對數據的合法性進行檢查，只允許合法的數據進入應用程序

客戶端驗證：

數據提交前在客戶端驗證

可使用javaScript或者JQuery實現

特點：減少客戶等待時間，減小服務器壓力

服務器端驗證：

在數據提交后服務器端驗證

特點：防止“繞過”客戶端驗證提交非法數據

　　　可以在服務器端處理數據前確保數據的合法性

• 使用ActionSupport編碼實現驗證
• 使用驗證框架實現驗證

• 在Action類的業務方法中直接驗證
• 重寫Validate()方法
• 使用validateXxx()方法

addFieldError(String fieldName,String errorMessage),添加字段的錯誤信息

addActionError(String anErrorMessage)，添加與Action所處理業務相關的錯誤信息

• <s:fielderror/>輸出一個或者所胡字段的錯誤信息
• <s:actionerror/>輸出所有Action的錯誤信息

<result name="input">xxx.jsp</result>

實體類

package com.pb.entity;/* * 用戶類 */public class User {    PRivate String username;    //用戶名    private String passWord;    //密碼    private Integer age;        //年齡    private String email;        //郵箱            public String getUsername() {        return username;    }    public void setUsername(String username) {        this.username = username;    }    public String getPassword() {        return password;    }    public void setPassword(String password) {        this.password = password;    }    public Integer getAge() {        return age;    }    public void setAge(Integer age) {        this.age = age;    }    public String getEmail() {        return email;    }    public void setEmail(String email) {        this.email = email;    }}

register.jsp

<%@ page language="java" contentType="text/html; charset=UTF-8"    pageEncoding="UTF-8"%><%@taglib prefix="s" uri="/struts-tags"%><%    String path = request.getContextPath();    String basePath = request.getScheme() + "://"            + request.getServerName() + ":" + request.getServerPort()            + path + "/";%><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><base href="<%=basePath%>"><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><title>注冊頁面</title></head><body><!--  判斷字段是否有錯誤信息--><s:if test="hasFieldErrors()"><h1 align="center">輸出錯誤字段信息</h1><div align="center" style="color:blue;">使用s:fielderror輸出一個指定的錯誤信息<s:fielderror name="user.username" />使用s:fielderror輸出全部的錯誤信息<s:fielderror /></div></s:if><!-- 判斷action是否有錯誤 --><s:if test="hasActionErrors()"><h1 align="center">輸出錯誤Action信息</h1><div  align="center" style="color:gray;">使用s:actionerror輸出action相關的錯誤信息<s:actionerror/></div></s:if><h1>使用execute業務方法直接較驗</h1><s:form action="register.action" method="post" ><s:textfield label="用戶名"  name="user.username"/><s:password  label="密碼" name="user.password"/><s:textfield label="年齡" name="user.age" /><s:textfield  label="郵箱" name="user.email"/><s:submit  value="提交" /><s:reset value="重置" /><br/></s:form><s:debug/></body></html>

UserAction

package com.pb.web.action;import java.util.regex.Matcher;import java.util.regex.Pattern;import com.opensymphony.xwork2.ActionSupport;import com.pb.entity.User;public class UserAction extends ActionSupport {    private User user;    @Override    public String execute() throws Exception {        if(null==user.getUsername() || "".equals(user.getUsername())){            this.addFieldError("user.username", "用戶名不能為空!");        }        if(null==user.getPassword() || "".equals(user.getPassword())){            this.addFieldError("user.password", "密碼不能為空!");        }        String ageStr="^//d{1,3}$";        Pattern ageReg=Pattern.compile(ageStr);        Matcher ageMatcher=ageReg.matcher(user.getAge()+"");        if(!ageMatcher.matches()){            this.addFieldError("user.age", "年齡只能是數字,并只能為1-200之間!");        }        if(null==user.getAge()){            this.addFieldError("user.age", "年齡不能為空!");        }            String emaString="^//w+@//w+(.//w{2,3}){1,2}$";        Pattern emailReg=Pattern.compile(emaString);        Matcher emailMatcher=emailReg.matcher(user.getEmail());        if(!emailMatcher.matches()){            this.addFieldError("user.email", "郵箱格式不正確");        }        if(this.hasErrors()){            this.addActionError("輸入的注冊信息有誤");            return INPUT;        }        return SUCCESS;    }    public User getUser() {        return user;    }    public void setUser(User user) {        this.user = user;    }        }

struts.xml

<struts>    <constant name="struts.enable.DynamicMethodInvocation" value="false" />    <constant name="struts.devMode" value="true" />    <package name="default" namespace="/" extends="struts-default">    <action name="register" class="com.pb.web.action.UserAction">    <result name="input">/register.jsp</result>    <result name="success">/registerSuccess.jsp</result>    </action>        </package></struts>

• 重寫ActionSupport類的validate()方法
• 在validate()方法中實現驗證
• 將數據驗證和業務處理分離
• 添加與顯示錯誤信息的方式不變

