loginservlet.java

酒店管理系统

package servlet;

import java.io.IOException;
import java.io.PrintWriter;
import database.connectDB;
import java.sql.ResultSet;
import java.sql.*;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

public class LoginServlet extends HttpServlet {

	/**
	 * Constructor of the object.
	 */
	public LoginServlet() {
		super();
	}

	/**
	 * Destruction of the servlet. <br>
	 */
	public void destroy() {
		super.destroy(); // Just puts "destroy" string in log
		// Put your code here
	}

	/**
	 * The doGet method of the servlet. <br>
	 *
	 * This method is called when a form has its tag value method equals to get.
	 * 
	 * @param request the request send by the client to the server
	 * @param response the response send by the server to the client
	 * @throws ServletException if an error occurred
	 * @throws IOException if an error occurred
	 */
	public void doGet(HttpServletRequest request, HttpServletResponse response)
			throws ServletException, IOException {


	}

	/**
	 * The doPost method of the servlet. <br>
	 *
	 * This method is called when a form has its tag value method equals to post.
	 * 
	 * @param request the request send by the client to the server
	 * @param response the response send by the server to the client
	 * @throws ServletException if an error occurred
	 * @throws IOException if an error occurred
	 */
	public void doPost(HttpServletRequest request, HttpServletResponse response)
			throws ServletException, IOException {
		
		PrintWriter out = response.getWriter();
		String staffID = request.getParameter("username");
		String password = request.getParameter("password");
		String bl;
		
		if(staffID == ""){
			response.sendRedirect("/hotel/login.jsp?errMsg=Please enter the staffID!");
		}
		
		try{
			connectDB con = new connectDB();
			String sql1 = "select staffID from staff where staffID = '"+staffID+"'";
			con.excuteQuery(sql1);
			if(!con.next()){
				response.sendRedirect("/hotel/login.jsp?errMsg=The staffID is not exist!");
			}else{
				String sql2 = "select password from staff where  staffID = '" + staffID + "'";
				con.excuteQuery(sql2);
				con.next();
				String pwd = con.getString(1);
				if(pwd.equals(password)){
					String sql3 = "select status from staff where staffID = '" + staffID + "';";
					con.excuteQuery(sql3);
					con.next();
					String status = con.getString("status");
					if(status.equals("经理")){//跳转到经理登陆界面
						response.sendRedirect("/hotel/manager.jsp");}
					else if(status.equals("柜员"))//跳转到普通员工登陆界面
						response.sendRedirect("/hotel/staff.jsp");
				}else
					response.sendRedirect("/hotel/login.jsp?errMsg=The password is wrong!");
			}

		}catch(Exception e){
			e.printStackTrace();
		}
	
	}

	/**
	 * Initialization of the servlet. <br>
	 *
	 * @throws ServletException if an error occure
	 */
	public void init() throws ServletException {
		// Put your code here
	}

}