1 package forum; 2 3 import java.io.*; 4 import javax.servlet.*; 5 import javax.servlet.http.*; 6 import java.sql.*; 7 import java.sql.Connection ; 8 import java.sql.Statement ; 9 import java.sql.ResultSet ; 10 import java.util.*; 11 12 public class Login extends HttpServlet { 13 14 DBConnectie db = new DBConnectie(Variable.getDb(),Variable.getDbLogin(),Variable.getDbPassword()); 15 16 public void doPost (HttpServletRequest request, HttpServletResponse response) 17 throws ServletException, IOException{ 18 19 PrintWriter out = response.getWriter(); 20 21 try{ 22 23 String loginUser = request.getParameter("username"); 24 String loginPass = request.getParameter("password"); 25 26 db.connect(); 27 28 String password = "null"; 29 String password2 = "zero"; 30 String type = "null"; 31 32 ResultSet rs = db.selectQuery( 33 "SELECT * "+ 34 "FROM forum_users "+ 35 "WHERE user_name =\"" + loginUser + "\""); 36 while(rs.next()){ 37 password = rs.getString("password"); 38 type = rs.getString("type"); 39 } 40 41 42 ResultSet rs2 = db.selectQuery( 43 "SELECT "+ 44 "password(\""+ loginPass +"\") password"); 45 while(rs2.next()){ 46 password2 = rs2.getString("password"); 47 } 48 49 50 if(password2.equals(password)){ 51 HttpSession session = request.getSession(true); 52 53 session.setAttribute("username",loginUser); 55 session.setAttribute("password",password); 60 session.setAttribute("type",type); 65 69 response.sendRedirect(Variable.getForumPath() + "index.jsp"); 70 }else{ 71 response.sendRedirect(Variable.getForumPath() + "info.jsp?action=wrongpass"); 72 } 73 74 75 db.close(); 76 77 }catch(Exception e){out.println(e);} 78 79 80 } 81 public void doGet (HttpServletRequest request, HttpServletResponse response) 82 throws ServletException, IOException{ 83 doPost(request, response); 84 } 85 86 } | Popular Tags |