<body>

 <form action="LoginServlet" method="post">
  賬號：<input type="text" name="username"><br>
  密碼：<input type="password" name="password"><br>
  <input type="checkbox" name="auto_login">自動登錄<br>
  <input type="submit" value="登錄">
 </form>

</body>

<body>
 這是首頁，
 <c:if test="${not empty userBean }">
  歡迎你,${userBean.username }
 </c:if>
 <c:if test="${empty userBean }">
  你好，請登錄！
 </c:if>
 
</body>

protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {

  try {
   String userName = request.getParameter("username");
   String password = request.getParameter("password");
   String autoLogin = request.getParameter("auto_login");
   
   UserBean user = new UserBean();
   user.setUsername(userName);
   user.setPassword(password);
   
   UserDao dao = new UserDaoImpl();
   UserBean userBean = dao.login(user);
   
   if(userBean != null) {
    //成功了，進入首頁
    
    request.getSession().setAttribute("userBean", userBean);
    response.sendRedirect("index.jsp");
   }else {
    //不成功
    request.getRequestDispatcher("login.jsp").forward(request, response);
   }
  } catch (SQLException e) {
   
   e.printStackTrace();
}

public void doFilter(ServletRequest req, ServletResponse response, FilterChain chain) throws IOException, ServletException {
  
  try {
   HttpServletRequest request = (HttpServletRequest) req;
   
   //先判斷，session中還有沒有userBean
   UserBean userBean = (UserBean) request.getSession().getAttribute("userBean");
   //有---session有效
   if(userBean != null) {
     chain.doFilter(request, response);
   }else {//session失效了----看cookie
    
    //1.來請求的時候，先從請求里面取出cookie，但是cookie里有很多的key-value
    Cookie[] cookies = request.getCookies();
    //2.從一堆的cookie里面找出以前給瀏覽器發(fā)的那個cookie
    Cookie cookie = CookieUtil.findCookie(cookies, "auto_login");
    
    //第一次登錄
    if(cookie == null) {
     chain.doFilter(request, response);
    }else {//不是第一次登錄
     String value = cookie.getValue();
     String username = value.split("#")[0];
     String password = value.split("#")[1];
     
     //完成登錄
     UserBean user = new UserBean();
     user.setUsername(username);
     user.setPassword(password);

     UserDao dao = new UserDaoImpl();
     userBean = dao.login(user);
     
     //將session值存到域中，方便下一次未過期前還可以用
     request.getSession().setAttribute("userBean", userBean);
     
     chain.doFilter(request, response);
    }    
    
   }

  } catch (Exception e) {
   e.printStackTrace();
   chain.doFilter(req, response);
  }
 }

public class CookieUtil {

 public static Cookie findCookie(Cookie[] cookies,String name) {
  if(cookies != null) {
   for(Cookie cookie: cookies) {
    if(name.equals(cookie.getName())) {
     return cookie;
    }
   }
  }
  return null; 
 } 
}

public class UserBean {
 
 private int id;
 private String username;
 private String password;
 
 
 public int getId() {
  return id;
 }
 public void setId(int id) {
  this.id = id;
 }
 public String getUsername() {
  return username;
 }
 public void setUsername(String username) {
  this.username = username;
 }
 public String getPassword() {
  return password;
 }
 public void setPassword(String password) {
  this.password = password;
 }
 
 
}

public interface UserDao {
 /**
  * 執(zhí)行登錄，并且返回該用戶所有的信息
  * @param user  執(zhí)行登錄的用戶信息
  * @return
  */
 UserBean login(UserBean user) throws SQLException;
}

public class UserDaoImpl implements UserDao {

 @Override
 public UserBean login(UserBean user) throws SQLException {
  
  QueryRunner runner = new QueryRunner(JDBCUtil02.getDataSource());
  String sql = "select * from t_user where username = ? and password = ?";
  return runner.query(sql, new BeanHandler<UserBean>(UserBean.class),user.getUsername(),user.getPassword());
  
 }

}