*.*.common.web.filters.IpFilter海峡博客3vvT*Bj-Sp? !- 海峡博客(iA7GH,O7v-O allowIp3W)|N/oIXR%K0BR0 172.20.

18、10.2海峡博客 u pXy9K p&D -海峡博客t!MkD)L eg6X U i2JmG0AlX WN0 forward海峡博客$J*P k#Elas /adminAuthorizedError.do)Q2I*BC5D7l&a0 Ut)#Hc-E)yP3G0 iXgX&N/EI8X0 QaAy&L70 RemoteHostFilterN(vtR5#b1S0 /info/admin/*海峡博客JqN-S.R7q7lbK GcI*O+B9v0 海峡博客Q*E.|OB V:Y 海峡博客,qLK1W$N RemoteHostFilter4h$d7qB?,+JC0 /adminindex/*海峡博客

19、dvDKbba Rn#wd3CK&Foe:up0 7yG0d4Q7I0java web限制访问的ip地址上一篇 / 下一篇 2010-04-27 13:35:05 / 个人分类：专业技术查看( 5636 )/ 评论( 4 ) / 评分( 20 / 0 )$9b.kh&z#E,b6y0java 服务器端的例子类：海峡博客po9rTb海峡博客#K4A4_;Abimport java.io.IOException;a;i2;rO0import java.util.Date;0x c)Q2W9vmplD*0海峡博客7Jj7SQ$bSimport javax.servlet.Filter;Bn;kdw:

20、D0import javax.servlet.FilterChain;海峡博客l3IUxcWimport javax.servlet.FilterConfig;Kqcr nl!X0import javax.servlet.ServletException;海峡博客ebSB-DVimport javax.servlet.ServletRequest;7dx;Z:h2ab O0import javax.servlet.ServletResponse;RHIa?m-;c7W0import javax.servlet.http.HttpServletRequest;海峡博客j:vXWP:eo-d fe

21、Vp*Np:L3l7qYp0import mons.logging.Log;海峡博客9Nkn%$yximport mons.logging.LogFactory;MB5L 8L ucg) U0import org.springframework.web.context.WebApplicationContext;l/|u$iDiv$EY1a0import org.springframework.web.context.support.WebApplicationContextUtils;tU%R.PS9gu0(n%gD y-x$Ofk0 海峡博客Zf)QR$XjE_海峡博客 z/vJJhpub

22、lic class IpFilter implements Filter 海峡博客/i+Z!e7zln9H4H(BZ private final Log logger = LogFactory.getLog(this.getClass();VA 2n+n6I#Dh0 private static String forward = null;L9L d.u$CE0 private String ipString = null;&wr0Z;d0 private ICheckAdminLogin CheckAdminLoginService = null;海峡博客g*s6C-PW |tH:MkT#k

23、 /private ICheckAdminLogin CheckAdminLoginService= new CheckAdminLogin();海峡博客D%Hg!N;m private FilterConfig filterConfig = null; 7_*mqp(q2y&l&e0 /*_1Z?TU.V0 * Filter init?|E)eH5I&t5z0 */海峡博客T)F/m#E2st6u;|/A public void init(FilterConfig filterConfig) eem$gCYE0 this.filterConfig=filterConfig;L8B$dMH!o

24、L$U0 /ipString = filterConfig.getInitParameter(allowIp);海峡博客sh5OB,Yf /System.out.println(1、获取初始化IP：+ipString);海峡博客/&|A#ke%Xuv*V this.forward = filterConfig.getInitParameter(forward);海峡博客)V vSz1_lUxq 海峡博客U:h4M-WUas3JIN%UQ3N4KU kmf0 public void doFilter(ServletRequest request, ServletResponse response

25、, FilterChain chain) throws ServletException, IOException (t;O%Ix6i*LS0 WebApplicationContext wac = WebApplicationContextUtils.getWebApplicationContext(filterConfig.getServletContext();海峡博客7pffY&a1vg7K this.CheckAdminLoginService = (ICheckAdminLogin) wac.getBean(checkAdminDAO);+J/k;S-lx(!D9K0/ Strin

