loginservlet.java

电子商城

package com.lmh.servlet.font;

import java.io.IOException;

import javax.servlet.ServletException;
import javax.servlet.http.Cookie;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;

import com.lmh.dao.impl.OracleUserDAO;
import com.lmh.dao.vo.UserBean;
import com.lmh.pub.EncodingTool;

public class LoginServlet extends HttpServlet {

	public void doPost(HttpServletRequest request, HttpServletResponse response)
			throws ServletException, IOException {

		String title = "";
		String url = "";
		String content = "";

		UserBean user = null;
		HttpSession session = request.getSession();
		String varify = request.getParameter("varify");
		String varifyImg = (String) session.getAttribute("rand");

		String forward = request.getParameter("forward");
		String suser = request.getParameter("suser");
		String spwd = request.getParameter("spwd");

		OracleUserDAO userDao = new OracleUserDAO();
		user = userDao.searchUser(suser);

		if (varifyImg.equals(varify)) {

			if (user != null && user.getNlevel() == 9) {
				if (!suser.equals(user.getSuser())) {
					content = suser + "用户不存在!";
				} else if (!spwd.equalsIgnoreCase(user.getSpwd())) {
					content = "用户" + suser + "的密码不正确，请输入正确密码!";
				} else if (user.getSlock().equals("1")) {
					content = "该用户已被冻结，请联系管理员!";
				}

				if (content != null && content.length() != 0) {
					title = "登陆失败";
					url = "/lmhshop/font/login.jsp?forward=" + forward;
				} else {

					// 用户名写入到客户端cookie
					Cookie cookie = new Cookie("login_name", suser);
					cookie.setMaxAge(60 * 60 * 24 * 360);
					cookie.setPath("/");
					response.addCookie(cookie);

					userDao.updateUserForUp(suser);
					session.setAttribute("userBean", user);

					title = "登陆成功";
					content = "恭喜" + suser + "，你已成功登陆！";
					if (forward == null || forward.equals("")) {
						url = "/lmhshop/font/user/userInfo.jsp";
					} else {
						url = "/lmhshop" + forward;
					}

				}

			} else {

				if (user != null && user.getNlevel() != 9) {
					content = suser + "为管理员账号，不允许登陆前台！";
				} else {
					content = suser + "用户不存在!";
				}

				title = "登陆失败";
				url = "/lmhshop/font/login.jsp?forward=" + forward;
			}
			session.removeAttribute("rand");
		}else{
			title = "登陆失败";
			content = "验证码错误，请重新登陆！";
			url = "/lmhshop/font/login.jsp?forward=" + forward;
		}
		content = content + "本页面将在5秒后自动跳转";

		title = EncodingTool.encoder(title);
		content = EncodingTool.encoder(content);
		url = EncodingTool.encoder(url);

		response.sendRedirect("/lmhshop/publicInfo.jsp?title=" + title
				+ "&url=" + url + "&content=" + content);
	}
}