view_user.jsp

jsp留言板 对刚学的希望有帮助,程序很简单的

<%@ page language="java" import="db.*,java.sql.*,java.util.*" pageEncoding="GBK"%>
<%
String path = request.getContextPath();
String basePath = request.getScheme()+"://"+request.getServerName()+":"+request.getServerPort()+path+"/";
%>

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
  <head>
    <base href="<%=basePath%>">
    
    <title>查看用户 - GuestBook</title>
    
	<meta http-equiv="pragma" content="no-cache">
	<meta http-equiv="cache-control" content="no-cache">
	<meta http-equiv="expires" content="0">    
	<meta http-equiv="keywords" content="keyword1,keyword2,keyword3">
	<meta http-equiv="description" content="This is my page">
	<!--
	<link rel="stylesheet" type="text/css" href="styles.css">
	-->

  </head>
  
  <body>
    <%
    	String user_id=null;
		Cookie[] cks = request.getCookies();
    	for(int i=0;cks!=null && i<cks.length;i++){
    		if(cks[i].getName().equals("user_id")){
    			user_id = cks[i].getValue();
    		}
    	}
    	if(user_id == null){
    		response.sendRedirect("login.html");
    	}
    
    	//out.println(user_id);	//测试当前登录的User_ID
    	try{
    		Connection con = DBConnection.getConnection();
    		PreparedStatement stm = con.prepareStatement("select * from Users where Id='" + user_id + "' and Popedom='1'");
    		ResultSet rs1 = stm.executeQuery();
    		if(!rs1.next()){
    			out.println("对不起！您不是管理员，没有权限进行此操作！");
    		}
    		else{
    			stm = con.prepareStatement("select * from Users");
    			ResultSet rs2 = stm.executeQuery();
    			%>
    			用户列表
    			<br>
    			<br>
    			<a href="add_user.html">添加用户</a>

    			<table border="1" width="100%" style="border-collapse: collapse">
    			<tr>
    				<td>用户ID</td>
    				<td>名称</td>
    				<td>密码</td>
    				<td>权限</td>
    				<td>操作</td>
    			</tr>
    			<%
    			while(rs2.next()){
    			%>
    			<tr>
    				<td><%=rs2.getString("Id") %></td>
    				<td><%=rs2.getString("Name") %></td>
    				<td><%=rs2.getString("Pwd") %></td>
    				<td><%=rs2.getString("Popedom") %></td>
    				<td><a href="servlet/del_user?del_user_id=<%=rs2.getString("Id") %>" onClick="javascript:return confirm('警告!这将永久性删除此数据!')">删除</a></td>
    			</tr>
    			<%
    			}
    			%></table><%
    			
    			rs2.close();
    		}
    		
    		rs1.close();
    		con.close();
    		
    	}catch (SQLException e){
    		e.printStackTrace();
    	}
     %>
  </body>
</html>