基于javaweb的网上电子书城项目(java+ssm+jsp+mysql)
运行环境
Java≥8、MySQL≥5.7、Tomcat≥8
开发工具
eclipse/idea/myeclipse/sts等均可配置运行
适用
课程设计,大作业,毕业设计,项目练习,学习演示等
功能说明
基于javaweb+jsp的网上电子书城项目(java+SSM+JSP+maven+Mysql)
项目描述:
spring mvc +jsp实现的简单书城项目,可以在支付宝沙箱内实现支付
运行环境:
jdk8+tomcat9+mysql+IntelliJ IDEA
项目技术:
spring+spring mvc+mybatis+jsp+maven
后台管理员图书管理代码:
@Controller
@RequestMapping(“/admin/book”)
@RequiresPermissions(“book-manage”)
public class AdminBookController {
@Autowired
private IBookInfoService bookInfoService;
@Autowired
private BookDescMapper bookDescMapper;
@Autowired
private IStoreService storeService;
@Value(“${image.url.prefix}”)
private String urlPrefix;
@RequestMapping(“toAddition”)
@RequiresPermissions(“book-add”)
public String toAddition() {
return “admin/book/add”;
/**
*/
@RequestMapping(“/addition”)
@RequiresPermissions(“book-add”)
public String addBook(BookInfo bookInfo, String bookDesc, MultipartFile pictureFile, HttpServletRequest request) throws Exception {
uploadPicture(bookInfo, pictureFile, request);
bookInfoService.saveBook(bookInfo, bookDesc);
return “redirect:/admin/book/list”;
/**
*/
@RequestMapping(value = “/list”)
@RequiresPermissions(“book-query”)
public String bookList(@RequestParam(defaultValue = “”, required = false) String keywords,
@RequestParam(value = “page”, defaultValue = “1”, required = false) int page,
HttpSession session,
Model model) {
keywords = keywords.trim();
Store store = (Store) session.getAttribute(“loginStore”);
if (store != null) {
PageInfo books = bookInfoService.findBookListByCondition(keywords, 0, page, 10, store.getStoreId());
model.addAttribute(“bookPageInfo”, books);
model.addAttribute(“keywords”, keywords);
} else {
model.addAttribute(“exception”, “您请求的资源不存在”);
return “exception”;
return “admin/book/list”;
/**
更新页面回显
@param bookId
@param model
@return
@throws Exception
*/
@RequestMapping(“/echo”)
@RequiresPermissions(“book-edit”)
public String echo(int bookId, Model model) throws BSException {
BookInfo bookInfo = bookInfoService.adminFindById(bookId);
BookDesc bookDesc = bookDescMapper.selectByPrimaryKey(bookInfo.getBookId());
model.addAttribute(“bookInfo”, bookInfo);
model.addAttribute(“bookDesc”, bookDesc);
return “admin/book/edit”;
@RequestMapping(“/update”)
@RequiresPermissions(“book-edit”)
public String updateBook(BookInfo bookInfo, String bookDesc, String keywords, MultipartFile pictureFile, HttpServletRequest request, RedirectAttributes ra) throws Exception {
uploadPicture(bookInfo, pictureFile, request);
BookInfo originBook = bookInfoService.findById(bookInfo.getBookId());
bookInfoService.updateBook(bookInfo, bookDesc);
//更新图片后,删除原来的图片
String realPath = request.getServletContext().getRealPath(“/”);
File uploadPic = new File(realPath + originBook.getImageUrl());
uploadPic.delete();
//重定向到书籍列表
ra.addAttribute(“keywords”, keywords);
return “redirect:/admin/book/list”;
@RequestMapping(“/deletion/{bookId}”)
@RequiresPermissions(“book-delete”)
public String deletion(@PathVariable(“bookId”) int bookId, String keywords, RedirectAttributes ra, HttpServletRequest request) throws BSException {
BookInfo bookInfo = bookInfoService.findById(bookId);
String realPath = request.getServletContext().getRealPath(“/”);
File uploadPic = new File(realPath + bookInfo.getImageUrl());
uploadPic.delete();
bookInfoService.deleteBook(bookId);
ra.addAttribute(“keywords”, keywords);
return “redirect:/admin/book/list”;
@RequestMapping(“/shelf”)
@RequiresPermissions(“book-shelf”)
public String bookOffShelf(int bookId, int isShelf, String keywords, RedirectAttributes ra) {
bookInfoService.changeShelfStatus(bookId, isShelf);
ra.addAttribute(“keywords”, keywords);
return “redirect:/admin/book/list”;
