booksearch.jsp~70~

这是一个图书馆管理系统的jsp代码

<%@ page contentType="text/html; charset=gb2312" language="java" import="java.sql.*" errorPage="" %>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>booksearch</title>
<style type="text/css">
<!--
.style1 {font-family: "黑体"}
-->
</style>
</head>

<body>
<form name="form1" method="post" action="">
  <table width="80%" border="0" align="center" cellpadding="4" cellspacing="1" id="table">
    <tr>
      <td width="45%" align="right">title</td>
      <td><input name="title" type="text" id="title" size="10" maxlength="8"></td>
    </tr>
    <tr align="center">
      <td colspan="2"><span class="style1">
        <input name="enter" type="submit" id="enter" value="enter">
        <input name="reset" type="reset" id="reset" value="reset">
</span></td>
    </tr>
    <tr align="center">
      <td colspan="2"><input name="borrow" type="submit" id="borrow" value="borrow">
      <input name="return" type="submit" id="return" value="return"></td>
    </tr>
  </table>
</form>
<jsp:useBean id="Library" scope="session" class="login.Library">
</jsp:useBean>
<center>

<%
//java.util.Locale locale = request.getLocale();
//java.text.DateFormat dateFormat = java.text.DateFormat.getDateInstance(java.text.DateFormat.LONG,locale);

try{
  int flag=0,flag1=0;String studentnumber="";
  String id=Library.getid();
//  String title=request.getParameter("title");
Connection conn=Library.getConn();
Statement stmt,stmt1;
stmt = conn.createStatement();
stmt1 = conn.createStatement();
ResultSet rs2 = stmt.executeQuery("select * from borrowbook where id ='" + id + "'");
//ResultSet rs6 = pstmt1.executeQuery();
while(rs2.next()){
if(rs2.getString("returnmoney").equals("no")){
flag=1;
}
}
//out.println("<p>" + request.getParameter("title") + "</p>");
ResultSet rs3 = stmt.executeQuery("select * from user where id ='" + id + "'");
if(rs3.next()){
studentnumber = rs3.getString("studentnumber");
}
  if(request.getParameter("enter")!=null){
ResultSet rs = stmt.executeQuery("select * from book where title ='" + request.getParameter("title") + "'");
  while (rs.next()){

    out.println("<p>serialnumber = " + rs.getString("serialnumber") + "&nbsp; </p>");
    out.println("<p>sortnumber = " + rs.getString("sortnumber") + "&nbsp; </p>");
    out.println("<p>title = " + rs.getString("title") + "&nbsp; </p>");
    out.println("<p>author1 = " + rs.getString("author1") + "&nbsp; </p>");
    out.println("<p>author2 = " + rs.getString("author2") + "&nbsp; </p>");
    out.println("<p>author3 = " + rs.getString("author3") + "&nbsp; </p>");
    out.println("<p>cover = " + rs.getString("cover") + "&nbsp; </p>");
    out.println("<p>bookconcern = " + rs.getString("bookconcern") + "&nbsp; </p>");
    out.println("<p>publicday = " + rs.getString("publicday") + "&nbsp; </p>");
    out.println("<p>isbn = " + rs.getString("isbn") + "&nbsp; </p>");
    out.println("<p>times = " + rs.getString("times") + "&nbsp; </p>");
    out.println("<p>prize = " + rs.getString("prize") + "&nbsp; </p>");
    out.println("<p>innumber = " + rs.getString("innumber") + "&nbsp; </p>");
    out.println("<p>outnumber = " + rs.getString("outnumber") + "&nbsp; </p>");

  }

}
else if(request.getParameter("borrow")!=null && request.getParameter("title")!=null && flag==0){

//  stmt = conn.createStatement();
ResultSet rs5 = stmt.executeQuery("select * from book where title ='" + request.getParameter("title") + "'");
if(rs5.next()){
  int oldinbook = Integer.parseInt(rs5.getString("innumber"));
  int oldoutbook = Integer.parseInt(rs5.getString("outnumber"));
  String serialnumber=rs5.getString("serialnumber");
  String sortnumber=rs5.getString("sortnumber");
  if(oldinbook>0){

  String newinbook = "update book set innumber ='" + (oldinbook-1) +"' where title ='" + request.getParameter("title") + "'";


// stmt =conn .createStatement();
  stmt1.executeUpdate(newinbook);

  String newoutbook = "update book set outnumber ='" + (oldoutbook+1) +"' where title ='" + request.getParameter("title") + "'";


// stmt=conn.createStatement();
  stmt1.executeUpdate(newoutbook);
  out.println("<P>You succeed in borrowing this book.</p>");}else{response.sendRedirect("fail.jsp");
  }
//out.println("<p>" + request.getParameter("title") + "</p>");
//Statement stmt = conn.createStatement();
//ResultSet rs1 = stmt.executeQuery("select * from book where title ='" + request.getParameter("title") + "'");

//stmt = conn.createStatement();
//ResultSet rs3 = stmt.executeQuery("select * from user where id ='" + id + "'");
int trailnumber=Library.gettrailnumber();
  String insertborrowbook = "insert into borrowbook(trailnumber,serialnumber,sortnumber,title,id,studentnumber,borrowdata,shouldreturndata,returndata,overdata,fee,returnmoney) values('" + trailnumber + "','" + serialnumber + "','" + sortnumber +
   "','" + request.getParameter("title") + "','" + id + "','" + studentnumber + "','" + (new java.util.Date().getYear()*365 + new java.util.Date().getMonth()*31 + new java.util.Date().getDay()) + "','" +  (new java.util.Date().getYear()*365 + new java.util.Date().getMonth()*31 + new java.util.Date().getDay() + 6) + "','','0','0.00','yes')";
Library.settrailnumber(trailnumber);
//stmt=conn.createStatement();
   stmt1.execute(insertborrowbook);
}
  }else if(request.getParameter("return")!=null){

//stmt = conn.createStatement();
ResultSet rs4 = stmt.executeQuery("select * from borrowbook where id ='" + id + "' and title ='" + request.getParameter("title") + "'");

if(rs4.next()){
  /*  rs4.getString("title").equals(request.getParameter("title"));
    flag1=1;
    }
    if(flag1==1 && request.getParameter("title")!=null){*/


//stmt=conn.createStatement();
  stmt1.executeUpdate("update borrowbook set returndata = '" +  (new java.util.Date().getYear()*365 + new java.util.Date().getMonth()*31 + new java.util.Date().getDay()) + "' where title ='" + request.getParameter("title") + "'and id ='" + id + "'");


//stmt = conn.createStatement();
ResultSet rs6 = stmt.executeQuery("select * from book where title ='" + request.getParameter("title") + "'");
 while(rs6.next()){
  int oldinbook = Integer.parseInt(rs6.getString("innumber"));
  int oldoutbook = Integer.parseInt(rs6.getString("outnumber"));
  String newinbook = "update book set innumber ='" + (oldinbook+1) +"' where title ='" + request.getParameter("title") + "'";



  stmt1.executeUpdate(newinbook);

  String newoutbook = "update book set outnumber ='" + (oldoutbook-1) +"' where title ='" + request.getParameter("title") + "'";



  stmt1.executeUpdate(newoutbook);
  out.println("<p>You succeed in returning this book.</p>");
 }
    }
  }
}catch (Exception ex) {
  response.sendRedirect("fail.jsp");
ex.printStackTrace();}

%>
</center>
</body>
</html>