Presentation is loading. Please wait.

Presentation is loading. Please wait.

Publishing Data on the Internet Client 1 DB Internet Client 2 Client n.

Published byCassandra James Modified over 8 years ago

Similar presentations

Presentation on theme: "Publishing Data on the Internet Client 1 DB Internet Client 2 Client n."— Presentation transcript:

1 Publishing Data on the Internet Client 1 DB Internet Client 2 Client n

2 Web Computing: Servlets CS587x Lecture Department of Computer Science Iowa State University

3 What to cover Introduction on servlet Servlet architecture Servlet programming and example Session management Cookie URL rewriting Hidden form field HttpSession

4 What is a Servlet A servlet can be thought of as a server-side applet Applet: a java program that runs within the web browser Servlet: a java program that runs within the web server Servlets are loaded and executed by a web server in the same manner that applets are loaded and executed by a web browser

5 Servlet Architecture The client makes a request via HTTP The web server receives the requests and forwards it to the servlet If the servlet has not yet been loaded, the web server loads it into the JVM and executes it The servlet receives the HTTP request and performs some type of process The servlet returns a response to the web server The web server forwards the response to the client Client (web browser) Web Server HTTP request HTTP response Servlet Container Servlet

6 Why Use Servlets Servlets are designed to replace CGI scripts Platform-independent and extensible  CGI scripts are typically written in Perl or C, and are very much tied to a particular server platform  Servlet is written in Java, which can easily integrate with existing legacy systems through RMI, CORBA, and/or JNI Persistent and fast  Servers are loaded only once by the web server and can maintain services between requests (particularly important for maintaining database connections)  CGI scripts are transient – a CGI script is removed from memory after it is complete  For each browser request, the web server must spawn a new operating system process Secure  The only way to invoke a servlet from the outside world is through a web server, which can be protected behind a firewall

7 What can you build with servlets Search engines E-commerce applications Shopping carts Product catalogs Personalization systems Intranet application Groupware applications: bulletin boards, file sharing, etc.

8 Steps of Servlet Processing 1. Read any data sent by the server Capture data submitted by an HTML form 2. Look up any HTTP information Determine the browser version, host name of client, cookies, etc. 3. Generate the results Connect to databases, connect to legacy applications, etc. 4. Format the results Generate HTML on the fly 5. Set the appropriate HTTP headers Tell the browser the type of document being returned or set any cookies 6. Send the document back to the client

9 Servlet Life Cycle Servlet life cycle Create Initialize Service Destroy When HTTP calls for a servlet Not loaded: Load, Create, Init, Service Already loaded: Service

10 How to program servlets Servlets rely on classes defined in the javax.servlet and javax.servlet.http packages The two packages are standard extension to Java API A user servlet implements the servlet interface, which provides the basic structure methods for servlets, such as initializing, service, and destruction methods The methods for accessing context & configuration HTTPServlet class Starting point for new web servlets Extend the class & override desired methods:  doGet, doPost, doPut, doDelete, doTrace, and doOptions Called by the HTTPServlet's service method based on HTTP request Each returns HTTP_BAD_REQUEST error response

11 Get & Post Similarities GET and POST methods look the same to servlets Can override doGet and doPost like this to perform common operations: public void doGet(HttpServletRequest req, HttpServletResponse res) { doGetPost(req, res); } public void doPut(HttpServletRequest req, HttpServletResponse res) { doGetPost(req, res); } public void doGetPut(HttpServletRequest req, HttpServletResponse res) { // Implement the common code here }

12 Simple Servlet import java.io.*; import javax.servlet.*; import javax.servlet.http.*; public class HelloWorld extends javax.servlet.http.HttpServlet { public void doGet(HttpServletRequest req, HttpServletResponse res) throws IOException { res.setContentType("text/html"); OutputStream out = res.getOutputStream(); PrintWriter pw = new PrintWriter(new BufferedWriter(new OutputStreamWriter(out))); pw.println (" Hello World "); pw.flush(); pw.close(); }

13 Running Servlets Jakarta/Apache Tomcat Supercedes Java Apache and JServ Macromedia JRun ServletExec Weblogic Borland Enterprise Application Server/JBuilder Java Servlet Development Kit (JSDK)