接收參數時，數據轉換失敗也會調用validate()方法

validate()方法驗證不通過不會執行業務方法

package com.pb.web.action;import java.util.regex.Matcher;import java.util.regex.Pattern;import com.opensymphony.xwork2.ActionSupport;import com.pb.entity.User;public class UserAction1 extends ActionSupport {    private User user;    @Override    public String execute() throws Exception {        System.out.println("=========完成注冊信息======");        if(this.hasErrors()){            this.addActionError("輸入的注冊信息有誤");            return INPUT;        }        return SUCCESS;    }                @Override    public void validate() {        if(null==user.getUsername() || "".equals(user.getUsername())){            this.addFieldError("user.username", "用戶名不能為空!");        }        if(null==user.getPassword() || "".equals(user.getPassword())){            this.addFieldError("user.password", "密碼不能為空!");        }        String ageStr="^//d{1,3}$";        Pattern ageReg=Pattern.compile(ageStr);        Matcher ageMatcher=ageReg.matcher(user.getAge()+"");        if(!ageMatcher.matches()){            this.addFieldError("user.age", "年齡只能是數字,并只能為1-200之間!");        }        if(null==user.getAge() || "".equals(user.getAge())){            this.addFieldError("user.age", "年齡不能為空!");        }else{            if(0>user.getAge() || 200<user.getAge()){                this.addFieldError("user.age", "年齡1-200之間!!");            }        }                    String emaString="^//w+@//w+(.//w{2,3}){1,2}$";        Pattern emailReg=Pattern.compile(emaString);        Matcher emailMatcher=emailReg.matcher(user.getEmail());        if(!emailMatcher.matches()){            this.addFieldError("user.email", "郵箱格式不正確");        }        super.validate();            }    public User getUser() {        return user;    }    public void setUser(User user) {        this.user = user;    }        }

如果Action中有validate()方法，會先執行驗證，驗證后才執行業務方法，不通過不執行業務方法

使用validateXxx()方法

• Struts2支持validateXxx()方法針對xxx（）方法進行數據驗證
• 使用validateRegister()方法實現針對register()方法的數據驗證
• 注冊時通過validateRegister()方法驗證年齡和郵箱等其它字段
• 注冊和登錄時在validate()方法中驗證用戶名和密碼非空等其它驗證

validate()方法和validateXxx()方法同時存在時都會起作用

ValidateXxx()方法的調用要先于validate()方法

package com.pb.web.action;import java.util.regex.Matcher;import java.util.regex.Pattern;import com.opensymphony.xwork2.ActionSupport;import com.pb.entity.User;public class UserAction2 extends ActionSupport {    private User user;    public String register() throws Exception {        System.out.println("=========完成注冊信息======");        if(this.hasErrors()){            return INPUT;        }        return SUCCESS;    }                @Override    public void validate() {        System.out.println("====執行validate方法驗證====");        if(null==user.getUsername() || "".equals(user.getUsername())){            this.addFieldError("user.username", "用戶名不能為空!");        }        if(null==user.getPassword() || "".equals(user.getPassword())){            this.addFieldError("user.password", "密碼不能為空!");        }    }public void validateRegister(){    System.out.println("====執行validateRegister方法驗證====");    String ageStr="^//d{1,3}$";    Pattern ageReg=Pattern.compile(ageStr);    Matcher ageMatcher=ageReg.matcher(user.getAge()+"");    if(!ageMatcher.matches()){        this.addFieldError("user.age", "年齡只能是數字,并只能為1-200之間!");    }    if(null==user.getAge() || "".equals(user.getAge())){        this.addFieldError("user.age", "年齡不能為空!");    }else{        if(0>user.getAge() || 200<user.getAge()){            this.addFieldError("user.age", "年齡1-200之間!!");        }    }        String emaString="^//w+@//w+(.//w{2,3}){1,2}$";    Pattern emailReg=Pattern.compile(emaString);    Matcher emailMatcher=emailReg.matcher(user.getEmail());    if(!emailMatcher.matches()){        this.addFieldError("user.email", "郵箱格式不正確");    }}    public User getUser() {        return user;    }    public void setUser(User user) {        this.user = user;    }        }

struts.xml

<action name="register2" class="com.pb.web.action.UserAction2" method="register">    <result name="input">/register2.jsp</result>    <result name="success">/registerSuccess.jsp</result>    </action>

package com.pb.web.action;import java.util.regex.Matcher;import java.util.regex.Pattern;import com.opensymphony.xwork2.ActionSupport;import com.pb.entity.User;public class UserAction3 extends ActionSupport {    private User user;    public String register() throws Exception {        System.out.println("=========完成注冊信息======");        return SUCCESS;    }    public User getUser() {        return user;    }    public void setUser(User user) {        this.user = user;    }        }

