13-Filter实现过滤敏感词

Filter 过滤器实现敏感词过滤

核心逻辑:

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
// 正常情况最好将注解信息配置在 web.xml 中
@WebFilter(
        filterName = "SensitiveWordsFilter",
        urlPatterns = "/*",
        initParams = {
                @WebInitParam(name="word1", value="笨蛋"),
                @WebInitParam(name="word2", value="傻蛋"),
                @WebInitParam(name="word3", value="蠢蛋")
        }
)
public class SensitiveWordsFilter implements Filter {
    // 敏感词
    private List<String> sensitiveWords = new ArrayList<>();
    @Override
    public void init(FilterConfig config) throws ServletException {
        Enumeration<String> parameterNames = config.getInitParameterNames();
        while (parameterNames.hasMoreElements()) {
            String sensitiveWord = config.getInitParameter(parameterNames.nextElement());
            sensitiveWords.add(sensitiveWord);
        }
    }

    @Override
    public void doFilter(ServletRequest req, ServletResponse resp, FilterChain chain) throws ServletException, IOException {
        HttpServletRequest request = (HttpServletRequest) req;
        // 增强 request 的 getParameter 方法
        HttpServletRequest requestProxy = (HttpServletRequest) Proxy.newProxyInstance(
                request.getClass().getClassLoader(),
                request.getClass().getInterfaces(),
                (proxy, method, args) -> {
                    Object returnValue = null;
                    String methodName = method.getName();
                    if ("getParameter".equals(methodName)) {
                        // returnValue 就是 getParameter 方法的返回值,需要处理敏感词
                        String word = (String) method.invoke(request, args);
                        // 处理敏感词
                        for (String sensitiveWord : sensitiveWords) {
                            if (word.contains(sensitiveWord)) {
                                // 处理敏感词
                                returnValue = word.replace(sensitiveWord, "***");
                            }
                        }
                    } else {
                        returnValue = method.invoke(request, args);
                    }
                    return returnValue;
                }
        );
        // 放行增强的请求对象 requestProxy(在 Servlet 中可以去使用到过滤后的)
        chain.doFilter(requestProxy, resp);
    }

    @Override
    public void destroy() { }
}
04_网页技术 > 04_Servlet
#Servlet #Filter
13-Filter实现过滤敏感词
https://janycode.github.io/2017/05/22/04_网页技术/04_Servlet/13-Filter实现过滤敏感词/
作者
Jerry(姜源)
发布于
2017年5月22日
许可协议