14 Single Threaded Example By default, uses shared threads Single instance of servlet shared by all requests One thread created for each request Class & instance variables are thread-unsafe; auto variables are thread- safe In some applications, you have to use single thread model, which guarantee that no two threads will execute concurrently in the servlet's service method Allows use of instance variables w/o synchronization This interface is deprecated in the latest servlet specification, since it doesn’t solve all thread safety issues public class HelloWorld extends javax.servlet.http.HttpServlet implements javax.servlet.SingleThreadModel { public void doGet(HttpServletRequest req, HttpServletResponse res) throws IOException { // Code here! }

15 Environment Access in HTTPServletRequest getContentLength() getContentType() getProtocol() getServerName() getServerPort() getRemoteAddr() getRemoteHost() getMethod() getServletPath() getPathInfo() getPathTranslated() getQueryString() getRemoteUser() getAuthType() getHeader(“HdrStr”)

16 Parameter Access in HTTPServletRequest GetScheme GetInputStream GetParameter GetParameterValues GetParameterNames GetReader GetCharacterEncoding GetContentType GetCookies GetRequestURI GetHeaderNames GetHeader getIntHeader, getDateHeader GetSession GetRequestedSessionId IsRequestedSessionIdValid isRequestedSessionIDFromCookie IsRequestedSessionIDFromUrl GetHeaderNames

17 HTTPResponse Methods GetOutputStream GetWriter GetCharacterEncoding SetContentLength SetContentType AddCookie ContainsHeader SendError SendRedirect SetHeader setIntHeader, setDateHeader SetStatus encodeURL, encodeRedirectURL

18 Session Tracking Many applications need to maintain state across a series of requests from the same user (or originating from the same browser), e.g., When clients at an on-line store add an item to their shopping cart, how does the server know what’s already in the cart When clients decide to proceed to checkout, how can the server determine which previously created shopping cart is theirs? HTTP is a stateless protocol Each time, a client talks to a web server, it opens a new connection Server does not automatically maintains “conversational state” of a user

19 Session Tracking Mechanisms Three mechanisms of session tracking Cookies URL rewriting Hidden form fields

20 What is Cookie Cookie is a small amount of information sent by a servlet to a web browser Saved by the browser, and later sent back to the server in subsequent requests A cookie has a name, a single value, and optional attributes (name/value pair) A cookie’s value can uniquely identify a client Server uses cookie’s value to extract information about the session from some location on the server

21 Cookie Servlet public class CookieTest extends javax.servlet.http.HttpServlet { public void doGet(HttpServletRequest req, HttpServletResponse res) throws IOException { OutputStream out = res.getOutputStream(); PrintWriter pw=new PrintWriter(new BufferedWriter(new OutputStreamWriter(out))); Cookie[] cookies = req.getCookies(); Cookie current = null; if(cookies != null) { for (int i=0;i<cookies.length;i++) { pw.println("name="+cookies[i].getName()); pw.println("value="+cookies[i].getValue()); pw.println("version="+cookies[i].getVersion()); if(cookies[i].getName().equals("cookie")) { current=cookies[i]; } pw.println(); } } int count=0; if(current != null) { count = Integer.parseInt(current.getValue()); res.addCookie(new Cookie("previouscookie",new integer(count).toString())); pw.println("Value stored in cookie = "+count); } res.addCookie(new Cookie("cookie",new Integer(++count).toString())); pw.flush(); pw.close(); } }

22 Cookies as Session Tracking Mechanism Advantage Very easy to implement Highly customable Persist across browser shut-downs Disadvantage Users may turn off cookies from privacy or security reason Not quite universal browser support

23 URL Rewriting URLs can be rewritten or encoded to include session information URL rewriting usually includes a session ID Session ID can be sent as an added parameters: http://.../servlet /Rewritten?sessionid=678

24 URL Rewriting as Session Tracking Advantages Users remain anonymous There are universally supported Disadvantages Tedious to rewrite all URLs Only works for dynamically created documents

25 Hidden Form Fields Hidden form fields do not display in the browser, but can be sent back to the server by submit Fields can have identification (session id) or just something to remember Servlet reads the fields using request.getParameter()

26 Hidden Form Fields as Session Tracking Advantages Universally supported Allow anonymous users Disadvantages Only works for a sequence of dynamically generated forms Breaks down with static documents, emailed documents, bookmarked documents Cannot support browser shutdown

