10,606
社区成员
发帖
与我相关
我的任务
分享
package servlets;
import java.io.IOException;
import java.sql.SQLException;
import javax.servlet.Servlet;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import bean.JDBCBean;
public class AdminLogCheckServlet extends HttpServlet implements Servlet{
/**
*
*/
private static final long serialVersionUID = 1L;
public void doGet(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
doPost(request, response);
}
public void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
response.setContentType("text/html;charset=UTF-8");
String result = "";
JDBCBean jdbc = new JDBCBean();
// 获取用户名
String username = request.getParameter("username");
if (username == "" || username == null || username.length() > 20) {
try {
result = "请输入用户名(不超过20字符)!";
request.setAttribute("ErrorUserName", result);
response.sendRedirect("adminLogin.html");
} catch (Exception e) {
}
}
// 获取密码
String password = request.getParameter("password");
if (password == "" || password == null || password.length() > 20) {
try {
result = "请输入密码(不超过20字符)!";
request.setAttribute("ErrorPassword", result);
response.sendRedirect("adminLogin.html");
} catch (Exception e) {
}
}
try {
// SQL语句
String sql = "select * from tb_admin where username='" + username
+ "' and password = '" + password + "'";
jdbc.rs = jdbc.stmt.executeQuery(sql);// 返回查询结果
} catch (SQLException e) {
e.printStackTrace();
}
try {
if (jdbc.rs.next())// 如果记录集非空,表明有匹配的用户名和密码,登陆成功
{
// 登录成功后将username设置为session变量的UserName
// 这样在后面就可以通过 session.getAttribute("username") 来获取用户名,
// 同时这样还可以作为用户登录与否的判断依据
request.getSession().setAttribute("username", username);
response.sendRedirect("login_success.jsp");
} else {
// 否则登录失败
response.sendRedirect("login_failure.jsp");
}
} catch (SQLException e) {
e.printStackTrace();
}
try {
if (null != jdbc.rs) {
jdbc.rs.close();
}
if (null != jdbc.stmt) {
jdbc.stmt.close();
}
if (null != jdbc.connection) {
jdbc.connection.close();
}
} catch (SQLException e) {
e.printStackTrace();
}
}
}