private void uploadPicture(BookInfo bookInfo, MultipartFile pictureFile, HttpServletRequest request) throws IOException {
if (pictureFile != null) {
if (!StringUtils.isEmpty(pictureFile.getOriginalFilename())) {
String realPath = request.getServletContext().getRealPath(“/” + urlPrefix);
//原始文件名称
String pictureFileName = pictureFile.getOriginalFilename();
//新文件名称
String newFileName = IDUtils.genShortUUID() + pictureFileName.substring(pictureFileName.lastIndexOf(“.”));
//上传图片
File uploadPic = new File(realPath + File.separator + newFileName);
//向磁盘写文件
pictureFile.transferTo(uploadPic);
bookInfo.setImageUrl(urlPrefix + File.separator + newFileName);
图书信息控制层:
@Controller
@RequestMapping(“/book”)
public class BookInfoController {
@Autowired
private IBookInfoService bookInfoService;
@Autowired
private BookDescMapper bookDescMapper;
/**
查询某一本书籍详情
@param bookId
@param model
@return
*/
@RequestMapping(“/info/{bookId}”)
public String bookInfo(@PathVariable(“bookId”) Integer bookId, Model model) throws BSException {
//查询书籍
BookInfo bookInfo = bookInfoService.findById(bookId);
//查询书籍推荐列表
List recommendBookList = bookInfoService.findBookListByCateId(bookInfo.getBookCategoryId(), 1, 5);
//查询书籍详情
BookDesc bookDesc = bookDescMapper.selectByPrimaryKey(bookId);
//增加访问量
bookInfoService.addLookMount(bookInfo);
Collections.shuffle(recommendBookList);
model.addAttribute(“bookInfo”, bookInfo);
model.addAttribute(“bookDesc”, bookDesc);
model.addAttribute(“recommendBookList”, recommendBookList);
return “book_info”;
/**
通过关键字和书籍分类搜索书籍列表
@param keywords
@return
*/
@RequestMapping(“/list”)
public String bookSearchList(@RequestParam(defaultValue = “”, required = false) String keywords,
@RequestParam(defaultValue = “0”, required = false) int cateId,//分类Id,默认为0,即不按照分类Id查
@RequestParam(defaultValue = “1”, required = false) int page,
@RequestParam(defaultValue = “6”, required = false) int pageSize,
Model model) {
keywords = keywords.trim();
PageInfo bookPageInfo = bookInfoService.findBookListByCondition(keywords, cateId, page, pageSize,0);//storeId为0,不按照商店Id查询
model.addAttribute(“bookPageInfo”, bookPageInfo);
model.addAttribute(“keywords”, keywords);
model.addAttribute(“cateId”, cateId);
return “book_list”;
用户管理控制层:
@Controller
@RequestMapping(“/user”)
public class UserController {
@Autowired
private IUserService userService;
@Autowired
private IMailService mailService;
@Autowired
private IStoreService storeService;
@Value(“${mail.fromMail.addr}”)
private String from;
@Value(“${my.ip}”)
private String ip;
private final String USERNAME_PASSWORD_NOT_MATCH = “用户名或密码错误”;
private final String USERNAME_CANNOT_NULL = “用户名不能为空”;
@RequestMapping(“/login”)
public String login(@RequestParam(value = “username”, required = false) String username,
@RequestParam(value = “password”, required = false) String password,
HttpServletRequest request, Model model) {
if (StringUtils.isEmpty(username) || StringUtils.isEmpty(password)) {
return “login”;
//未认证的用户
Subject userSubject = SecurityUtils.getSubject();
if (!userSubject.isAuthenticated()) {
UsernamePasswordToken token = new UsernamePasswordToken(username, password);
token.setRememberMe(false);//禁止记住我功能
try {
//登录成功
userSubject.login(token);
User loginUser = (User) userSubject.getPrincipal();
request.getSession().setAttribute(“loginUser”, loginUser);
Store store = storeService.findStoreByUserId(loginUser.getUserId());
request.getSession().setAttribute(“loginStore”, store);
SavedRequest savedRequest = WebUtils.getSavedRequest(request);
String url = “/”;
if (savedRequest != null) {
url = savedRequest.getRequestUrl();
if(url.contains(request.getContextPath())){
url = url.replace(request.getContextPath(),“”);
if(StringUtils.isEmpty(url) || url.equals(“/favicon.ico”)){
