»Ë»Ñ Æ÷·³
·Î±×ÀΠȸ¿ø°¡ÀÔ|¾ÆÀ̵ðºñ¹øã±â
°³¹ßÀÚÆ÷·³ ÀÔ´Ï´Ù.
  • ºÏ¸¶Å© ¾ÆÀÌÄÜ

spring ÆÄÀÏ ¾÷·Îµå ¹®ÀÇ µå¸³´Ï´Ù.2

  • Á¨Àå´Ô
  • µî·ÏÀÏ 2015-01-06 18:14
  • Á¶È¸¼ö 2437
ÀÌÁ¦ ¸· ½ºÇÁ¸µ ½ÃÀÛÇÏ°í °³¹ß ÇÏ°í Àִµ¥ ÆÄÀÏ ¾÷·Îµå °ü·Ã ÇÏ¿© ¹®ÀÇÁ» µå·Á º¾´Ï´Ù.

web.xml ¼³Á¤¿¡¼­

filter>
     filter-name>springSecurityFilterChain
     filter-class>org.springframework.web.filter.DelegatingFilterProxy
/filter>
filter-mapping>
     filter-name>springSecurityFilterChain
     url-pattern>/*
/filter-mapping>

filter>
    filter-name>multipartFilter
    filter-class>org.springframework.web.multipart.support.MultipartFilter
    init-param>
          param-name>multipartResolverBeanName
          param-value>multipartResolver
    /init-param>
/filter>
filter-mapping>
    filter-name>multipartFilter
    url-pattern>/*
/filter-mapping>
    
filter>
    filter-name>xssFilter
    filter-class>com.withus.commons.XSSFilter
/filter>
  
filter-mapping>
    filter-name>xssFilter
    url-pattern>/*
/filter-mapping>  

ÀÌ·¸°Ô µÇ¾î ÀÖ±¸¿ä

ÄÁÆ®·Ñ·¯¿¡¼­


  @RequestMapping(value="/site/updateLogoproc.do", method=RequestMethod.POST)
        public String updateLogo(MultipartHttpServletRequest mpRequest, @ModelAttribute("logoVO") LogoVO logoVO) throws Exception {


            //ÆÄÀϾ÷·Îµå
                            File dir = new File(prop.getProperty("LOGO_PATH"));
                
                            if (!dir.isDirectory()) {
                                    dir.mkdirs();
                            }
                            
                            Iterator it = mpRequest.getFileNames();
                
                         System.out.println(it.hasNext());                             // À̺κп¡¼­ °è¼ÓÇؼ­ false ·Î ³ª¿É´Ï´Ù.

        while (it.hasNext()) {
                                
                                        MultipartFile multiFile = mpRequest.getFile((String) it.next());



===================
web.xml ¿¡¼­ xssFilter ºÎºÐÀ» ÁÖ¼® ó¸®Çϸé Àß µË´Ï´Ù.

¶ÇÇÑ multipartFilter ¿Í xssFilter ºÎºÐÀÇ ¼ø¼­¸¦ ¹Ù²ã ÁÖ¸é
input type='file' ·Î ¼±¾ð µÈ ºÎºÐµé¿¡¼­
ÆÄÀÏ ¼±ÅÃÀ» ¾ÈÇϸé 82DC658993E7494FA9D86A6649F6153C ÀÌ·± ÆÄÀϵéÀÌ ¿Ã¶ó°©´Ï´Ù. (0¹ÙÀÌÆ®)

xss ´Â http://www.openeg.co.kr/383 ¿©±â¸¦ ÂüÁ¶ÇÏ¿© ¸¸µé¾ú½À´Ï´Ù.

°í¼ö´ÔµéÀÇ ´äº¯ ºÎŹ µå¸³´Ï´Ù  ¤Ì.¤Ð
°¨»çÇÕ´Ï´Ù.

0
 ÃßõÇϱ⠴ٸ¥ÀÇ°ß 0
 |
°øÀ¯¹öÆ°

´Ù¸¥ÀÇ°ß 0 Ãßõ 0 µÎºÀ
¾Æ...Àúµµ ¾ù±×Á¦ ¸¸µç ÆÄÀϾ÷·Îµå ÄÁÆ®·Ñ·¯Àִµ¥ ÂüÁ¶ÇѽÎÀÌÆ® Áý¿¡°¡¼­ ¸µÅ©·Î º¸³»µå¸±²²¿ä ¸ÖƼÆÄÆ®·Î ÆÄÀÏ¿©·¯°³º¸³»µµ 󸮰¡´ÉÇÑ ¼Ò½º°¡ ÀÖ´õ¶ó±¸¿ë~Áö±ÝÀº ¹ÛÀ̶ó¼­...À̵ûÁý°¡¸éÂÊÁöµå¸±²²¿ä^^
2015-01-09 Á¡¾ÆÀÌÄÜ
  1. ´ñ±ÛÁÖ¼Òº¹»ç

´Ù¸¥ÀÇ°ß 0 Ãßõ 0 µÎºÀ
ÂÊÂ´Ù ¿©±â¿¡ ³²±â¸é ´Ù¸¥ºÐµµ º¼ ¼ö ÀÖÀ»°Í °°¾Æ¼­ ¿©±â¿¡ ¸µÅ© ³²±æ²²¿ä. À̰ͺ¸°í Âü°íÇؼ­ ¹«³­ÇÏ°Ô ¸¸µé¾ú¾î¿ä
º°´Ù¸¥ ÇÊÅ;øÀÌ¿ä..Restful¼­ºñ½º ¸¸µé¶§ PUTÂÊ HttpPutForm¹«½¼ ÇÊÅÍ»ç¿ëÇÑ°Í ¸»°ï µû·Î ÇÊÅ;Ⱦ²°í ¸¸µé¾ú¾î¿ä
¾Æ·¡´Â ÆÄÀÏ ¾÷·Îµå½Ã ÂüÁ¶ÇÑ »çÀÌÆ®ÀÔ´Ï´Ù.!
http://www.journaldev.com/2573/spring-mvc-file-upload-example-tutorial-single-and-multiple-files
2015-01-10 Á¡¾ÆÀÌÄÜ
  1. ´ñ±ÛÁÖ¼Òº¹»ç
  • ¾Ë¸² ¿å¼³, »óó ÁÙ ¼ö ÀÖ´Â ¾ÇÇÃÀº »ï°¡ÁÖ¼¼¿ä.
©¹æ »çÁø  
¡â ÀÌÀü±Û¡ä ´ÙÀ½±Û ¸ñ·Ïº¸±â
»çÀÌÆ®¼Ò°³ ¿î¿µÂü¿© °Ô½ÃÁß´Ü¿äû ÀÌ¿ë¾à°ü °³ÀÎÁ¤º¸Ã³¸®¹æħ û¼Ò³âº¸È£Á¤Ã¥ ºÒ¹ýÃÔ¿µ¹°µî ½Å°í ±¤°í/Á¦ÈÞ ¸ÞÀϹ®ÀÇ »Ë»Ñä¿ë ´ÙÅ©¸ðµå
Copyright 2005-2024 ppomppu. All rights reserved