Java web 验证码程序中报错 Cannot create a session after the response has been committed

原创 于 2023-06-03 19:11:31 发布 · 716 阅读 · 1 ·
本内容遵循CC 4.0 BY-SA版权协议
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
标签
#java #前端 #servlet
在Javaweb项目的一个Servlet中,用于生成验证码的方法触发了IllegalStateException,因为尝试在Response已提交后创建Session。问题在于Response先输出了验证码,然后才创建Session。解决方法是将创建Session的代码移到输出数据之前。

问题描述

在我的Java web项目中,写了一个获取验证码的方法,代码如下所示

@WebServlet("/checkCodeServlet")
public class CheckCodeServlet extends HttpServlet {
    @Override
    protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {

        // 生成验证码
        ServletOutputStream os = response.getOutputStream();
        String checkCode = CheckCodeUtil.outputVerifyImage(100, 50, os, 4);

        // 存入Session
        HttpSession session = request.getSession();
        session.setAttribute("checkCodeGen",checkCode);

    }

    @Override
    protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
        this.doGet(request, response);
    }
}

结果运行的时候报错如下所示:

在这里插入图片描述

严重: Servlet.service() for servlet [edu.aviation.web.servlet.CheckCodeServlet] in context with path [/aviation] threw exception
java.lang.IllegalStateException: Cannot create a session after the response has been committed
	at org.apache.catalina.connector.Request.doGetSession(Request.java:2921)
	at org.apache.catalina.connector.Request.getSession(Request.java:2318)
	at org.apache.catalina.connector.RequestFacade.getSession(RequestFacade.java:899)
	at org.apache.catalina.connector.RequestFacade.getSession(RequestFacade.java:911)
	at edu.aviation.web.servlet.CheckCodeServlet.doGet(CheckCodeServlet.java:20)
	at javax.servlet.http.HttpServlet.service(HttpServlet.java:621)
	at javax.servlet.http.HttpServlet.service(HttpServlet.java:728)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:305)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
	at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:51)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
	at edu.aviation.web.filter.EncodingFilter.doFilter(EncodingFilter.java:31)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
	at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:222)
	at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:123)
	at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:502)
	at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
	at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:100)
	at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:953)
	at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118)
	at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
	at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1041)
	at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:603)
	at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:312)
	at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
	at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
	at java.lang.Thread.run(Thread.java:748)

原因分析

有时候在操作Session时,系统会抛出如下异常

java.lang.IllegalStateException: Cannot create a session after the response has been committed

之所以会出现此类问题是因为我们在Response输出响应后才创建Session的。

(因为那时候服务器已经将数据发送到客户端了,即:就无法发送Session ID 了)

解决办法:

你只需要在你的程序中将创建访问Session的语句【request.getSession()】提前至Response输出数据之前就好了。

我们将下面代码

// 存入Session
HttpSession session = request.getSession();

移动到最前面

    protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
        // 存入Session
        HttpSession session = request.getSession();
        // 生成验证码
        ServletOutputStream os = response.getOutputStream();
        String checkCode = CheckCodeUtil.outputVerifyImage(100, 50, os, 4);
        session.setAttribute("checkCodeGen",checkCode);
    }
SpringSecurity(八)用户数据获取之SpringSecurityContextHolder深度剖析(下)
陈橙橙
03-13 2344
在上一篇中我们大致的说明了从Security中获取登录数据的逻辑以及SecurityContextHolder保存数据的策略,最后也遗留下了一个问题。—SpringBoot中不同的请求都是由不同的线程处理的,那为什么每一次请求都还能从SecurityContextHolder中获取到登录用户信息呢,这就得提到SpringSecurity过滤器链中最重要的一环了。 SecurityContextPersistenceFilter 前面几篇我们也介绍了SpringSecurity常见的过滤器,在这些过滤器中.
java.lang.IllegalStateException: Cannot create a session after the response has been committed
二楼后座的专栏
07-12 1万+
使用spring mvc进行Java web开发时,如果同时使用@SessionAttributes 和@ResponseBody注解,就会出现 “java.lang.IllegalStateException: Cannot create a session after the response has been committed”这个错误。这是为什么呢,因为我们在创建session前,已...
日志拦截器报错Cannot create a session after the response has been committed
热门推荐
韩超的博客 (hanchao5272)
06-01 4万+
错误信息 日志拦截器AppLogInterceptor在方法处理完成之后,会对操作相关信息如参数、方法名、session信息等内容进行记录。 但是今天有同事开发时报错Cannot create a session after the response has been committed 相关代码如下: public class AppLogInterceptor exten...
使用session常见的异常类型
小小程序员
06-06 2244
使用session的常见异常: 1:Cannot create a session after the response has been committed     原因:开发代码过程中使用了session来传递数据(图片流,数据流,文字等等),直接使用了request.getSession.setAttribute(Sting key,String value)的方法,忽略了在使用这个方法
@SessionAttributes和@ResponseBody同时使用出现Cannot create a session after the response has been committed
qq_42692592的博客
07-19 608
前端获取验证码图片时出现GET http://localhost:8080/code net::ERR_INCOMPLETE_CHUNKED_ENCODING 200错误 后端报错 严重 [http-nio-8080-exec-1] org.apache.catalina.core.StandardWrapperValve.invoke Servlet.service() for servlet [dispatcherServlet] in context with path [] threw except
can not create a session after response is commited
wobupeiai的博客
12-08 1963
can not create a session after response is commited 这个错误一般在本地难以发生,部署到服务器上回发生。 1.getsession()放在了response提交后面 2.getssion(true),没有session会创建session,访问量稍大时,在多线程环境,单例模式下(Spring默认创建bean的单例的,做权限管理用拦截器时,Ha
Cannot create a session after the response has been committed
ldm54466183的博客
02-20 3475
springboot项目开发时,在发生页面跳转时,提示如上错误。在网上搜索发现,response响应后,再发送获取session的请求就会触发这个错误
Cannot create a session after the response has been committed解决方案
weixin_34292402的博客
07-21 5117
场景:@RequestMapping("/demo") publicvoiddoTmallGujia(StringcallbackUrl,HttpServletResponseresponse){ try{ if(StringUtils.isNotBlank(callbackUrl)){ ...
出现java.lang.IllegalStateException: Cannot create a session after the response has been committed异常
Bab的博客
09-24 6023
在使用@SessionAttributes注解后销毁session域中的session时出现java.lang.IllegalStateException: Cannot create a session after the response has been committed错误,相关部分代码如下: package xyz.newtouch.controller; import org.springframework.beans.factory.annotation.Autowired; import
Cannot create a session after the response has been committed 错误处理
weixin_43732454的博客
03-20 1663
错误原因: 因为在request.getSession时, 通过response已经将数据发送出去,所以获取不到sessionID. 解决方法: 需要在response操作之间就需要定义好request.getSession.建议使用Session的地方在方法一开始就定义. ...
Server报错java.lang.IllegalStateException: Cannot create a session after the response has been commit
BugMaker
06-14 6191
Server报错:java.lang.IllegalStateException: Cannot create a session after the response has been committed
Cas中,Cannot create a session after the response has been committed异常解决方案
qq_36956015的博客
02-23 1137
Cas中,Cannot create a session after the response has been committed异常,是由于cas在登录后两秒把session给end了,导致session获取不到,解决办法是在cas-servlet.xml 配置timeToDieInSeconds这个值 把时间设置长一些就好了,如下: ...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值