url = “/”;
return “redirect:” + url;
} catch (UnknownAccountException | IncorrectCredentialsException uae) {
model.addAttribute(“loginMsg”, USERNAME_PASSWORD_NOT_MATCH);
return “login”;
} catch (LockedAccountException lae) {
model.addAttribute(“loginMsg”, “账户已被冻结!”);
return “login”;
} catch (AuthenticationException ae) {
model.addAttribute(“loginMsg”, “登录失败!”);
return “login”;
} else {
//用户已经登录
return “redirect:/index”;
@RequestMapping(“/info”)
public String personInfo(){
return “user_info”;
/* @RequestMapping(“/login1”)
public String login1(@RequestParam(value = “username”, required = false) String username,
@RequestParam(value = “password”, required = false) String password,
Model model, HttpServletRequest request) {
if (StringUtils.isEmpty(username)) {
model.addAttribute(“loginMsg”, USERNAME_CANNOT_NULL);
return “login”;
if (StringUtils.isEmpty(password)) {
model.addAttribute(“loginMsg”, “密码不能为空”);
return “login”;
BSResult bsResult = userService.login(username, password);
//登录校验失败
if (bsResult.getData() == null) {
model.addAttribute(“loginMsg”, bsResult.getMessage());
return “login”;
//登录校验成功,重定向到首页
User user = bsResult.getData();
//置密码为空
user.setPassword(“”);
request.getSession().setAttribute(“user”, user);
return “redirect:/”;
*/
//shiro框架帮我们注销
@RequestMapping(“/logout”)
@CacheEvict(cacheNames=“authorizationCache”,allEntries = true)
public String logout() {
SecurityUtils.getSubject().logout();
return “redirect:/page/login”;
/**
注册 检验用户名是否存在
@param username
@return
*/
@RequestMapping(“/checkUserExist”)
@ResponseBody
public BSResult checkUserExist(String username) {
if (StringUtils.isEmpty(username)) {
return BSResultUtil.build(200, USERNAME_CANNOT_NULL, false);
return userService.checkUserExistByUsername(username);
/**
注册,发激活邮箱
@param user
@return
*/
@RequestMapping(“/register”)
public String register(User user, Model model) {
BSResult isExist = checkUserExist(user.getUsername());
//尽管前台页面已经用ajax判断用户名是否存在,
// 为了防止用户不是点击前台按钮提交表单造成的错误,后台也需要判断
if ((Boolean) isExist.getData()) {
user.setActive(“1”);
BSResult bsResult = userService.saveUser(user);
//获得未激活的用户
User userNotActive = (User) bsResult.getData();
/* try {
mailService.sendHtmlMail(user.getEmail(), “
“亲爱的” + user.getUsername() +
“,请您点击此链接前往激活”);
} catch (Exception e) {
e.printStackTrace();
model.addAttribute(“registerError”, “发送邮件异常!请检查您输入的邮箱地址是否正确。”);
return “fail”;
}*/
model.addAttribute(“username”, user.getUsername());
return “register_success”;
} else {
//用户名已经存在,不能注册
model.addAttribute(“registerError”, isExist.getMessage());
return “register”;
@RequestMapping(“/active”)
public String activeUser(String activeCode, Model model) {
BSResult bsResult = userService.activeUser(activeCode);
if (!StringUtils.isEmpty(bsResult.getData())) {
model.addAttribute(“username”, bsResult.getData());
return “active_success”;
} else {
model.addAttribute(“failMessage”, bsResult.getMessage());
return “fail”;
@RequestMapping(“/update”)
@ResponseBody
public BSResult updateUser(User user, HttpSession session){
User loginUser = (User) session.getAttribute(“loginUser”);
loginUser.setNickname(user.getNickname());
loginUser.setLocation(user.getLocation());
loginUser.setDetailAddress(user.getDetailAddress());
loginUser.setGender(user.getGender());
loginUser.setUpdated(new Date());
loginUser.setPhone(user.getPhone());
loginUser.setIdentity(user.getIdentity());
loginUser.setPhone(user.getPhone());
BSResult bsResult = userService.updateUser(loginUser);
session.setAttribute(“loginUser”, loginUser);
return bsResult;
@RequestMapping(“/password/{userId}”)
@ResponseBody
public BSResult changePassword(@PathVariable(“userId”) int userId,String oldPassword,String newPassword){
if(StringUtils.isEmpty(oldPassword) || StringUtils.isEmpty(newPassword)){
