user.java

这是尚学堂马士兵老师讲解的网上购物系统

package cn.edu.chu.user;

import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.sql.Statement;
import java.sql.Timestamp;
import java.util.ArrayList;
import java.util.Date;
import java.util.List;

import cn.edu.chu.*;
import cn.edu.chu.util.DB;

public class User {
	private int id;
	private String username;
	private String password;
	private String phone;
	private String addr;
	private Date rdate;
	public int getId() {
		return id;
	}
	public void setId(int id) {
		this.id = id;
	}
	public String getUsername() {
		return username;
	}
	public void setUsername(String username) {
		this.username = username;
	}
	public String getPassword() {
		return password;
	}
	public void setPassword(String password) {
		this.password = password;
	}
	public String getPhone() {
		return phone;
	}
	public void setPhone(String phone) {
		this.phone = phone;
	}
	public String getAddr() {
		return addr;
	}
	public void setAddr(String addr) {
		this.addr = addr;
	}
	public Date getRdate() {
		return rdate;
	}
	
	public void setRdate(Date rdate){
		this.rdate=rdate;
	}

	public void save() {
		Connection conn = DB.getConn();
		String sql = "insert into user values (null, ?, ?, ?, ?, ?)";
		PreparedStatement pstmt = DB.getStmt(conn, sql);
		try {
			pstmt.setString(1, username);
			pstmt.setString(2, password);
			pstmt.setString(3, phone);
			pstmt.setString(4, addr);
			pstmt.setTimestamp(5, new Timestamp(rdate.getTime()));
			System.out.println(sql);
			pstmt.executeUpdate();
		} catch (SQLException e) {
			e.printStackTrace();
		} finally {
			DB.close(pstmt);
			DB.close(conn);
		}

	}
	
	/*
	public static boolean userExists(String username){
		
		return false;
	}
	
	public static boolean isPasswordCorrect(String username,String password){
		
		return false;
	}
	*/
	
	public static User validate(String username ,String password) throws UserNotFoundException, PasswordNotCorrectException{
		Connection conn =null;
		ResultSet rs=null;
		User u=null;
		try {
			conn=DB.getConn();
			String sql="select * from user where username='"+username+"'";
			rs=DB.executeQuery(conn, sql);
System.out.println(sql);
			if(!rs.next()){
				throw new UserNotFoundException();
			}else if(!(rs.getString("password")).equals(password)){
				throw new PasswordNotCorrectException();
			}else{
				u=new User();
				u.setId(rs.getInt("id"));
				u.setUsername(rs.getString("username"));
				u.setPassword(rs.getString("password"));
				u.setPhone(rs.getString("phone"));
				u.setAddr(rs.getString("addr"));
				u.setRdate(rs.getTimestamp("rdate"));
			}
		} catch (SQLException e) {
			e.printStackTrace();
		}finally {
			DB.close(rs);
			DB.close(conn);
		}
		return u;	
	}
	
	public void update() {
		Connection conn = DB.getConn();
		String sql = "update user set phone = ?, addr = ?,password=?";
		PreparedStatement pstmt = DB.getStmt(conn, sql);
		try {
			pstmt.setString(1, phone);
			pstmt.setString(2, addr);
			pstmt.setString(3, password);
System.out.println(sql);
			pstmt.executeUpdate();
		} catch (SQLException e) {
			e.printStackTrace();
		} finally {
			DB.close(pstmt);
			DB.close(conn);
		}
	}

	

}