Session是服务器端技术,服务器在运行时可以为每一个用户的浏览器创建一个其独享的HttpSession对象。由于Session为浏览器用户所独享,所以用户在访问服务器的web资源时,可以把各自的数据放在各自的Session对象中,当用户再次访问服务器中的其他web资源时,其他web资源再从Session对象中取出用户的数据。
Session和Cookie的最大区别是:
(1)Session是将数据保存在服务器上;而Cookie是将数据以文本的形式保存在客户端浏览器上,由浏览器进行管理的维护。
(2)Session对象可以存放多个name和多个Object;而一个cookie只能放一个name和一个value
HttpSession对象在用户第一次访问网站的时候自动被创建,可以通过调用HttpServletRequest的getSession()方法获取该对象。
HttpSession getSession() // 返回当前Session对象,如果没有则创建一个并返回。
HttpSession getSession(boolean create) // 返回当前Session对象,如果没有,当create是true时创建一个并返回,当create时false时返回null
注意,所有保存在HttpSession对象中的数据不会被发送到客户端,不同于其他会话管理技术,Servlet容器为每个HttpSession生成唯一的标识,并将该标识发送给浏览器,或创建一个名为JSESSIONID的cookie,或在URL后附加一个名为jsessionid的参数。在后续的请求中,浏览器回京标识交给服务器,这样服务器就可以识别请求是由哪个用户发起的。Servlet容器会自动选择一种方式来传递标识,无需开发人员介入。
通过HttpSession的setAttribute(name, value)方法将数据放入Session对象中。可存放多对数据。调用该方法时如果name已经使用过,则新值会覆盖旧值。注意不同于URL重写、表单隐藏域、Cookie技术,放入Session对象中的数据是存储在服务器内存中,因此尽量不要存放太多数据,否则会影响性能。存放在Session对象中的值可以是任意实现了java.io.Serializable接口的java对象,因为Servlet容器必要时会将这些对象放入文件或数据库中。如果对象未实现java.io.Serializable接口,则Servlet容器在序列化的时候会失败并报错。
void setAttribute(java.lang.String name, java.lang.Object value)
通过调用HttpSession的getAttribute(name)方法可以获取之前放入的数据。
java.lang.Object getAttribute(java.lang.String name) // 返回该Session对象中特定名称的数据
java.util.Enumeration<java.lang.String> getAttributeNames() // 返回放入该session对象中的所有数据的名字
可以通过HttpSession的getId()来获取该Session对象的标识
java.lang.String getId() // 获取该Session对象的标识
Seesion的使用原理
1)浏览器第一次访问服务器,服务器会自动创建Session对象,给Session对象分配一个唯一的ID,JSESSIONID
2)将JSESSIONID作为cookie的值发送给浏览器保存
3)浏览器第二次访问服务器时,会将保存有JSESSIONID的cookie随HTTP header发送到服务器
4)服务器从cookie中得到JSESSIONID,然后在服务器中搜索该JSESSIONID的Session对象。找到则直接返回该对象;找不到则创建新的Session对象。
Session对象的销毁
1)调用void invalidate()方法 // 强制该Session对象过期,并清空存储的数据
2)session对象过期(超时)Tomcat 中 session 的默认有效时间是 30 min
3)服务器重启 修改修改 session 持久化配置
修改session默认有效时间
Tomcat中session的默认有效时间是30min。可以在Tomcat安装目录下的 conf/web.xml 文件中修改。
session持久化
session持久化是指当Tomcat重启后,session中仍然含有数据。
可以在 Tomcat 的安装目录下的 conf/context.xml 进行修改
<!-- Uncomment this to disable session persistence across Tomcat restarts -->
<!--
<Manager pathname="" />
-->
改为
<!-- Uncomment this to disable session persistence across Tomcat restarts -->
<Manager pathname="" />
实例
package app02a.httpsession; public class Product {
private int id;
private String name;
private String description;
private float price; public Product(int id, String name, String description, float price) {
this.id = id;
this.name = name;
this.description = description;
this.price = price;
} public int getId() {
return id;
}
public void setId(int id) {
this.id = id;
}
public String getName() {
return name;
}
public void setName(String name) {
this.name = name;
}
public String getDescription() {
return description;
}
public void setDescription(String description) {
this.description = description;
}
public float getPrice() {
return price;
}
public void setPrice(float price) {
this.price = price;
}
}
package app02a.httpsession; public class ShoppingItem {
private Product product;
private int quantity; public ShoppingItem(Product product, int quantity) {
this.product = product;
this.quantity = quantity;
} public Product getProduct() {
return this.product;
}
public void setProduct(Product product) {
this.product = product;
}
public int getQuantity() {
return this.quantity;
}
public void setQuantiry(int quantity) {
this.quantity = quantity;
}
}
package app02a.httpsession; import java.io.IOException;
import java.io.PrintWriter;
import java.text.NumberFormat;
import java.util.ArrayList;
import java.util.List;
import java.util.Locale; import javax.servlet.ServletException;
import javax.servlet.annotation.WebServlet;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession; @WebServlet(name = "ShoppingCartServlet", urlPatterns = { "/products", "/viewProductDetails", "/addToCart", "/viewCart" })
public class ShoppingCartServlet extends HttpServlet {
private static final long serialVersionUID = 1L;
private static final String CART_ATTRIBUTE = "cart"; private List<Product> products = new ArrayList<Product>();
private NumberFormat currencyFormat = NumberFormat.getCurrencyInstance(Locale.US); public ShoppingCartServlet() {
super();
} @Override
public void init() throws ServletException {
products.add(new Product(1, "Bravo 32' HDTV", "Low-cost HDTV from renowned TV manufacturer", 159.95F));
products.add(new Product(2, "Bravo BluRay Player", "High quality stylish BluRay palyer", 99.95F));
products.add(new Product(3, "Bravo Stereo system", "5 speaker hifi system with ipod player", 129.95F));
products.add(new Product(4, "Bravo ipod player", "An iPod plug-in that can play multiple formats", 39.95F));
} private void sendProductList(HttpServletResponse response) throws IOException {
response.setContentType("text/html");
PrintWriter writer = response.getWriter();
writer.println("<html>");
writer.println("<head>");
writer.println("<title>Products</title>");
writer.println("<body>");