return BSResultUtil.build(400, “密码不能为空”);
return userService.compareAndChange(userId,oldPassword,newPassword);
订单管理控制层:
@Controller
@RequestMapping(“/order”)
public class OrderController {
@Autowired
private IOrderService orderService;
@Autowired
private ICartService cartService;
@Autowired
private IBookInfoService bookInfoService;
/**
填写订单信息页面
@param bookId
@param buyNum
@param request
@return
*/
@GetMapping(“/info”)
public String orderInfo(@RequestParam(required = false, defaultValue = “0”) int bookId,
@RequestParam(required = false, defaultValue = “0”) int buyNum,
HttpServletRequest request) throws BSException {
if (bookId != 0) {
//点了立即购买,放到request域中,也session的立即购买域中以区分购物车中的书籍
BookInfo bookInfo = bookInfoService.findById(bookId);
if (bookInfo != null) {
BSResult bsResult = cartService.addToCart(bookInfo, null, buyNum);
request.getSession().setAttribute(“buyNowCart”, bsResult.getData());
request.setAttribute(“cart”, bsResult.getData());
return “order_info”;
} else {
request.setAttribute(“exception”, “不好意思,书籍库存不足或不存在了!”);
return “exception”;
//没有点立即购买,购物车中的总金额大于0才让填写订单信息
Cart cart = (Cart) request.getSession().getAttribute(“cart”);
if (cart != null && cart.getTotal() > 0) {
return “order_info”;
} else {
return “cart”;
@GetMapping(“/payPage/{orderId}”)
public String toPay(@PathVariable(“orderId”) String orderId, Model model) {
BSResult bsResult = orderService.findOrderById(orderId);
if (bsResult.getCode() == 200) {
model.addAttribute(“order”, bsResult.getData());
return “payment”;
return “exception”;
@RequestMapping(“/deletion/{orderId}”)
public String deletion(@PathVariable(“orderId”) String orderId) {
BSResult bsResult = orderService.deleteOrder(orderId);
if (bsResult.getCode() == 200) {
return “redirect:/order/list”;
return “exception”;
/**
订单列表
@return
*/
@GetMapping(“/list”)
public String orderList(HttpServletRequest request) {
User loginUser = (User) request.getSession().getAttribute(“loginUser”);
List orderCustoms = orderService.findOrdersByUserId(loginUser.getUserId());
request.setAttribute(“orderCustoms”, orderCustoms);
return “order_list”;
/**
创建订单
@return
*/
@PostMapping(“/creation”)
public String createOrder(User userDTO, String express, int payMethod, HttpServletRequest request) {
//立即购买,优先创建订单
Cart buyNowCart = (Cart) request.getSession().getAttribute(“buyNowCart”);
User loginUser = (User) request.getSession().getAttribute(“loginUser”);
userDTO.setUserId(loginUser.getUserId());
userDTO.setZipCode(loginUser.getZipCode());
if (buyNowCart != null) {
BSResult bsResult = orderService.createOrder(buyNowCart, userDTO, express, payMethod);
if (bsResult.getCode() == 200) {
request.setAttribute(“order”, bsResult.getData());
cartService.clearCart(request, “buyNowCart”);
return “payment”;
} else {
request.setAttribute(“exception”, bsResult.getMessage());
return “exception”;
//普通购物车
Cart cart = (Cart) request.getSession().getAttribute(“cart”);
if (cart != null) {
BSResult bsResult = orderService.createOrder(cart, userDTO, express, payMethod);
if (bsResult.getCode() == 200) {
request.setAttribute(“order”, bsResult.getData());
cartService.clearCart(request, “cart”);
return “payment”;
} else {
request.setAttribute(“exception”, bsResult.getMessage());
return “exception”;
} else {
request.setAttribute(“exception”, “购物车为空!”);
return “exception”;
/**
确认收货
@param orderId
@return
*/
@RequestMapping(“/confirm/{orderId}”)
public String confirmReceiving(@PathVariable(“orderId”) String orderId, Model model) {
BSResult bsResult = orderService.confirmReceiving(orderId);
if (bsResult.getCode() == 200) {
return “redirect:/order/list”;
} else {
model.addAttribute(“exception”, bsResult.getMessage());
return “exception”;