/**
* Creates a Discussion Post
*
* <p>- Requires a cookie for the session user - Requires a comment and threadId request parameter
* for the POST
*
* @param req The HTTP Request
* @param res The HTTP Response
*/
public void createPostAction(HttpServletRequest req, HttpServletResponse res) {
// Ensure there is a cookie for the session user
if (AccountController.redirectIfNoCookie(req, res)) return;
Map<String, Object> viewData = new HashMap<>();
if (req.getMethod() == HttpMethod.Post) {
DiscussionManager dm = new DiscussionManager();
HttpSession session = req.getSession();
Session userSession = (Session) session.getAttribute("userSession");
// Create the discussion post
DiscussionPost post = new DiscussionPost();
post.setUserId(userSession.getUserId());
post.setMessage(req.getParameter("comment"));
post.setThreadId(Integer.parseInt(req.getParameter("threadId")));
dm.createPost(post);
redirectToLocal(req, res, "/group/discussion/?threadId=" + req.getParameter("threadId"));
} else {
httpNotFound(req, res);
}
}
public static void showSession(HttpServletRequest req, PrintStream out) {
// res.setContentType("text/html");
// Get the current session object, create one if necessary
HttpSession session = req.getSession();
out.println("Session id: " + session.getId());
out.println(" session.isNew(): " + session.isNew());
out.println(" session.getMaxInactiveInterval(): " + session.getMaxInactiveInterval() + " secs");
out.println(
" session.getCreationTime(): "
+ session.getCreationTime()
+ " ("
+ new Date(session.getCreationTime())
+ ")");
out.println(
" session.getLastAccessedTime(): "
+ session.getLastAccessedTime()
+ " ("
+ new Date(session.getLastAccessedTime())
+ ")");
out.println(" req.isRequestedSessionIdFromCookie: " + req.isRequestedSessionIdFromCookie());
out.println(" req.isRequestedSessionIdFromURL: " + req.isRequestedSessionIdFromURL());
out.println(" req.isRequestedSessionIdValid: " + req.isRequestedSessionIdValid());
out.println("Saved session Attributes:");
Enumeration atts = session.getAttributeNames();
while (atts.hasMoreElements()) {
String name = (String) atts.nextElement();
out.println(" " + name + ": " + session.getAttribute(name) + "<BR>");
}
}
/**
* Deletes a meeting from the database
*
* <p>- Requires a cookie for the session user - Requires a meetingId request parameter for the
* HTTP GET
*
* @param req The HTTP Request
* @param res The HTTP Response
*/
public void deletemeetingAction(HttpServletRequest req, HttpServletResponse res) {
// Ensure there is a cookie for the session user
if (AccountController.redirectIfNoCookie(req, res)) return;
if (req.getMethod() == HttpMethod.Get) {
// Get the meeting
int meetingId = Integer.parseInt(req.getParameter("meetingId"));
MeetingManager meetingMan = new MeetingManager();
Meeting meeting = meetingMan.get(meetingId);
meetingMan.deleteMeeting(meetingId);
// Update the User Session to remove meeting
HttpSession session = req.getSession();
Session userSession = (Session) session.getAttribute("userSession");
List<Meeting> adminMeetings = userSession.getUser().getMeetings();
for (int i = 0; i < adminMeetings.size(); i++) {
Meeting m = adminMeetings.get(i);
if (m.getId() == meeting.getId()) {
adminMeetings.remove(i);
break;
}
}
redirectToLocal(req, res, "/home/dashboard");
return;
} else if (req.getMethod() == HttpMethod.Post) {
httpNotFound(req, res);
}
}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) {
try {
String target = ((HttpServletRequest) request).getRequestURI();
HttpSession session = ((HttpServletRequest) request).getSession();
if (session == null) {
/* まだ認証されていない */
session = ((HttpServletRequest) request).getSession(true);
session.setAttribute("target", target);
((HttpServletResponse) response).sendRedirect("/refrigerator/LoginPage");
} else {
Object loginCheck = session.getAttribute("login");
if (loginCheck == null) {
/* まだ認証されていない */
session.setAttribute("target", target);
((HttpServletResponse) response).sendRedirect("/refrigerator/LoginPage");
}
}
chain.doFilter(request, response);
} catch (ServletException se) {
} catch (IOException e) {
}
}
private void processReturn(HttpServletRequest req, HttpServletResponse resp)
