List of usage examples for org.springframework.web.multipart MultipartHttpServletRequest getHeader
public String getHeader(String name);
String. From source file:com.myhexin.filter.FileMultipartFilter.java
/** * /*from w w w .j a v a2 s .co m*/ * @param mRequest * @return true:??false? */ public boolean isIlleageXssParam(MultipartHttpServletRequest mRequest) { // headerheader? if (XSSSecurityConfig.IS_CHECK_HEADER) { Enumeration<String> headerParams = mRequest.getHeaderNames(); while (headerParams.hasMoreElements()) { String headerName = headerParams.nextElement(); String headerValue = mRequest.getHeader(headerName); if (XSSSecurityManager.matches(headerValue)) { recordXssRequestInfo(mRequest, headerValue); return true; } } return false; } // parameterparameter? if (XSSSecurityConfig.IS_CHECK_PARAMETER) { Map<String, Object> submitParams = mRequest.getParameterMap(); Set<String> submitNames = submitParams.keySet(); for (String submitName : submitNames) { Object submitValues = submitParams.get(submitName); if (submitValues instanceof String) { if (XSSSecurityManager.matches((String) submitValues)) { recordXssRequestInfo(mRequest, submitName + "=" + submitValues); return true; } } else if (submitValues instanceof String[]) { for (String submitValue : (String[]) submitValues) { if (XSSSecurityManager.matches((String) submitValue)) { recordXssRequestInfo(mRequest, submitName + "" + submitValue); return true; } } } } return false; } return false; }
From source file:com.baidu.gcrm.materials.web.MaterialsAction.java
/** * /*w w w . j av a 2 s . c o m*/ * * @return */ @RequestMapping("/doUploadFile") @ResponseBody public Object doUploadFile(MultipartHttpServletRequest multipartRequest, HttpServletResponse response) { Iterator<String> it = multipartRequest.getFileNames(); MultipartFile mpf = null; while (it.hasNext()) { String fileName = it.next(); mpf = multipartRequest.getFile(fileName); log.debug("===" + fileName + "upload to local sever"); } // Attachment attachment = new Attachment(); attachment.setFieldName(mpf.getName()); attachment.setName(mpf.getOriginalFilename()); attachment.setCustomerNumber(-1L); attachment.setId(-1L); attachment.setTempUrl(""); //attachment.setType(-1); attachment.setUrl(""); // attachment.setExit(false); try { attachment.setBytes(mpf.getBytes()); } catch (IOException e) { log.error("=====" + e.getMessage()); attachment.setMessage("failed"); return attachment; } if (!StringUtils.isEmpty(mpf.getOriginalFilename())) { if (mpf.getOriginalFilename().endsWith(".exe")) { attachment.setMessage("materials.extension.error");//I18N?code } else { if (matericalsService.uploadFile(attachment)) { attachment.setMessage("success"); } else { attachment.setMessage("failed"); } } } //? String userAgent = multipartRequest.getHeader("user-agent").toLowerCase(); if (userAgent.indexOf("msie 6") != -1 || userAgent.indexOf("msie 7") != -1 || userAgent.indexOf("msie 8") != -1 || userAgent.indexOf("msie 9") != -1) { return JSONObject.toJSONString(attachment); } return attachment; }