27 Steps of Doing Session Tracking Programmers have to do the following steps in order to use the aforementioned tracking mechanisms: Generating and maintaining a session id for each session Passing session id to client via either cookie or URL Extracting session id information either from cookie or URL Creating and maintaining a hashtable in which session id and session information are stored Coming up with a scheme in which session information can be added or removed These mechanisms can pass “session id”, but do not provide high-level programming APIs do not provide a framework from managing sessions

28 “Session Tracking” features of Servlet Provides higher-level API for session tracking Built on top of cookie or URL rewriting Servlet container maintains Internal hashtable of session ids Session information in the form of HttpSession Provides a simple API for adding and removing session information (attributes) to HttpSession Could automatically switch to URL rewriting if cookies are unsupported or explicitly disabled

29 HttpSession To get a user’s existing or new session object: HttpSession session = request.getSession(true)  flag = true to create a new session if none exists HttpSession is java interface containing methods to  View and manipulate information about a session, such as the session identifier, creation time, and last accessed time  Bind objects to sessions, allowing user information to persist across multiple user connections To Store and retrieve of attribute session.setAttribute(“cartItem”, cart) session.getAttribute(“cartItem”) All session data are kept on the server Only session ID sent to client

30 Sample HTTP Session public class SessionServlet extends HttpServlet { public void doGet(HttpServletRequest req, HttpServletResponse res) throws IOException { res.setContentType("text/html"); OutputStream out = res.getOutputStream(); PrintWriter pw = new PrintWriter(new OutputStreamWriter(out)); HttpSession session = req.getSession(false); if (session == null) { session=req.getSession(true); session.putValue ("VisitCount", "1"); } pw.println(" "); pw.println("session.isNew()="+session.isNew()); pw.println("session.getCreationTime()="+ new java.util.Date( session.getCreationTime())); pw.println("session.getID()="+session.getId()); pw.println("session.getLastAccessedTime()=" + new java.util.Date(session.getLastAccessedTime())); String strCount = (String) session.getValue("VisitCount"); pw.println("No. of times visited = " + strCount); int count = Integer.parseInt(strCount); count++; session.putValue("VisitCount", Integer.toString(count)); pw.println (" "); pw.flush(); }

31 Session Timeout Used when an end-user can leave the browser without actively closing a session Session usually timeout after 30 minutes of inactivity Product specific A different timeout may be set  getMaxInactiveInterval()  setMaxInactiveInterval()

32 Issues with “Stale” Session Objects The number of “stale” session objects that are in “to be timed out” could be large and affect system performance, for example, 1000 users with average 2 minutes session time, thus 15000 usrs during a period of 30 minutes 4K bytes of data per session 15000 sessions * 4K = 60M bytes of session data – just for one application

33 Session Invalidation Can be used by servlet programmer to end a session proactively by calling invalidate() When a user at the browser clicks on “logout” button When business logic ends a session Caution: a session object could be shared by multiple servlet/JSP-pages and invalidating it could destroy data that other servlet/JSP-pages are using

34 HttpSession Methods Object getAttribute(String) – Value for the given name Enumeration getAttributeNames() - All the names of all attributes in the session long getCreationTime() - Time at which this session was created String getId() - Identifier assigned to this session long getLastAccessedTime() - Last time the client sent a request carrying the identifier assigned to the session int getMaxInactiveInterval() - Max time (in seconds) between between requests that the session will be kept ServletContext getServletContext() - ServletContext for session void invalidate() - Invalidates the session boolean isNew() - true if it has been created by the server (client has not yet acknowledged joining the session) void setAttribute(String, Object) - Sets the value for the given name void removeAttribute(String) - Removes the value for the given name void setMaxInactiveInterval(int) - Sets the maximum interval between requests

Download ppt "Publishing Data on the Internet Client 1 DB Internet Client 2 Client n."

Similar presentations

Copyright © 2008 Pearson Education, Inc. Publishing as Pearson Addison-Wesley Chapter 10 Servlets and Java Server Pages.

Copyright © 2008 Pearson Education, Inc. Publishing as Pearson Addison-Wesley Chapter 10 Servlets and Java Server Pages.
7 Copyright © 2005, Oracle. All rights reserved. Maintaining State in J2EE Applications.

