我正在使用JAASRealm身份validation(在tomcat 7中)。 这是servlet的filter: private String loginPage = “welcome.jsp”; @Override public void doFilter(ServletRequest request, ServletResponse response, FilterChain filterChain) throws IOException, ServletException { if ((request instanceof HttpServletRequest) && (response instanceof HttpServletResponse)) { HttpServletRequest httpServletRequest = (HttpServletRequest) request; HttpServletResponse httpServletResponse = (HttpServletResponse) response; if (httpServletRequest.getUserPrincipal() == null) { // User is not logged in, redirect to login page. […]