modifypassword.jsp

可以让初学者有一个感性的认识

<HTML>
<%@page contentType="text/html;charset=GB2312"%>
<%@page import="java.sql.*" %>
<%@page import="Login" %>

<jsp:useBean id="login" class="Login" scope="session">
</jsp:useBean>

<%	if(session.isNew())
		response.sendRedirect("userLogin.jsp");
	String success=login.getSuccess();
	if(success==null)success="";
	if(!(success.equals("ok")))
		response.sendRedirect("userLogin.jsp");
%>

<BODY bgcolor=white><Font size=3>
<%@include file="head1.txt"%>

<P>修改密码，密码长度不能超过30个字符：
<%	String str=response.encodeURL("modifyPassword.jsp");
%>

<FORM action="<%=str%>" method=post>
	<BR>输入您的用户名：
	<BR><INPUT type="text" name="logname" value="<%=login.getLogname()%>">
	<BR>输入您的密码：
	<BR><INPUT type="password" name="password">
	<BR>输入您的新密码：
	<BR><INPUT type="password" name="newPassword1">
	<BR>请再输入一次新的密码：
	<BR><INPUT type="password" name="newPassword2">
	<BR><INPUT type="submit" value="提交" name="g">
</FORM>

<%!	public String getString(String s)
	{
		if(s==null)s="";
		try
		{
			byte a[]=s.getBytes("ISO-8859-1");
			s=new String(a);
		} catch(Exception e1){}
		return s;
	}
%>

<%	String logname=request.getParameter("logname");
	logname= getString (logname);

	String password=request.getParameter("password");
	password= getString (password);

	String newPassword1=request.getParameter("newPassword1");
	newPassword1= getString (newPassword1);

	String newPassword2=request.getParameter("newPassword2");
	newPassword2= getString (newPassword2);

	Connection con=null;
	Statement sql=null;
	try
	{
		Class.forName("sun.jdbc.odbc.JdbcOdbcDriver");
	}catch(ClassNotFoundException e){}
	boolean modify=false;
	boolean ifEquals=false;
	ifEquals=(newPassword1.equals(newPassword2))&&(newPassword1.length()<=30);
	if(ifEquals==true)
	{
		try
		{
			con=DriverManager.getConnection("jdbc:odbc:shop","","");
			sql=con.createStatement();
			boolean bo1=logname.equals(login.getLogname());
			boolean bo2=password.equals(login.getPassword());
			if(bo1&&bo2)
			{
				modify=true;
				out.print("您的密码已经更新");
				String c="UPDATE user SET password="+"'"+newPassword1+"'"+" WHERE logname="+"'"+logname+"'";
				sql.executeUpdate(c);
			}
			con.close();
		}catch(SQLException e1){}
	}
	else
		out.print("您两次输入的密码不一致或长度过大");
	if(modify==false&&ifEquals==true)
		out.print("<BR>您没有输入密码帐号或<BR>您输入的账号或密码不正确"+logname+": "+password);
%>

</FONT>
</BODY>
</HTML>