throws ServletException, IOException {
Account principal = this.verifyResponse(req);
// System.out.println(principal);
String returnURL = req.getParameter("exist_return");
if (principal == null) {
// this.getServletContext().getRequestDispatcher("/openid/login.xql").forward(req, resp);
resp.sendRedirect(returnURL);
} else {
HttpSession session = req.getSession(true);
// ((XQueryURLRewrite.RequestWrapper)req).setUserPrincipal(principal);
Subject subject = new Subject();
// TODO: hardcoded to jetty - rewrite
// *******************************************************
DefaultIdentityService _identityService = new DefaultIdentityService();
UserIdentity user = _identityService.newUserIdentity(subject, principal, new String[0]);
Authentication cached = new HttpSessionAuthentication(session, user);
session.setAttribute(HttpSessionAuthentication.__J_AUTHENTICATED, cached);
// *******************************************************
resp.sendRedirect(returnURL);
}
}
public void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
response.setContentType("text/html");
HttpSession session = request.getSession();
PrintWriter out = response.getWriter();
StringBuilder sb = new StringBuilder();
HashMap<String, String> userInfo = (HashMap<String, String>) session.getAttribute("userInfo");
String ticket = request.getParameter("ticket");
if (userInfo == null) {
response.sendRedirect(response.encodeRedirectUrl(request.getContextPath() + "/SignIn"));
} else {
if (userInfo.get("role").equals("technician")) {
sb.append(LayoutProvider.getInstance().getLoggedInHeader(userInfo.get("name")));
sb.append("<div id=\"body\">");
sb.append(
"<h3>Schedule Confirmation</h3><p>You have scheduled <strong>ticket # "
+ ticket
+ "</strong></p>");
if (ticket != null) {
List<String> tickets;
try {
if (userInfo.get("tickets").equals("")) {
tickets = null;
} else {
tickets = Arrays.asList(userInfo.get("tickets").split("\\,"));
}
} catch (Exception ex) {
System.out.println("PayBill: error splitting tickets");
tickets = null;
}
String remaining = "";
if (tickets != null && tickets.size() > 0) {
for (String t : tickets) {
if (!t.equals(ticket)) {
remaining += t + ",";
}
}
if (remaining.length() > 0) remaining = remaining.substring(0, remaining.length() - 1);
} else {
remaining = "";
}
userInfo.put("tickets", remaining);
}
sb.append("</div>");
} else {
sb.append("<h2>Error</h2>");
sb.append("<p>You do not have access to this page.</p>");
sb.append("</div>");
}
}
out.println(sb.toString());
out.close();
}
public void doGet(HttpServletRequest req, HttpServletResponse res)
throws ServletException, IOException {
res.setContentType("text/html");
PrintWriter out = res.getWriter();
Enumeration values = req.getParameterNames();
String name = "";
String value = "";
String id = "";
while (values.hasMoreElements()) {
name = ((String) values.nextElement()).trim();
value = req.getParameter(name).trim();
if (name.equals("id")) id = value;
}
if (url.equals("")) {
url = getServletContext().getInitParameter("url");
cas_url = getServletContext().getInitParameter("cas_url");
}
HttpSession session = null;
session = req.getSession(false);
if (session != null) {
session.invalidate();
}
res.sendRedirect(cas_url);
return;
}
public void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
try {
response.setContentType("text/html");
PrintWriter out = response.getWriter();
/*String n=request.getParameter("username");
out.print("Welcome "+n);*/
String name = request.getParameter("name");
String dob = request.getParameter("dob");
String address = request.getParameter("address");
String email = request.getParameter("email");
HttpSession session = request.getSession(true);
String userid = (String) session.getAttribute("theName");
int AccNo = 0;
String AccMsg = "";
DbCommunication db_comm = new DbCommunication();
AccNo = db_comm.accountCreation(name, dob, address, email, userid);
// db_comm.accountCreation(name,email);
AccMsg = "Account created successfully. Account number is:" + AccNo;
// out.println(AccMsg);
String redirectURL = "accountCreationPage.jsp";
response.sendRedirect(redirectURL);
session.setAttribute("AccCreationalMsgStatus", "set");
session.setAttribute("AccCreationalMsg", AccMsg);
