使用Cookie进行用户的自动登录

一、从登录——>主页面，进行的过程是，输入 用户名和密码，以及验证码，点击“登录”跳转到Activity.jsp

login1.action（跳转到登录页面）

/** 跳转到login（有积分排行榜） */
	@RequestMapping("/login1.action")
	public String login() {
		return "login";
	}

login.action（从登录页面跳转到主页面）

/** 登录 */
	@RequestMapping("/login.action")
	public String login(String nickName, String password, String authCode,
			String autoLogin, HttpSession session, Model model,
			HttpServletRequest req, HttpServletResponse resp) {
		System.out.println("autoLogin:" + autoLogin);//自动登录多选框状态，未选中时为null，选中时为on
		// 登录积分和等级
		PointAction loginPoint = null;
		Graderecord loginLevel = null;
		if (authCode == null || authCode == "") {
			model.addAttribute("msg", "请填写验证码！");
			return "login";
		}
		if (!authCode.equals(session.getAttribute("authCode"))) {
			model.addAttribute("msg", "验证码错误");
			return "login";
		}
		try {
			// 根据页面用户名查询用户信息
			Memberinfo memberinfo = memberservice.loginMemberInfo(nickName);
			session.setAttribute("nickName", nickName);
			// 判断密码是否正确
			if (password.equals(memberinfo.getPassword())) {
				memberservice.loginAction(memberinfo, loginPoint, session,
						loginLevel);
				if (autoLogin != null) {
					// 保存cookie
					try {
						Cookie usernameCookie = new Cookie("nickname",
								URLEncoder.encode(nickName, "utf-8"));
						Cookie passwordCookie = new Cookie("password", password);
						usernameCookie.setMaxAge(360 * 24 * 60);// 设置一年有效期
						passwordCookie.setMaxAge(360 * 24 * 60);
						usernameCookie.setPath("/");// 可在同一应用服务器内共享方法
						passwordCookie.setPath("/");
						resp.addCookie(usernameCookie);
						resp.addCookie(passwordCookie);
					} catch (UnsupportedEncodingException e) {
						e.printStackTrace();
					}
				}
				return "activity";
			} else {
				model.addAttribute("msg", "请输入正确密码");
			}
			return "login";
		} catch (MemberServiceException e) {
			e.printStackTrace();
			model.addAttribute("msg", e.getMessage());
			return "login";
		}
	}

在此时，进行Cookie的保存，即中间的这一段代码

if (autoLogin != null) {//判断自动登录多选框的状态，若选中则进行Cookie的保存
					// 保存cookie
					try {
						Cookie usernameCookie = new Cookie("nickname",
								URLEncoder.encode(nickName, "utf-8"));
						Cookie passwordCookie = new Cookie("password", password);
						usernameCookie.setMaxAge(360 * 24 * 60);// 设置一年有效期
						passwordCookie.setMaxAge(360 * 24 * 60);
						usernameCookie.setPath("/");// 可在同一应用服务器内共享方法
						passwordCookie.setPath("/");
						resp.addCookie(usernameCookie);
						resp.addCookie(passwordCookie);
					} catch (UnsupportedEncodingException e) {
						e.printStackTrace();
					}
				}
				return "activity";

在index.jsp页面中调用checkAutoLoginAction.action

<meta http-equiv="refresh" content="0;url='checkAutoLoginAction.action'">

<%@ page language="java" import="java.util.*" pageEncoding="ISO-8859-1"%>
<%
String path = request.getContextPath();
String basePath = request.getScheme()+"://"+request.getServerName()+":"+request.getServerPort()+path+"/";
%>

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
  <head>
    <base href="<%=basePath%>">
    
    <title>My JSP 'index.jsp' starting page</title>
    <meta http-equiv="refresh" content="0;url='checkAutoLoginAction.action'">
	<meta http-equiv="pragma" content="no-cache">
	<meta http-equiv="cache-control" content="no-cache">
	<meta http-equiv="expires" content="0">    
	<meta http-equiv="keywords" content="keyword1,keyword2,keyword3">
	<meta http-equiv="description" content="This is my page">
  </head>
  
  <body>
  </body>
</html>

checkAutoLoginAction.action(取出Cookie)

// ------自动登录----------------------------------------------------------------------------------------------------------------------------
	@RequestMapping("checkAutoLoginAction.action")
	public String checkAutoLoginAction(HttpServletRequest req,
			HttpServletResponse resp, HttpSession session) throws Exception {
		Cookie[] cookies = req.getCookies();
		System.out.println("cookie是否为空：" + cookies);
		String nickname = "";
		String password = "";
		if (cookies != null) {//判断Cookie是否为空
			for (Cookie c : cookies) {
				if ("nickname".equals(c.getName())) {
					nickname = URLDecoder.decode(c.getValue(), "utf-8");
				}
				if ("password".equals(c.getName())) {
					password = URLDecoder.decode(c.getValue(), "utf-8");
				}
			}
			Memberinfo m = memberservice.login(nickname, password);
			session.setAttribute("nickName", m.getNickName());
			System.out.println("m是否为空：" + m);
			if (m != null) {//如果根据Cookie中的用户名和密码查询出的用户信息存在且正确，再进行一系列的更新跳转工作
				Calendar c = Calendar.getInstance();
				c.setTime(m.getLatestDate());
				String date = new SimpleDateFormat("EEEE").format(c.getTime());
				return "activity";
			}
		}
		req.setAttribute("msg", "账户密码失效，请重新登录");
		return "forward:/login1.action";
	}

三、操作

第一步，输入http://localhost:8888/ssh/login1.action，跳转到登录页面

第二步，输入nickName和password，勾选“自动登录”，点击“登录”，跳转到Activity.jsp主页面

第三步，若成功登录到主页面，则注销

第四步，输入http://localhost:8888/ssh/index，即可使用checkAutoLoginAction.action，直接跳转到主页面，省略了第二步