26、g ipAddr = getIpAddr(HttpServletRequest)request);海峡博客n I(Pi4MJ?/ String ipAddrTrim = Tools.checkNull(ipAddr);海峡博客 8-S;m6iz/ System.out.println(2、获取当前登录人员IP：+ipAddr);#c&_#srE-/I0/ System.out.println(1、获取IP：+ipString);海峡博客;ydV7c/6N/ int i=ipAddrTrim.lastIndexOf(.);L B-x tYBl&qKj0/ int r=ipString.lastI

27、ndexOf(.) ;海峡博客nu!GF4K/ String relPscope=ipString.substring(0,r);/过滤lP段;v.p?.V_ $Oa4t)xdow0/ int intRtn = CheckAdminLoginService.checkAdminLoginIp(ipAddr);海峡博客QK/IY%Hx)x/ System.out.println(判断之后返回的结果：+intRtn);9G;N&f;X|BBoy#of.C0/ if(relPscope.equals(ipAddrTrim.substring(0,i) 海峡博客.n _w$h/ request.set

28、Attribute(error, 禁止访问的IP地址！);/ /登录错误海峡博客w&nM qp Tu/ request.getRequestDispatcher(forward).forward(request, response);/重定向到adminlogin.jsp页面TQ%j6eD0/ return;L*n&gB0H8y#?6I0/ .j*C;a+o i6o%P0/ elseNX!IUOr0/ chain.doFilter(request, response);海峡博客:iB.t:5Nb.zM/ 海峡博客M*V*dlEn,rBJ 海峡博客2W.g9HJ0p/k1B String ipA

29、ddr = getIpAddr(HttpServletRequest)request);海峡博客)j(m:!?j&T.UORw v Fq.iuq7Eq:Ckz|0 System.out.println(2、获取当前登录人员IP：+ipAddr+-登录时间：+new Date();海峡博客O:l 1g:R int intRtn = CheckAdminLoginService.checkAdminLoginIp(ipAddr);Z+DMJ!C$C+q!w0 /System.out.println(判断之后返回的结果：+intRtn);x;U7v-EC0 if(intRtn = 0 )/返回 0

30、不允许访问7s I)W.f+bTL0 request.setAttribute(error, 限制访问的IP地址！);/ /登录错误海峡博客g*J!EBW7y!zS request.getRequestDispatcher(forward).forward(request, response);/重定向到adminlogin.jsp页面海峡博客9|2NtH)L.t return;海峡博客Yp3O*T7g$S:|&Oa else if(intRtn = 1)/进入后台的登录页面海峡博客 *SKd7SNY2Z chain.doFilter(request, response);海峡博客H;u jj

31、(Y 海峡博客 6Mb&COm 海峡博客7Os6jf(p海峡博客5+o2M!z9wbh |vX 海峡博客QYg_*;K /*海峡博客HX4y_(xg3dan * Filter clean-up海峡博客3w+m6W7 */0SM#Pl-e:VT%ng;J0 public void destroy() 海峡博客d3hG-|Bub /Not much to do.6S0CMk0 3/c yP_Rd#?)eqsM0 海峡博客V2A|$Qf_$GCF#PH)S2t0/*O g*A0uv1y0 * 获取客户端IP地址 */kE3ut+V/NFt0海峡博客pR:k.Xj Vu protected Strin

32、g getIpAddr(HttpServletRequest request) 海峡博客V T-jp/ String ip = request.getHeader(x-forwarded-for); 8E lL*u0/ if(ip = null | ip.length() = 0 | unknown.equalsIgnoreCase(ip) 海峡博客6L(g8 JVB e7E/ ip = request.getHeader(Proxy-Client-IP); 海峡博客1w+s&h(Dv/ u$q/wf1DJX6Xe.kU0/ if(ip = null | ip.length() = 0 | unknown.equalsIgnoreCase(ip) lT0z4NU.z#m0/ ip = request.getHeader(WL-Proxy-Client-IP); Bg#L:dPB4i;P,Y0/ 海峡博客Y4g0_1Dn/ if(ip = null | ip.length() = 0 | unknown.equalsIgnoreCase(ip) 海峡博客d#U)fL0j/j6n-iH/ ip = request.getRemoteAddr(); 2G7c+PCZHi)X0/ 海峡博客D k&U G1zr|7r7/ r