} catch (Exception e) {
System.out.println(e);
}
}
/**
* Parse the case id from the url and then delete it. Finally redirects the response and the
* request to admCase.jsp
*
* @see DatabaseMethods#caseDelete(int)
* @see HttpServlet#doGet(HttpServletRequest request, HttpServletResponse response)
*/
protected void doGet(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
// TODO Auto-generated method stub
request.setCharacterEncoding("UTF-8");
response.setCharacterEncoding("UTF-8");
DatabaseMethods dbPoint = new DatabaseMethods();
HttpSession userSession = request.getSession();
if (Integer.parseInt(userSession.getAttribute("isadmin").toString()) == 1) {
int caseId = Integer.parseInt(request.getParameter("caseId"));
int success = dbPoint.caseDelete(caseId);
if (success != 0) {
userSession.setAttribute("caseDelete", "1");
} else {
userSession.setAttribute("caseDelete", "0");
}
}
RequestDispatcher rd = getServletContext().getRequestDispatcher("/admCase.jsp");
if (rd != null) {
rd.forward(request, response);
}
}
public synchronized void service(HttpServletRequest request, HttpServletResponse response)
throws IOException, ServletException {
HttpSession dbSession = request.getSession();
JspFactory _jspxFactory = JspFactory.getDefaultFactory();
PageContext pageContext =
_jspxFactory.getPageContext(this, request, response, "", true, 8192, true);
ServletContext dbApplication = dbSession.getServletContext();
ServletContext application;
HttpSession session = request.getSession();
nseer_db_backup1 finance_db = new nseer_db_backup1(dbApplication);
try {
if (finance_db.conn((String) dbSession.getAttribute("unit_db_name"))) {
String finance_cheque_id = request.getParameter("finance_cheque_id");
String sql = "delete from finance_bill where id='" + finance_cheque_id + "'";
finance_db.executeUpdate(sql);
finance_db.commit();
finance_db.close();
} else {
response.sendRedirect("error_conn.htm");
}
} catch (Exception ex) {
ex.printStackTrace();
}
}
@Override
protected void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
// POST method only used for tracked login operation
HttpSession session = request.getSession();
response.setContentType("text/plain");
PrintWriter out = response.getWriter();
// Get the username and password from request
String username = request.getParameter("id");
String password = request.getParameter("pwd");
Long id = 0L;
try {
id = Long.parseLong(username);
} catch (Exception ex) {
}
if (username != null && password != null) {
// Login into tracked system
CTracked ctracked = db.loginTrackedFromMobile(id, password).getResult();
if (ctracked != null) {
// Login successful
out.print("OK," + ctracked.getUsername());
session.setAttribute("device_id", ctracked.getUsername());
log.info(ctracked + " : logined!");
}
}
}
public static void afterRoot(
FacesContext context, HttpServletRequest req, HttpServletResponse res) {
HttpSession session = ((HttpServletRequest) req).getSession(false);
if (session != null)
session.setAttribute(ViewHandler.CHARACTER_ENCODING_KEY, res.getCharacterEncoding());
}
public void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
PrintWriter writer = response.getWriter();
HttpSession session = request.getSession();
String username = request.getParameter("username");
String password = request.getParameter("password");
String type = request.getParameter("type");
System.out.println(username + password + type);
session.setAttribute("user", username);
try {
writer.println("<html>");
writer.println("<body bgcolor=green>");
writer.println("<center>");
ps.setString(1, username);
ps.setString(2, password);
ps.setString(3, type);
ResultSet rs = ps.executeQuery();
if (rs.next()) {
writer.println("<h1>LOGIN SUCCESSFUL</h1><br><br>");
writer.println("<a href=account.html>click here to see your account</a>");
} else {
writer.println("<h1>LOGIN FAILED</h1><br><br>");
writer.println("<a href=login.html>click here to login again</a>");
}
writer.println("</center>");
writer.println("</body>");
writer.println("</html>");
} catch (Exception e) {
e.printStackTrace();
}
}
/**
* Validates the login. Writes the isValid flag into the session along with the current user.
