快捷導(dǎo)航

java 獲取HttpRequest Header的幾種方法(必看篇)

更新時(shí)間：2016年09月27日 18:18:46 投稿：jingxian

下面小編就為大家?guī)?lái)一篇java 獲取HttpRequest Header的幾種方法(必看篇)。小編覺(jué)得挺不錯(cuò)的，現(xiàn)在就分享給大家，也給大家做個(gè)參考。一起跟隨小編過(guò)來(lái)看看吧

在開(kāi)發(fā)應(yīng)用程序的過(guò)程中，如果有多個(gè)應(yīng)用，通常會(huì)通過(guò)一個(gè)portal 門(mén)戶來(lái)集成，這個(gè)portal 是所有應(yīng)用程序的入口，用戶一旦在portal 登錄之后，進(jìn)入另外一個(gè)系統(tǒng)，就需要類(lèi)似的單點(diǎn)登錄(SSO). 進(jìn)入各個(gè)子系統(tǒng)的時(shí)候，就不需要再次登錄, 當(dāng)然類(lèi)似的功能，你可以通過(guò)專(zhuān)業(yè)的單點(diǎn)登錄軟件來(lái)實(shí)現(xiàn)，也可以自己寫(xiě)數(shù)據(jù)庫(kù)token 等方式來(lái)實(shí)現(xiàn)。其實(shí)還有一個(gè)比較簡(jiǎn)單的方法，就是通過(guò) portal 封裝已經(jīng)登錄過(guò)的用戶的消息，寫(xiě)到http header 之中，然后把請(qǐng)求forward 到各個(gè)子系統(tǒng)中去，而各子系統(tǒng)從 http header 中獲取用戶名，作為是否登錄過(guò)的校驗(yàn)或者合法的校驗(yàn)。

總結(jié)了幾種處理http Header 的方法：

利用 HttpServletRequest

import javax.servlet.http.HttpServletRequest;
 //...
 private HttpServletRequest request;
 //get request headers
 private Map<String, String> getHeadersInfo() {
  Map<String, String> map = new HashMap<String, String>();
  Enumeration headerNames = request.getHeaderNames();
  while (headerNames.hasMoreElements()) {
    String key = (String) headerNames.nextElement();
    String value = request.getHeader(key);
    map.put(key, value);
  }
  return map;
 }

一個(gè)典型的例子如下：

"headers" : {
  "Host" : "yihaomen.com",
  "Accept-Encoding" : "gzip,deflate",
  "X-Forwarded-For" : "66.249.x.x",
  "X-Forwarded-Proto" : "http",
  "User-Agent" : "Mozilla/5.0 (compatible; Googlebot/2.1; +
http://www.google.com/bot.html
)",
  "X-Request-Start" : "1389158003923",
  "Accept" : "*/*",
  "Connection" : "close",
  "X-Forwarded-Port" : "80",
  "From" : "googlebot(at)googlebot.com"
}

獲取 user-agent

import javax.servlet.http.HttpServletRequest;
 //...
 private HttpServletRequest request;
 private String getUserAgent() {
  return request.getHeader("user-agent");
 }

一個(gè)典型的例子如下：

Mozilla/5.0 (compatible; Googlebot/2.1; +
http://www.google.com/bot.html
)

利用 spring mvc 獲取 HttpRequest Header 的例子

import java.util.Enumeration;
import java.util.HashMap;
import java.util.Map;
import javax.servlet.http.HttpServletRequest;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Controller;
import org.springframework.web.bind.annotation.PathVariable;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestMethod;
import org.springframework.web.servlet.ModelAndView;
@Controller
@RequestMapping("/site")
public class SiteController {
  @Autowired
  private HttpServletRequest request;
  @RequestMapping(value = "/{input:.+}", method = RequestMethod.GET)
  public ModelAndView getDomain(@PathVariable("input") String input) {
    ModelAndView modelandView = new ModelAndView("result");
    modelandView.addObject("user-agent", getUserAgent());
    modelandView.addObject("headers", getHeadersInfo());
    return modelandView;
  }
  //get user agent
  private String getUserAgent() {
    return request.getHeader("user-agent");
  }
  //get request headers
  private Map<String, String> getHeadersInfo() {
    Map<String, String> map = new HashMap<String, String>();
    Enumeration headerNames = request.getHeaderNames();
    while (headerNames.hasMoreElements()) {
      String key = (String) headerNames.nextElement();
      String value = request.getHeader(key);
      map.put(key, value);
    }
    return map;
  }
}

