login.java

数据库系统教材中附录的课程设计accomodation宿舍管理系统源码

package cn.kmp.accommodation.servlet;

import java.io.IOException;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.ServletException;
import javax.servlet.ServletConfig;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpSession;

import cn.kmp.accommodation.domain.UserInfo;
import cn.kmp.accommodation.service.*;

public class Login extends HttpServlet{
	private static final long serialVersionUID=-2264452574922395713L;
	private ServletConfig servletConfig=null;
	private String directorSuccessView=null;
	private String managerSuccessView=null;
	private String failureView=null;
	private String sessionUserInfo=null;
	private String auth_manager=null;
	private String auth_director=null;
	private String assistantSuccessView=null;
	private String auth_assistant=null;
	
	public void doPost(HttpServletRequest request,HttpServletResponse response)throws IOException,ServletException{
		directorSuccessView=request.getContextPath()+servletConfig.getInitParameter("directorSuccessView");
		managerSuccessView=request.getContextPath()+servletConfig.getInitParameter("managerSuccessView");
		failureView=request.getContextPath()+servletConfig.getInitParameter("failureView");
		assistantSuccessView=request.getContextPath()+servletConfig.getInitParameter("assistantSuccessView");
		sessionUserInfo=servletConfig.getInitParameter("sessionUserInfo");
		auth_manager=servletConfig.getInitParameter("manager_privilege");
		auth_director=servletConfig.getInitParameter("director_privilege");
		auth_assistant=servletConfig.getInitParameter("assistant_privilege");
		
		HttpSession session=request.getSession();
		UserInfoService userInfoService=ServiceFactory.getUserInfoService();
		
		String staffIdString=request.getParameter("staffId");
		int staffId=Integer.parseInt(staffIdString);
		String password=request.getParameter("password");
		String emptyStaffIdErr;
		String emptyPasswordErr;
		String wrongUserNameErr;
		String wrongPasswordErr;
		//验证用户名是否为空
		if(staffIdString==null){
			emptyStaffIdErr="emptyStaffId";
			request.setAttribute("err",emptyStaffIdErr);
			response.sendRedirect(failureView+"?err="+emptyStaffIdErr);
			return;
		}
		//验证密码是否为空
		if(password==null){
			emptyPasswordErr="emptyPassword";
			request.setAttribute("err",emptyPasswordErr);
			response.sendRedirect(failureView+"?err="+emptyPasswordErr);
			return;
		}
		//通过用户名获取userAuth
		UserInfo userInfo=userInfoService.getUserInfoByStaffId(staffId);
		//先验证是否存在该用户
		if(userInfo==null){
			wrongUserNameErr="wrongUserName";
			request.setAttribute("err",wrongUserNameErr);
			response.sendRedirect(failureView+"?err="+wrongUserNameErr);
			return;
		}
		//如果存在用户，再验证密码，如果密码通过则转到成功页面即navigation.jsp,否则转到登录页面
		if(userInfo.getPassword().equals(password)){
			session.setAttribute(sessionUserInfo,userInfo);
			if(userInfo.getPrivilege().equalsIgnoreCase(auth_manager)){
				response.sendRedirect(managerSuccessView);
			}
			if(userInfo.getPrivilege().equalsIgnoreCase(auth_director)){
				response.sendRedirect(directorSuccessView);
			}
			if(userInfo.getPrivilege().equalsIgnoreCase(auth_assistant)){
				response.sendRedirect(assistantSuccessView);
			}
			return;	
		}
		else{
			wrongPasswordErr="wrongPassword";
			request.setAttribute("err",wrongPasswordErr);
			response.sendRedirect(failureView+"?err="+wrongPasswordErr);
			return;	
		}
	}
	public void init(ServletConfig servletConfig) throws ServletException {
		this.servletConfig=servletConfig;
	}
}