*
* @return true if OK, false if there's a problem
*/
private boolean validateLogin(
HttpSession session, HttpServletRequest req, HttpServletResponse res) throws Exception {
// Creates a user database access bean.
UserManager userManager = new UserManager();
// (no setSession() here, since user may not exist yet)
// Validates the login
String username = req.getParameter("Username");
String password = req.getParameter("Password");
boolean isValid = userManager.isValidUser(username, password);
boolean isAdmin = userManager.isAdmin(username);
// To allow bootstrapping the system, if there are no users
// yet, set this session valid, and grant admin privileges.
if (userManager.getRecords().isEmpty()) {
isValid = true;
isAdmin = true;
}
if (isValid) {
// Writes User object and validity flag to the session
session.setAttribute("user", new User(username, password, isAdmin));
session.setAttribute("isValid", new Boolean(isValid));
} else {
Util.putMessagePage(res, "Invalid user or password");
return false;
}
return isValid;
}
public void service(HttpServletRequest req, HttpServletResponse res)
throws IOException, ServletException {
HttpSession sess = req.getSession(false);
sess.invalidate();
System.out.println("Session Closed");
res.sendRedirect("index.html");
}
public void doPost(HttpServletRequest req, HttpServletResponse resp)
throws ServletException, IOException {
resp.setContentType("text/html");
PrintWriter out = resp.getWriter();
String support = "support"; // valid username
HttpSession session = null;
session = req.getSession(false); // Get user's session object (no new one)
if (session == null) {
invalidUser(out); // Intruder - reject
return;
}
String userName = (String) session.getAttribute("user"); // get username
if (!userName.equals(support)) {
invalidUser(out); // Intruder - reject
return;
}
String action = "";
if (req.getParameter("todo") != null) action = req.getParameter("todo");
if (action.equals("update")) {
doUpdate(out);
return;
}
out.println("<p>Nothing to do.</p>todo=" + action);
}
public void doPost(HttpServletRequest request, HttpServletResponse response)
throws IOException, ServletException {
String amount = request.getParameter("amount");
String amount2 = request.getParameter("amount2");
String amount3 = request.getParameter("amount3");
Integer posotita = Integer.parseInt(amount);
Integer posotita2 = Integer.parseInt(amount2);
Integer posotita3 = Integer.parseInt(amount3);
HttpSession session = request.getSession();
if (session.isNew()) {
request.setAttribute("sessionVal", "this is a new session");
} else {
request.setAttribute("sessionVal", "Welcome Back!");
}
double total = ((posotita * 18.50) + (posotita2 * 6.95) + (posotita3 * 1.29));
session.setAttribute("totalVal", total);
request.setAttribute("currency", total);
request.setAttribute("from", amount);
request.setAttribute("from2", amount2);
request.setAttribute("from3", amount3);
RequestDispatcher view = request.getRequestDispatcher("index.jsp");
view.forward(request, response);
}
public void sessionDestroyed(HttpSessionEvent evt) {
// Note: Session Fixation Protection (such as Spring Security)
// might invalidate HTTP session and restore with a new one.
// Thus, we use an attribute to denote this case and avoid the callback
final HttpSession hsess = evt.getSession();
if (hsess.getAttribute(Attributes.RENEW_NATIVE_SESSION) == null)
WebManager.sessionDestroyed(hsess);
}
public void doGet(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
response.setContentType("text/html");
PrintWriter pw = response.getWriter();
HttpSession session = request.getSession();
String str = (String) session.getAttribute("foo");
pw.println("The name is " + str);
}
/** Get the object associated with the ID in the session */
protected Object getSessionIdObject(String id) {
HttpSession session = getSession();
synchronized (session) {
BidiMap map = (BidiMap) session.getAttribute(SESSION_KEY_OBJ_MAP);
if (map == null) {
return null;
}
return map.getKey(id);
}
}
public Integer setSession(HttpSession ses) {
Integer count = (Integer) ses.getAttribute("Counter");
if (count != null) {
ses.setAttribute("Counter", ++count);
return count + 1;
} else {
ses.setAttribute("Counter", 1);
return 1;
}
}
/** Get an unused ID string for storing an object in the session */
protected String getNewSessionObjectId() {
HttpSession session = getSession();
synchronized (session) {
Integer id = (Integer) getSession().getAttribute(SESSION_KEY_OBJECT_ID);
if (id == null) {
id = new Integer(1);
}
session.setAttribute(SESSION_KEY_OBJECT_ID, new Integer(id.intValue() + 1));
return id.toString();
}
}
// required doFilter method
// redirects users trying to access restricted part of site when not logged in
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
throws java.io.IOException, javax.servlet.ServletException {
HttpServletRequest req = (HttpServletRequest) request;
HttpServletResponse res = (HttpServletResponse) response;
HttpSession session = req.getSession();
String loggedIn = (String) session.getAttribute("loggedIn");
if (loggedIn == null) res.sendRedirect("../pleaselogin.html");
else if (loggedIn == "yes") chain.doFilter(request, response);
}
/**
* this is the main method of the servlet that will service all get requests.