7 Copyright © 2005, Oracle. All rights reserved. Maintaining State in J2EE Applications.
4 Copyright © 2005, Oracle. All rights reserved. Creating the Web Tier: Servlets.

4 Copyright © 2005, Oracle. All rights reserved. Creating the Web Tier: Servlets.
1 Web Search Interfaces. 2 Web Search Interface Web search engines of course need a web-based interface. Search page must accept a query string and submit.

1 Web Search Interfaces. 2 Web Search Interface Web search engines of course need a web-based interface. Search page must accept a query string and submit.
1 Servlets Based on Notes by Dave Hollinger & Ethan Cerami Also, the Online Java Tutorial by Sun.

1 Servlets Based on Notes by Dave Hollinger & Ethan Cerami Also, the Online Java Tutorial by Sun.
Objectives Ch. D - 1 At the end of this chapter students will: Know the general architecture and purpose of servlets Understand how to create a basic servlet.

Objectives Ch. D - 1 At the end of this chapter students will: Know the general architecture and purpose of servlets Understand how to create a basic servlet.
Servlets and a little bit of Web Services Russell Beale.

Servlets and a little bit of Web Services Russell Beale.
Liang, Introduction to Java Programming, Sixth Edition, (c) 2005 Pearson Education, Inc. All rights reserved. 0-13-148952-6 1 Chapter 34 Servlets.

Liang, Introduction to Java Programming, Sixth Edition, (c) 2005 Pearson Education, Inc. All rights reserved Chapter 34 Servlets.
Servlets CS-328 Dick Steflik. What is a servlet A Java application run on a thread of the webserver in response to an HTTP GET or POST request. The servlet.

Servlets CS-328 Dick Steflik. What is a servlet A Java application run on a thread of the webserver in response to an HTTP GET or POST request. The servlet.
Comp2513 Java Servlet Basics Daniel L. Silver, Ph.D.

Comp2513 Java Servlet Basics Daniel L. Silver, Ph.D.
Java Server and Servlet CS616 Team 9 Kim Doyle, Susan Kroha, Arunima Palchowdhury, Wei Xu.

Java Server and Servlet CS616 Team 9 Kim Doyle, Susan Kroha, Arunima Palchowdhury, Wei Xu.
All You Ever Wanted To Know About Servlets But Were Afraid to Ask.

All You Ever Wanted To Know About Servlets But Were Afraid to Ask.
Definition Servlet: Servlet is a java class which extends the functionality of web server by dynamically generating web pages. Web server: It is a server.

Definition Servlet: Servlet is a java class which extends the functionality of web server by dynamically generating web pages. Web server: It is a server.
Servlets Compiled by Dr. Billy B. L. Lim. Servlets Servlets are Java programs which are invoked to service client requests on a Web server. Servlets extend.

Servlets Compiled by Dr. Billy B. L. Lim. Servlets Servlets are Java programs which are invoked to service client requests on a Web server. Servlets extend.
Servlets. Our Project 3-tier application Develop our own multi-threaded server Socket level communication.

Servlets. Our Project 3-tier application Develop our own multi-threaded server Socket level communication.
Java Servlets. What Are Servlets? Basically, a java program that runs on the server Basically, a java program that runs on the server Creates dynamic.

Java Servlets. What Are Servlets? Basically, a java program that runs on the server Basically, a java program that runs on the server Creates dynamic.
Gayle J Yaverbaum, PhD Professor of Information Systems Penn State Harrisburg.

Gayle J Yaverbaum, PhD Professor of Information Systems Penn State Harrisburg.
Java Server Pages B.Ramamurthy. Topics for Discussion 8/20/20152 Inheritance and Polymorphism Develop an example for inheritance and polymorphism JSP.

Java Server Pages B.Ramamurthy. Topics for Discussion 8/20/20152 Inheritance and Polymorphism Develop an example for inheritance and polymorphism JSP.
1 Lecture 10 Server-side Programming: Java Servlets.

1 Lecture 10 Server-side Programming: Java Servlets.
Servlets, Sessions, and Cookies Lecture 8 cs193i – Internet Technologies Summer 2004 Kelly Shaw, Stanford University.

Servlets, Sessions, and Cookies Lecture 8 cs193i – Internet Technologies Summer 2004 Kelly Shaw, Stanford University.

Similar presentations

Ads by Google