DevGex Search

This article explains how to modify request parameters using Servlet filters and HttpServletRequestWrapper without altering the source code, to defend against XSS attacks. It covers core concepts, implementation, and best practices.

This paper provides an in-depth exploration of Java Servlet core concepts, architectural principles, and practical applications. Through detailed analysis of Servlet container mechanisms, lifecycle management, and comparisons with traditional technologies like CGI, it comprehensively elaborates on Servlet advantages in server-side programming. Complete code examples demonstrate Servlet creation and configuration, discussing its significance in modern web development.

This article provides a comprehensive exploration of Java Servlet core mechanisms, covering Servlet container startup processes, Servlet instantiation strategies, HttpSession session management principles, and thread safety in multithreaded environments. Through detailed analysis of the lifecycle and scope of ServletContext, HttpServletRequest, HttpServletResponse, and HttpSession, combined with practical code examples demonstrating proper usage of instance and session variables, it assists developers in building high-performance, thread-safe web applications.

This article provides an in-depth exploration of methods for handling POST request payload data in Java Servlet, focusing on the usage scenarios and limitations of the core APIs getReader() and getInputStream(). Through practical code examples, it demonstrates how to correctly read request body content and analyzes considerations when processing request payloads in Filters, including one-time read limitations and solutions. The article also compares the advantages and disadvantages of different implementation approaches, offering comprehensive technical reference for developers.

This article provides a comprehensive analysis of common 404 errors in Java Servlet development, focusing on two main methods of Servlet mapping configuration: annotation-based @WebServlet configuration and traditional web.xml configuration. Through complete code examples and step-by-step analysis, it explains how the annotation mechanism introduced in Servlet 3.0 specification simplifies the deployment process, while comparing the advantages and disadvantages of old and new configuration approaches. The article also delves into Servlet lifecycle in Tomcat container, URL mapping mechanisms, and troubleshooting methods for common configuration errors, offering developers comprehensive solutions.

This article provides an in-depth analysis of the 'javax.servlet cannot be resolved' error in Eclipse when developing Java EE web applications. It presents two practical solutions for configuring Servlet API in the classpath and explores the underlying technical principles of Tomcat server integration and Java compilation mechanisms.

This paper provides an in-depth analysis of the common HTTP Status 405 error in Java Web development, using a user registration case study to explain the relationship between Servlet mapping configuration and HTTP method handling mechanisms. The article first examines the root cause of the error—where a Servlet implementing only the doPost method is mapped to an HTML file path, causing GET requests to be rejected. It then systematically explains Servlet lifecycle, HTTP method processing flow, and web.xml configuration standards, offering two solutions: correcting Servlet mapping paths or overriding the service method. Finally, it summarizes best practices to help developers avoid similar configuration errors.

This article provides an in-depth analysis of HTTP response code enum implementations in Java, focusing on the limitations of javax.ws.rs.core.Response.Status and detailing the comprehensive solution offered by Apache HttpComponents' org.apache.http.HttpStatus. Through comparative analysis of alternatives like HttpURLConnection and HttpServletResponse, it offers practical implementation guidance and code examples.

This article addresses the issue in Java Servlet filters where POST request parameters are consumed after the first read, preventing subsequent access. By analyzing the underlying mechanisms of HttpServletRequest, it proposes a solution based on HttpServletRequestWrapper to cache the request body for multiple reads. Additionally, it introduces Spring Framework's ContentCachingRequestWrapper as an alternative, discussing implementation details and considerations.

This article explains the common HTTP 405 error in Java Servlets when using the POST method, focusing on the issue caused by unimplemented doGet() method calls, and provides step-by-step solutions with code examples. Content includes problem description, root cause analysis, HttpServlet default behavior, code correction, and supplementary configuration.

This paper comprehensively explores three core methods for implementing JSP page navigation through button clicks in Java web applications. It first analyzes the simplified approach of using links instead of buttons, then introduces client-side solutions via JavaScript dynamic form action modification, and finally elaborates on server-side processing mechanisms based on Servlet. The article compares the advantages and disadvantages of different methods with code examples and provides best practice recommendations for practical applications.