*
* @param request HttpServletRequest
* @param responce HttpServletResponce
*/
public void doGet(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
HttpSession session = null;
try {
try {
session = request.getSession(true);
} catch (Exception e) {
Log.error(e, "PingSession2.doGet(...): error getting session");
// rethrow the exception for handling in one place.
throw e;
}
// Get the session data value
Integer ival = (Integer) session.getAttribute("sessiontest.counter");
// if there is not a counter then create one.
if (ival == null) {
ival = new Integer(1);
} else {
ival = new Integer(ival.intValue() + 1);
}
session.setAttribute("sessiontest.counter", ival);
// if the session count is equal to five invalidate the session
if (ival.intValue() == 5) {
session.invalidate();
}
try {
// Output the page
response.setContentType("text/html");
response.setHeader("SessionTrackingTest-counter", ival.toString());
PrintWriter out = response.getWriter();
out.println(
"<html><head><title>Session Tracking Test 2</title></head><body><HR><BR><FONT size=\"+2\" color=\"#000066\">HTTP Session Test 2: Session create/invalidate <BR></FONT><FONT size=\"+1\" color=\"#000066\">Init time: "
+ initTime
+ "</FONT><BR><BR>");
hitCount++;
out.println(
"<B>Hit Count: " + hitCount + "<BR>Session hits: " + ival + "</B></body></html>");
} catch (Exception e) {
Log.error(e, "PingSession2.doGet(...): error getting session information");
// rethrow the exception for handling in one place.
throw e;
}
} catch (Exception e) {
// log the excecption
Log.error(e, "PingSession2.doGet(...): error.");
// set the server responce to 500 and forward to the web app defined error page
response.sendError(500, "PingSession2.doGet(...): error. " + e.toString());
}
} // end of the method
public void _jspService(HttpServletRequest request, HttpServletResponse response)
throws java.io.IOException, ServletException {
response.setContentType("text/html;charset=windows-1252");
/* set up the intrinsic variables using the pageContext goober:
** session = HttpSession
** application = ServletContext
** out = JspWriter
** page = this
** config = ServletConfig
** all session/app beans declared in globals.jsa
*/
PageContext pageContext =
JspFactory.getDefaultFactory()
.getPageContext(this, request, response, null, true, JspWriter.DEFAULT_BUFFER, true);
// Note: this is not emitted if the session directive == false
HttpSession session = pageContext.getSession();
if (pageContext.getAttribute(OracleJspRuntime.JSP_REQUEST_REDIRECTED, PageContext.REQUEST_SCOPE)
!= null) {
pageContext.setAttribute(
OracleJspRuntime.JSP_PAGE_DONTNOTIFY, "true", PageContext.PAGE_SCOPE);
JspFactory.getDefaultFactory().releasePageContext(pageContext);
return;
}
int __jsp_tag_starteval;
ServletContext application = pageContext.getServletContext();
JspWriter out = pageContext.getOut();
_mainMib page = this;
ServletConfig config = pageContext.getServletConfig();
try {
// global beans
// end global beans
/*@lineinfo:user-code*/
/*@lineinfo:1^1*/
session.setAttribute("ip", request.getParameter("ip"));
/*@lineinfo:generated-code*/
out.write(__oracle_jsp_text[0]);
} catch (Throwable e) {
try {
if (out != null) out.clear();
} catch (Exception clearException) {
}
pageContext.handlePageException(e);
} finally {
OracleJspRuntime.extraHandlePCFinally(pageContext, false);
JspFactory.getDefaultFactory().releasePageContext(pageContext);
}
}
public void doGet(HttpServletRequest req, HttpServletResponse res)
throws ServletException, IOException {
res.setContentType("text/html");
PrintWriter toClient = res.getWriter();
toClient.println("<!DOCTYPE HTML>");
toClient.println("<html>");
toClient.println("<head><title>Books</title></head>");