也許有人會(huì)說(shuō)，Http Header 是可以模擬的，那么自己可以構(gòu)造一個(gè)用來(lái)欺騙這些系統(tǒng)，是的，的確是這樣，所以在用Http Header 來(lái)傳值得時(shí)候，一定要記得，所有的請(qǐng)求都必須經(jīng)過(guò) portal 來(lái)處理，然后 forward 到各子系統(tǒng)，就不會(huì)出現(xiàn)這個(gè)問(wèn)題了。因?yàn)閜ortal 首先攔截用戶發(fā)起的所有的請(qǐng)求，如果是構(gòu)造的用戶，在portal 的sessiion 也是沒(méi)有記錄的，仍然會(huì)跳轉(zhuǎn)到登錄頁(yè)面，如果在protal 的 session 中記錄，而且 Http Header 中也有記錄，那么在子系統(tǒng)就是合法的用戶，然后自己可以根據(jù)一些要求處理業(yè)務(wù)邏輯了

JSP/Java獲取HTTP header信息(request)例子

<%
//header.jsp
out.println("Protocol: " + request.getProtocol() + "<br>");
out.println("Scheme: " + request.getScheme() + "<br>");
out.println("Server Name: " + request.getServerName() + "<br>" );
out.println("Server Port: " + request.getServerPort() + "<br>");
out.println("Protocol: " + request.getProtocol() + "<br>");
out.println("Server Info: " + getServletConfig().getServletContext().getServerInfo() + "<br>");
out.println("Remote Addr: " + request.getRemoteAddr() + "<br>");
out.println("Remote Host: " + request.getRemoteHost() + "<br>");
out.println("Character Encoding: " + request.getCharacterEncoding() + "<br>");
out.println("Content Length: " + request.getContentLength() + "<br>");
out.println("Content Type: "+ request.getContentType() + "<br>");
out.println("Auth Type: " + request.getAuthType() + "<br>");
out.println("HTTP Method: " + request.getMethod() + "<br>");
out.println("Path Info: " + request.getPathInfo() + "<br>");
out.println("Path Trans: " + request.getPathTranslated() + "<br>");
out.println("Query String: " + request.getQueryString() + "<br>");
out.println("Remote User: " + request.getRemoteUser() + "<br>");
out.println("Session Id: " + request.getRequestedSessionId() + "<br>");
out.println("Request URL: " + request.getRequestURL() + "<br>");
out.println("Request URI: " + request.getRequestURI() + "<br>");
out.println("Servlet Path: " + request.getServletPath() + "<br>");
out.println("Created : " + session.getCreationTime() + "<br>");
out.println("LastAccessed : " + session.getLastAccessedTime() + "<br>");

out.println("Accept: " + request.getHeader("Accept") + "<br>");
out.println("Host: " + request.getHeader("Host") + "<br>");
out.println("Referer : " + request.getHeader("Referer") + "<br>");
out.println("Accept-Language : " + request.getHeader("Accept-Language") + "<br>");
out.println("Accept-Encoding : " + request.getHeader("Accept-Encoding") + "<br>");
out.println("User-Agent : " + request.getHeader("User-Agent") + "<br>");
out.println("Connection : " + request.getHeader("Connection") + "<br>");
out.println("Cookie : " + request.getHeader("Cookie") + "<br>");
%>

關(guān)于request.getHeader("Referer")的說(shuō)明

request.getHeader("Referer")獲取來(lái)訪者地址。只有通過(guò)鏈接訪問(wèn)當(dāng)前頁(yè)的時(shí)候，才能獲取上一頁(yè)的地址；否則request.getHeader("Referer")的值為Null，通過(guò)window.open打開(kāi)當(dāng)前頁(yè)或者直接輸入地址，也為Null。

以上就是小編為大家?guī)?lái)的java 獲取HttpRequest Header的幾種方法(必看篇)的全部?jī)?nèi)容了，希望對(duì)大家有所幫助，多多支持腳本之家~

您可能感興趣的文章: