loginevent.java~1~

用jsp做的一个简单的论文管理系统。由于时间关系

package stumanage.events;
import stumanage.beans.*;
import java.sql.*;
import java.util.ResourceBundle;
import javax.servlet.http.HttpServletRequest;
import java.io.IOException;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.ServletContext;
import javax.servlet.http.HttpSession;

public class LoginEvent  extends EventHandleBase {
    private boolean loginSuccess = false;
    private String roles = null;
    private RegInfo regInfo = new RegInfo();
    //private UserInfo user = new UserInfo();
  public LoginEvent() {
  }

  public void process (ServletContext sc,
                       HttpServletRequest request, HttpServletResponse response) throws IOException, ServletException {
    PreparedStatement pstmt;
    HttpSession session = request.getSession();
    Connection con = null;
    roles = request.getParameter("role");
    if ( (request.getParameter("userID") == null) ||
        (request.getParameter("password") == null) || (roles == null)) {
     regInfo.setInfo("请输入登录所需信息");
     return;
   }
   try {
      Class.forName("sun.jdbc.odbc.JdbcOdbcDriver");
      String dsn = "jdbc:odbc:info";
      System.out.println("jdbc:odbc:info");
      con = DriverManager.getConnection(dsn);
      String sql = new String();
      //String username = request.getParameter("username");
      //String password = request.getParameter("password");
      if(roles.equalsIgnoreCase("student")) {
        sql = "SELECT * FROM SInfo where (SNo = ?) AND (SPass=?);";
      }
      else {
        sql = "SELECT * FROM TInfo where (TNo = ?)AND(TPass=?); ";
      }
      System.out.println(roles);
      System.out.println(sql);
      pstmt = con.prepareStatement(sql);
      System.out.println("stmt = con.prepareStatement(sql);");
      pstmt.setString(1,request.getParameter("userID"));
      pstmt.setString(2,request.getParameter("password"));
      System.out.println("stmt.setString");
      ResultSet rs = pstmt.executeQuery();
      System.out.println("pstmt.executeQuery();");
      if(rs.next()) {
        String temp = rs.getString(1);
        System.out.print(temp);
        user.setUserID(temp);
        temp = rs.getString(2);
        System.out.print(temp);
        user.setUsername(temp);
        temp = rs.getString(3);
        user.setPassword(temp);
        user.setRole(roles);
      }
      //temp = rs.getString(4);
      //user.setUsername(temp);
      session.setAttribute("user",user);
      loginSuccess = true;
    } catch(Exception exc) {
      regInfo.setInfo("发生异常");
      session.setAttribute("user",null);
      System.out.println(regInfo.getInfo());
    }
    session.setAttribute("regInfo",regInfo);
  }

  /**
   * getURL
   *
   * @return String
   * @todo Implement this stumanage.events.EventHandleBase method
   */
  protected String getURL() {
    ResourceBundle rd = ResourceBundle.getBundle("URL");
    String url = new String();
    if (loginSuccess) {
      if (roles.equalsIgnoreCase("student")) {
        url = rd.getString("SLOGIN");
      }
      else {
        url = rd.getString("TLOGIN");
      }
    }
    if(url!=null)
      return url;
    else {
       url = rd.getString("REGERROR");
       return url;
    }

  }
}