toClient.println("<body>");
toClient.println("<a href=\"index.html\">Home</A>");
toClient.println("<h2>List of books</h2>");
HttpSession session = req.getSession(false);
if (session != null) {
String name = (String) session.getAttribute("name");
if (name != null) {
toClient.println("<h2>name: " + name + "</h2>");
}
}
toClient.print("<form action=\"bookOpinion\" method=GET>");
toClient.println("<table border='1'>");
String sql = "Select code, title, author FROM books";
System.out.println(sql);
try {
Statement statement = connection.createStatement();
ResultSet result = statement.executeQuery(sql);
while (result.next()) {
toClient.println("<tr>");
String codeStr = result.getString("code");
toClient.println(
"<td><input type=\"radio\" name=\"book" + "\" value=\"" + codeStr + "\"></td>");
toClient.println("<td>" + codeStr + "</td>");
toClient.println("<td>" + result.getString("title") + "</td>");
toClient.println("<td>" + result.getString("author") + "</td>");
toClient.println("</tr>");
}
} catch (SQLException e) {
e.printStackTrace();
System.out.println("Resulset: " + sql + " Exception: " + e);
}
toClient.println("</table>");
toClient.println("<textarea rows=\"8\" cols=\"60\" name=\"comment\"></textarea><BR>");
toClient.println("<input type=submit>");
toClient.println("</form>");
toClient.println("</body>");
toClient.println("</html>");
toClient.close();
}
@Override
public void sessionCreated(HttpSessionEvent se) {
HttpSession session = se.getSession();
try {
sessions.put(session.getId(), session);
setUsersOnline(getUsersOnline() + 1);
} catch (UnsupportedOperationException
| ClassCastException
| NullPointerException
| IllegalArgumentException e) {
System.out.println(
"edu.temple.cis3238.wiki.WikiEventMonitor.sessionCreated() -- " + e.toString());
}
}
/**
* @param request The servlet request we are processing
* @param result The servlet response we are creating
* @param chain The filter chain we are processing
* @exception IOException if an input/output error occurs
* @exception ServletException if a servlet error occurs
*/
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
throws IOException, ServletException {
// once session invalidated, go back to login screen
HttpServletRequest req = (HttpServletRequest) request;
HttpSession session = req.getSession();
String login = (String) session.getAttribute("login");
if (login != null && login.equals("Y")) {
chain.doFilter(request, response);
} else {
RequestDispatcher rd = request.getRequestDispatcher("/myadmin/logout.jsp");
rd.forward(request, response);
}
// chain.doFilter(request, response);
}
public void doGet(HttpServletRequest request, HttpServletResponse response)
throws IOException, ServletException {
HttpSession session = request.getSession();
String food = (String) session.getAttribute("FOOD");
String animal = request.getParameter("ANIMAL");
session.invalidate();
response.setContentType("text/html;charset=euc-kr");
PrintWriter out = response.getWriter();
out.println("<HEAD><TITLE>성격 테스트</TITLE></HEAD>");
out.println("<BODY>");
out.println("<H3>성격 테스트</H3>");
out.printf("당신은 %s와 %s를 좋아하는 성격입니다.", food, animal);
out.println("</BODY>");
out.println("</HTML>");
}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
throws IOException, ServletException {
// session属于http范畴,所以要将ServletRequest转换成httpServletRequest
try {
HttpServletRequest req = (HttpServletRequest) request;
HttpSession session = req.getSession();
if (session.getAttribute("username") != null) {
chain.doFilter(request, response);
} else {
request.getRequestDispatcher("error.jsp").forward(request, response);
}
} catch (RuntimeException e) {
e.printStackTrace();
}
}