userinfoadd.jsp.bak

本人用ＪＳＰ编写的一个网站程序

<%@ page import="java.sql.*,java.util.Calendar" %>
<%@ page contentType="text/html;charset=gb2312" %>

<%@ include file="conn.jsp" %>

<%
String userid = request.getParameter("userid");
userid = new String(userid.getBytes("ISO8859_1"),"GBK");
pass = request.getParameter("pass");
String name = request.getParameter("name");
name = new String(name.getBytes("ISO8859_1"),"GBK");
String certno = request.getParameter("certno");
//out.print(name+"/"+pass+"/"+certno);
String sex = request.getParameter("sex");
sex = new String(sex.getBytes("ISO8859_1"),"GBK");
String year = request.getParameter("year");
String month = request.getParameter("month");
String date = request.getParameter("date");
String love = request.getParameter("love");
love = new String(love.getBytes("ISO8859_1"),"GBK");
//String alias = request.getParameter("alias");
//alias = new String(alias.getBytes("ISO8859_1"),"GBK");
//String face = request.getParameter("face");
String officephone = request.getParameter("officephone");
String homephone = request.getParameter("homephone");
String mobilephone = request.getParameter("mobilephone");
String fax = request.getParameter("fax");
String email = request.getParameter("email");
String address = request.getParameter("address");
address = new String(address.getBytes("ISO8859_1"),"GBK");
String techpost = request.getParameter("techpost");
String position = request.getParameter("position");
position = new String(position.getBytes("ISO8859_1"),"GBK");
String workno = request.getParameter("workno");
workno = new String(workno.getBytes("ISO8859_1"),"GBK");
String department = request.getParameter("department");
department = new String(department.getBytes("ISO8859_1"),"GBK");
String clan = request.getParameter("clan");
clan = new String(clan.getBytes("ISO8859_1"),"GBK");
String priE = "0";
String priB = "0";
String priN = "0";


java.util.Calendar curTime = java.util.Calendar.getInstance();
int yr = curTime.get(Calendar.YEAR);
int mn = curTime.get(Calendar.MONTH);
mn = mn + 1;
int dt = curTime.get(Calendar.DAY_OF_MONTH);
int hr = curTime.get(Calendar.HOUR_OF_DAY);
int mi = curTime.get(Calendar.MINUTE);
int se = curTime.get(Calendar.SECOND);
String buildtime = yr+"-"+mn+"-"+dt+" "+hr+":"+mi+":"+se;


String birth = year+"-"+month+"-"+date;

String drec="no";
PreparedStatement prestmt=null;
/*if ((!name.equals("")) && (!pass.equals("")) && (!userid.equals(""))) {

	String sqlstmt = "SELECT * FROM userinfo WHERE userid='" + userid + "'";
	rs= stmt.executeQuery(sqlstmt);
	if (!rs.next()) {

    sqlstmt="insert  into  userinfo ( userid, name, password, sex, birth, certno, love,buildtime) values  (?,?,?,?,?,?,?,?)";  
    prestmt=conn.prepareStatement(sqlstmt);
    prestmt.setBytes(1,userid.getBytes("GBK"));
    prestmt.setBytes(2,name.getBytes("GBK"));
    prestmt.setBytes(3,pass.getBytes("GBK"));
    prestmt.setBytes(4,sex.getBytes("GBK"));
    prestmt.setBytes(5,birth.getBytes("GBK"));
    prestmt.setBytes(6,certno.getBytes("GBK"));
    prestmt.setBytes(7,love.getBytes("GBK"));
    prestmt.setBytes(8,buildtime.getBytes("GBK"));
    prestmt.executeUpdate();
	
    sqlstmt="insert  into  usercontact ( userid, officephone, homephone, mobilephone, fax, email, address) values  (?,?,?,?,?,?,?)";  
    prestmt=conn.prepareStatement(sqlstmt);
    prestmt.setBytes(1,userid.getBytes("GBK"));
    prestmt.setBytes(2,officephone.getBytes("GBK"));
    prestmt.setBytes(3,homephone.getBytes("GBK"));
    prestmt.setBytes(4,mobilephone.getBytes("GBK"));
    prestmt.setBytes(5,fax.getBytes("GBK"));
    prestmt.setBytes(6,email.getBytes("GBK"));
    prestmt.setBytes(7,address.getBytes("GBK"));
    prestmt.executeUpdate();
	
    sqlstmt="insert  into  userorg ( userid, techpost, position, workno, department, clan) values  (?,?,?,?,?,?)";  
    prestmt=conn.prepareStatement(sqlstmt);
    prestmt.setBytes(1,userid.getBytes("GBK"));
    prestmt.setBytes(2,techpost.getBytes("GBK"));
    prestmt.setBytes(3,position.getBytes("GBK"));
    prestmt.setBytes(4,workno.getBytes("GBK"));
    prestmt.setBytes(5,department.getBytes("GBK"));
    prestmt.setBytes(6,clan.getBytes("GBK"));
    prestmt.executeUpdate();
	
	sqlstmt="insert  into  userprivilege ( userid, priE, priB, priN) values  (?,?,?,?)";  
    prestmt=conn.prepareStatement(sqlstmt);
    prestmt.setBytes(1,userid.getBytes("GBK"));
    prestmt.setBytes(2,priE.getBytes("GBK"));
    prestmt.setBytes(3,priB.getBytes("GBK"));
    prestmt.setBytes(4,priN.getBytes("GBK"));
    prestmt.executeUpdate();

	} else {
		drec = "yes";
	}

	rs.close();

}
*/
String errinfo="";
if (name.equals("")) errinfo = "“姓名” "+errinfo;
if (pass.equals("")) errinfo = "“口令” "+errinfo;
if (userid.equals("")) errinfo = "“用户标识” "+errinfo;
if (!errinfo.equals("")) errinfo = errinfo + "不能为空。请重新录入!";
if (drec.equals("yes")) errinfo = "数据库中已有相同的用户标识，重新录入，或者进入修改。";
if (errinfo.equals("")) errinfo = "注册成功，您现在可以享有某些特殊服务了。";
%>

<html>
<head>
<title>无标题文档</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
</head>

<body bgcolor="#FFFFFF" text="#000000">
<div align="center"><%=errinfo%> </div>
</body>
</html>