writer.println("<h2>Products</h2>");
writer.println("<ul>");
for (Product product : products) {
writer.println("<li>" + product.getName() + " (" + currencyFormat.format(product.getPrice()) + ") (" + "<a href='viewProductDetails?id="+ product.getId() + "'>Details)</a></li>");
}
writer.println("</ul>");
writer.println("<a href='viewCart'>View Cart</a>"); // 一个超链接
writer.println("</body>");
writer.println("</html>");
} private Product getProduct(int productId) {
for (Product product : products) {
if (product.getId() == productId) {
return product;
}
}
return null;
} private void sendProductDetails(HttpServletRequest request, HttpServletResponse response) throws IOException {
response.setContentType("text/html");
PrintWriter writer = response.getWriter();
int productId = 0;
try {
productId = Integer.parseInt(request.getParameter("id")); // 获取uri后端的请求字符串
} catch (NumberFormatException e) {
e.printStackTrace();
}
Product product = getProduct(productId);
if (product != null) {
writer.println("<html>");
writer.println("<head>");
writer.println("<title>Product Details</title>");
writer.println("<body>");
writer.println("<h2>Product Details</h2>");
writer.println("<form method='post' action='addToCart'>"); // 提交方式为post, 目标地址为addToCart
writer.println("<input type='hidden' name='id' value='" + productId + "' />"); // 表单隐藏域
writer.println("<table>");
writer.println("<tr>");
writer.println("<td>Name:</td>");
writer.println("<td>" + product.getName() + "</td>");
writer.println("</tr>");
writer.println("<tr>");
writer.println("<td>Description:</td>");
writer.println("<td>" + product.getDescription() + "</td>");
writer.println("</tr>");
writer.println("<tr>");
writer.println("<td><input name='quantity' /></td>"); // 默认type="text"
writer.println("<td><input type='submit' value='Buy'></td>"); // 提交按钮
writer.println("</tr>");
writer.println("<tr>");
writer.println("<td colspan='2'><a href='products'>Product List</a></td>"); // 返回到产品列表的超链接
writer.println("</tr>");
writer.println("</table>");
writer.println("</body>");
writer.println("</html>");
} else {
writer.println("No product found");
}
} private void showCart(HttpServletRequest request, HttpServletResponse response) throws IOException {
response.setContentType("text/html");
PrintWriter writer = response.getWriter();
writer.println("<html>");
writer.println("<head>");
writer.println("<title>Shopping Cart</title>");
writer.println("</head>");
writer.println("<body>");
writer.println("<a href='products'>Product List</a>"); // 返回到产品列表的超链接
HttpSession session = request.getSession(); // 获得当前的HttpSession对象
List<ShoppingItem> cart = (List<ShoppingItem>)session.getAttribute(CART_ATTRIBUTE);
if (cart != null) {
writer.println("<table>");
writer.println("<tr>");
writer.println("<td style='width:150px'>Product</td>"); // 元素内嵌样式
writer.println("<td style='width:150px'>Quantity</td>");
writer.println("<td style='width:150px'>Price</td>");
writer.println("<td style='width:150px'>Amount</td>");
writer.println("<tr>");
double total = 0.0;
for (ShoppingItem shoppingItem : cart) {
Product product = shoppingItem.getProduct();
int quantity = shoppingItem.getQuantity();
if (quantity != 0) {
float price = product.getPrice();
double subtotal = price * quantity;
writer.println("<tr>");
writer.println("<td>" + product.getName() + "</td>");
writer.println("<td>" + quantity + "</td>");
writer.println("<td>" + currencyFormat.format(price) + "</td>");
writer.println("<td>" + currencyFormat.format(subtotal) + "</td>");
total += subtotal;
writer.println("</tr>");
}
}
writer.println("<tr>");
writer.println("<td colspan='3' style='text-align:right'>Total: </td>");
writer.println("<td>" + currencyFormat.format(total) + "</td>");
writer.println("</tr>");
writer.println("</table>");
}
writer.println("</body>");
writer.println("</html>");
} @Override
protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
String uri = request.getRequestURI();
if (uri.endsWith("/products")) { // 根据不同的uri调用不同的方法处理
sendProductList(response);
}else if (uri.endsWith("/viewProductDetails")) {
sendProductDetails(request, response);
}else if (uri.endsWith("viewCart")) {
showCart(request, response);
}
} protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
int productId = 0;
int quantity = 0;
try {
productId = Integer.parseInt(request.getParameter("id")); // 即可以或的token的值
quantity = Integer.parseInt(request.getParameter("quantity")); // 也可以获的表单隐藏域的值
} catch (NumberFormatException e) {
e.printStackTrace();
}
Product product = getProduct(productId);
if (product != null) {
ShoppingItem shoppingItem = new ShoppingItem(product, quantity);
HttpSession session = request.getSession(); // HttpSession对象被自动创建,该方法可以获得httpSession对象
List<ShoppingItem> cart = (List<ShoppingItem>) session.getAttribute(CART_ATTRIBUTE);
if (cart == null) {
cart = new ArrayList<ShoppingItem>();
session.setAttribute(CART_ATTRIBUTE, cart); // 向HttpSession对象绑定数据
}
cart.add(shoppingItem);
}
sendProductList(response);
}
}