📄 login.java~18~
字号:
package bookshop.run;
/**
* <p>管理用户登录的类 </p>
*/
import bookshop.util.*;
import java.sql.*;
public class login //extends DataBase
{
private String username; //登录用户名
private String passwd; //登录密码
private boolean isadmin; //是否管理员登录
private long userid=0; //用户ID号
private String sqlStr;
private ResultSet rs;
public login() throws Exception{
super();
username = "";
passwd = "";
isadmin = false;
}
public void finalize()
{
//super.finalize();
}
public String getUsername() {
return username;
}
public void setUsername(String newusername) {
username = newusername;
}
public String getPasswd() {
return passwd;
}
public void setPasswd(String newpasswd) {
passwd = newpasswd;
}
public boolean getIsadmin() {
return isadmin;
}
public void setIsadmin(boolean newIsadmin) {
isadmin = newIsadmin;
}
public long getUserid() {
return userid;
}
public void setUserid (long uid) {
userid = uid;
}
/**
* 获得查询用户信息的sql语句
* @return
*/
public String getSql() {
if (isadmin) {
sqlStr = "select adminpass from BookAdmin where adminuser = '" +
dataFormat.toSql(username) + "'";
// and adminpass = '" +
// dataFormat.toSql(passwd) + "'";
}else {
sqlStr = "select password, Id from shop_user where username = '" +
dataFormat.toSql(username) + "'";
// and password = '" + passwd + "'";
}
return sqlStr;
}
/**
* 执行查询
* @return
* @throws java.lang.Exception
*/
public boolean excute() throws Exception {
boolean flag = false;
DataBase db = new DataBase();
//db.connect();
//stmt = db.conn.createStatement ();
rs = db.stmt.executeQuery(getSql());
if (rs.next()){
if(!isadmin)
{
userid = rs.getLong("Id");
}
//flag = true;
// 这样比较避免了SQL注入
passwd = passwd.trim();
flag = passwd.equals(rs.getString(1).trim());
}
rs.close();
db.finalize();
return flag;
}
};
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -