Spring MVC会自动解析multipart/form-data请求,将multipart中的对象封装到MultipartRequest对象中,所以在Controller中使用@RequestParam注解就可以映射multipart中的对象了,如:@RequestParam("file") MultipartFile file

    1. import org.javaweb.utils.FileUtils;
    2. import org.javaweb.utils.HttpServletResponseUtils;
    3. import org.springframework.stereotype.Controller;
    4. import org.springframework.web.bind.annotation.RequestMapping;
    5. import org.springframework.web.bind.annotation.RequestParam;
    6. import org.springframework.web.bind.annotation.ResponseBody;
    7. import org.springframework.web.multipart.MultipartFile;
    9. import javax.servlet.http.HttpServletRequest;
    10. import javax.servlet.http.HttpServletResponse;
    11. import java.io.File;
    12. import java.io.IOException;
    13. import java.util.LinkedHashMap;
    14. import java.util.Map;
    16. import static org.javaweb.utils.HttpServletRequestUtils.getDocumentRoot;
    18. @Controller
    19. @RequestMapping("/FileUpload/")
    20. public class FileUploadController {
    22.     @RequestMapping("/upload.php")
    23.     public void uploadPage(HttpServletResponse response) {
    24.         HttpServletResponseUtils.responseHTML(response, "<!DOCTYPE html>\n" +
    25.                 "<html lang=\"en\">\n" +
    26.                 "<head>\n" +
    27.                 "    <meta charset=\"UTF-8\">\n" +
    28.                 "    <title>File upload</title>\n" +
    29.                 "</head>\n" +
    30.                 "<body>\n" +
    31.                 "<form action=\"/FileUpload/upload.do\" enctype=\"multipart/form-data\" method=\"post\">\n" +
    32.                 "    <p>\n" +
    33.                 "        用户名: <input name=\"username\" type=\"text\"/>\n" +
    34.                 "        文件: <input id=\"file\" name=\"file\" type=\"file\"/>\n" +
    35.                 "    </p>\n" +
    36.                 "    <input name=\"submit\" type=\"submit\" value=\"Submit\"/>\n" +
    37.                 "</form>\n" +
    38.                 "</body>\n" +
    39.                 "</html>");
    40.     }
    42.     @ResponseBody
    43.     @RequestMapping("/upload.do")
    44.     public Map<String, Object> upload(String username, @RequestParam("file") MultipartFile file, HttpServletRequest request) {
    45.         // 文件名称
    46.         String filePath   = "uploads/" + username + "/" + file.getOriginalFilename();
    47.         File   uploadFile = new File(getDocumentRoot(request), filePath);
    49.         // 上传目录
    50.         File uploadDir = uploadFile.getParentFile();
    52.         // 上传文件对象
    53.         Map<String, Object> jsonMap = new LinkedHashMap<String, Object>();
    55.         if (!uploadDir.exists()) {
    56.             uploadDir.mkdirs();
    57.         }
    59.         try {
    60.             FileUtils.copyInputStreamToFile(file.getInputStream(), uploadFile);
    62.             jsonMap.put("url", filePath);
    63.             jsonMap.put("msg", "上传成功!");
    64.         } catch (IOException e) {
    65.             jsonMap.put("msg", "上传失败,服务器异常!");
    66.         }
    68.         return jsonMap;
    69.     }
    71. }

    访问示例中的文件上传地址:http://localhost:8000/FileUpload/upload.do,如下图:
    4. 3. Spring MVC文件上传 - 图1
    后门成功的写入到了网站目录:
    4. 3. Spring MVC文件上传 - 图2