利用session完成登录

package cn.itcast.login;


import java.io.IOException;
import java.io.PrintWriter;
import java.util.ArrayList;
import java.util.List;


import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;


public class LoginServlet extends HttpServlet {



public void doGet(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {


response.setCharacterEncoding("UTF-8");
response.setContentType("text/html;charset=UTF-8");
PrintWriter out = response.getWriter();

String username = request.getParameter("username");
String password = request.getParameter("password");

List<User> list = DB.getAll();
for(User user : list){
if(user.getUsername().equals(username) && user.getPassword().equals(password)){
request.getSession().setAttribute("user", user);//登录成功，向session中存登录标记
response.sendRedirect("/day07/index.jsp");
return;
}
}
out.write("用户名或密码不对");
}



public void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {


doGet(request, response);
}


}


class DB{
public static List list = new ArrayList();
static {
list.add(new User("aa","123"));
list.add(new User("bb","123"));
list.add(new User("cc","123"));
}
public static List getAll(){
return list;
}

}

package cn.itcast.login;


import java.io.IOException;
import java.io.PrintWriter;


import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;


public class logoutServlet extends HttpServlet {



public void doGet(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {


HttpSession session = request.getSession(false);
if(session==null){
response.sendRedirect("/day07/index.jsp");
return;
}
session.removeAttribute("user");
response.sendRedirect("/day07/index.jsp");
}



public void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {


doGet(request, response);
}


}

login.jsp

 <body>
       <form action="/day07/servlet/LoginServlet" method="post"> 
                                用户名:<input type="text" name="username"><br/>
                                密码：<input type="password" name="password"><br/>
                      <input type="submit" value="登录">
                     
       </form>
  </body>

index.jsp

<body>
  
                 欢迎您:${user.username}
                 <a href="/day07/servlet/LoginServlet">登录</a>
                 <a href="/day07/servlet/logoutServlet">注销</a>
                 <br/><br/><br/>
    <a href="/day07/SessionDemo1">购买</a>
    <a href="/day07/SessionDemo2">结账</a>
    
  </body>

user.java

package cn.itcast.login;


public class User {


private String username;
private String password;
public User(String username, String password) {
super();
this.username = username;
this.password = password;
}
public String getUsername() {
return username;
}
public void setUsername(String username) {
this.username = username;
}
public String getPassword() {
return password;
}
public void setPassword(String password) {
this.password = password;
}
}