UserAction3-validation.xml

<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE validators PUBLIC "-//Apache Struts//XWork Validator 1.0.3//EN"        "http://struts.apache.org/dtds/xwork-validator-1.0.3.dtd"><validators><!--  用戶名驗證--><field name="user.username"><field-validator type="requiredstring"><param name="trim">true</param><message>用戶名不能為空!</message></field-validator><field-validator type="stringlength"><param name="minLength">4</param><param name="maxLength">16</param><param name="trim">true</param><message>用戶名必須為${minLength}至${maxLength}個字符！,當前為${user.username}</message></field-validator></field><!--密碼  --><field name="user.password"><field-validator type="requiredstring"><param name="trim">true</param><message>密碼不能為空!</message></field-validator><field-validator type="stringlength"><!--去掉前后的空格  --><param name="trim">true</param><param name="minLength">6</param><param name="maxLength">20</param><message>密碼必須為${minLength}至${maxLength}個字符,當前為${user.password}</message></field-validator></field><!--年齡  --><field name="user.age"><field-validator type="required"><param name="trim">true</param><message>年齡不能為空</message></field-validator><field-validator type="int"><param name="trim">true</param><param name="min">1</param><param name="max">200</param><message>年齡為${min}---${max}歲之間</message></field-validator></field><field name="user.email"><field-validator type="requiredstring"><param name="trim">true</param><message>郵箱不能為空</message></field-validator><field-validator type="email"><param name="trim">true</param><message>郵箱格式不正確!</message></field-validator></field></validators>

jsp頁面

<%@ page language="java" contentType="text/html; charset=UTF-8"    pageEncoding="UTF-8"%><%@taglib prefix="s" uri="/struts-tags"%><%    String path = request.getContextPath();    String basePath = request.getScheme() + "://"            + request.getServerName() + ":" + request.getServerPort()            + path + "/";%><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><base href="<%=basePath%>"><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><title>注冊頁面</title></head><body><!--  判斷字段是否有錯誤信息--><s:if test="hasFieldErrors()"><h1 align="center">輸出錯誤字段信息</h1><div align="center" style="color:blue;">使用s:fielderror輸出全部的錯誤信息<s:fielderror /></div></s:if><h1>ActionName-validation.xml較驗</h1><!-- 必須加上namespace不然不起作用--><s:form action="register3.action" method="post" namespace="/" ><s:textfield label="用戶名"  name="user.username"/><s:password  label="密碼" name="user.password"/><s:textfield label="年齡" name="user.age" /><s:textfield  label="郵箱" name="user.email"/><s:submit  value="提交" /><s:reset value="重置" /><br/></s:form><s:debug/></body></html>

struts.xml

<action name="register3" class="com.pb.web.action.UserAction3" method="register">    <result name="input">/register3.jsp</result>    <result name="success">/registerSuccess.jsp</result>    </action>

將上面的年齡驗證和郵箱驗證獨立出來

struts.xml

<action name="register3" class="com.pb.web.action.UserAction3" method="register">    <result name="input">/register3.jsp</result>    <result name="success">/registerSuccess.jsp</result>    </action>

UserAction3-validation.xml

<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE validators PUBLIC "-//Apache Struts//XWork Validator 1.0.3//EN"        "http://struts.apache.org/dtds/xwork-validator-1.0.3.dtd"><validators><!--  用戶名驗證--><field name="user.username"><field-validator type="requiredstring"><param name="trim">true</param><message>用戶名不能為空!</message></field-validator><field-validator type="stringlength"><param name="minLength">4</param><param name="maxLength">16</param><param name="trim">true</param><message>用戶名必須為${minLength}至${maxLength}個字符！,當前為${user.username}</message></field-validator></field><!--密碼  --><field name="user.password"><field-validator type="requiredstring"><param name="trim">true</param><message>密碼不能為空!</message></field-validator><field-validator type="stringlength"><!--去掉前后的空格  --><param name="trim">true</param><param name="minLength">6</param><param name="maxLength">20</param><message>密碼必須為${minLength}至${maxLength}個字符,當前為${user.password}</message></field-validator></field></validators>

UserAction3-register3-validation.xml 中間的名稱要與action名字相同

<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE validators PUBLIC "-//Apache Struts//XWork Validator 1.0.3//EN"        "http://struts.apache.org/dtds/xwork-validator-1.0.3.dtd"><validators><!--  用戶名驗證--><field name="user.username"><field-validator type="requiredstring"><param name="trim">true</param><message>用戶名不能為空!</message></field-validator><field-validator type="stringlength"><param name="minLength">4</param><param name="maxLength">16</param><param name="trim">true</param><message>用戶名必須為${minLength}至${maxLength}個字符！,當前為${user.username}</message></field-validator></field><!--密碼  --><field name="user.password"><field-validator type="requiredstring"><param name="trim">true</param><message>密碼不能為空!</message></field-validator><field-validator type="stringlength"><!--去掉前后的空格  --><param name="trim">true</param><param name="minLength">6</param><param name="maxLength">20</param><message>密碼必須為${minLength}至${maxLength}個字符,當前為${user.password}</message></field-validator></field></validators>