This article provides an in-depth exploration of the user response acquisition mechanism and server-side validation necessity in Google reCAPTCHA service. Through analysis of the dual protection system comprising client-side and server-side validation, it explains the generation principle of g-recaptcha-response parameter, validation workflow, and security significance. Combined with Java Web application examples, the article offers complete server-side validation implementation solutions including API request construction, response parsing, and error handling, assisting developers in building more secure Web application protection systems.

This article provides an in-depth comparison of JSF, Servlet, and JSP - three fundamental technologies in Java web development. It examines their technical characteristics, lifecycles, and application scenarios, detailing the relationship between JSP as a view technology and Servlet, the component-based advantages of JSF as an MVC framework, and the differences in development patterns, functional features, and suitable use cases. The article includes practical code examples to help developers understand how to appropriately select and utilize these technologies in real-world projects.

This technical paper provides an in-depth exploration of file upload implementation in JSP/Servlet environments. It covers HTML form configuration, Servlet 3.0+ native API usage, Apache Commons FileUpload integration, and presents complete code examples with best practices. The article also addresses advanced topics including file storage strategies, browser compatibility handling, and multiple file uploads, offering developers a comprehensive file upload solution.

This article provides a comprehensive exploration of the technical process for transferring HTML form data from JSP pages to Servlets via HTTP requests and ultimately storing it in a database. It begins by introducing the basic structure of forms and Servlet configuration methods, including the use of @WebServlet annotations and proper setting of the form's action attribute. The article then delves into techniques for retrieving various types of form data in Servlets using request.getParameter() and request.getParameterValues(), covering input controls such as text boxes, password fields, radio buttons, checkboxes, and dropdown lists. Finally, it demonstrates how to validate the retrieved data and persist it to a database using JDBC or DAO patterns, offering practical code examples and best practices to help developers build robust web applications.

This article provides an in-depth analysis of the common 406 Not Acceptable error in Spring MVC, typically caused by mismatches between client Accept headers and server response types. Based on a real-world case study, it examines Accept header configuration, JSON response generation mechanisms, and Spring MVC's content negotiation strategies. By comparing various solutions, it emphasizes correctly setting Accept headers to support application/json, supplemented by other potential causes such as class member visibility and path extension handling. Covering Spring versions 3.x to 4.x, it includes code examples and configuration recommendations to help developers comprehensively understand and resolve this issue.

This paper provides an in-depth analysis of implementing session expiration detection and redirection to login pages in Java web applications through Servlet Filters. It begins by examining the fundamental concepts of session expiration and its configuration in web.xml. The paper then details a straightforward detection approach using the HttpSession.isNew() method, while highlighting its limitations. As a robust alternative, it discusses checking user authentication objects stored in sessions to determine login status, thereby avoiding misjudgments caused by newly created sessions. By comparing the strengths and weaknesses of both methods, this paper offers comprehensive technical guidance for developers to build reliable session management systems.

This technical paper provides an in-depth analysis of proper session attribute management in Java Web development. By comparing implementation differences between JSP scriptlets and Servlets, it thoroughly explains HttpSession acquisition mechanisms, distinctions between session and request scopes, and attribute lifecycle management. The article includes complete code examples and best practice guidelines to help developers avoid common 'session cannot be resolved' errors.

This article explores efficient methods for serving static data such as images from external storage locations in Java web application servers like Tomcat. By analyzing two main approaches—configuring Tomcat's Context element to utilize the DefaultServlet, and writing custom Servlets for finer control—it details implementation steps, cross-platform compatibility considerations, and best practices. The discussion also covers HTTP response header settings, file upload integration, and performance optimization tips, providing comprehensive technical guidance for developers.

This paper explores a technical solution for securely loading HTTP external content (e.g., images) within HTTPS websites. Addressing mixed content warnings in browsers like IE6, it proposes a server-side proxy approach via URL rewriting. By converting HTTP image URLs to HTTPS proxy URLs, all requests are transmitted over secure connections, with hash verification preventing unauthorized access. The article details the implementation logic of a proxy Servlet, including request forwarding, response proxying, and caching mechanisms, and discusses the advantages in performance, security, and compatibility.