📄 login.java
字号:
package bookshop.run;
/**
* <p>管理用户登录的类 </p>
*/
import bookshop.util.*;
import java.sql.*;
public class login
{
private String username; //登录用户名
private String passwd; //登录密码
private boolean isadmin; //是否管理员登录
private long userid=0; //用户ID号
private String sqlStr;
private ResultSet rs;
public login() throws Exception
{
super();
username = "";
passwd = "";
isadmin = false;
}
public void finalize()
{
//super.finalize();
}
public String getUsername()
{
return username;
}
public void setUsername(String newusername)
{
username = newusername;
}
public String getPasswd()
{
return passwd;
}
public void setPasswd(String newpasswd)
{
passwd = newpasswd;
}
public boolean getIsadmin()
{
return isadmin;
}
public void setIsadmin(boolean newIsadmin)
{
isadmin = newIsadmin;
}
public long getUserid()
{
return userid;
}
public void setUserid (long uid)
{
userid = uid;
}
/**
* 获得查询用户信息的sql语句
* @return
*/
public String getSql()
{
if (isadmin)
{
sqlStr = "SELECT adminpass FROM BookAdmin WHERE adminuser = '" +
dataFormat.toSql(username) + "'";
// and adminpass = '" +
// dataFormat.toSql(passwd) + "'";
}
else
{
sqlStr = "SELECT password, Id FROM shop_user WHERE username = '" +
dataFormat.toSql(username) + "'";
// and password = '" + passwd + "'";
}
return sqlStr;
}
/**
* 执行查询
* @return
* @throws java.lang.Exception
*/
public boolean excute() throws Exception
{
boolean flag = false;
DataBase db = new DataBase();
//db.connect();
//stmt = db.conn.createStatement ();
rs = db.stmt.executeQuery(getSql());
if (rs.next())
{
if(!isadmin)
{
userid = rs.getLong("Id");
}
//flag = true;
// 这样比较避免了SQL注入
passwd = passwd.trim();
flag = passwd.equals(rs.getString(1).trim());
}
rs.close();
db.finalize();
return flag;
}
};
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -