updatesupplier.jsp

一个网站的系统主要是jsp的进存销的系统

<%@ page language="java" contentType="text/html; charset=gb2312"
    pageEncoding="gb2312"%>
<%@ page import="java.sql.DriverManager" %>
<%@ page import="java.sql.Connection" %>
<%@ page import="java.sql.PreparedStatement" %>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<%@page import="java.util.Date"%>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>Insert title here</title>
</head>
<body>
<%
   //设定获取的参数的字符编码
   request.setCharacterEncoding("gb2312");

   //获取参数的值
   String  txtCode= request.getParameter("txtCode");
   String txtName = request.getParameter("txtName");
   String txtCompany = request.getParameter("txtCompany");
   String txtLinkman = request.getParameter("txtLinkman");
   String txtTel = request.getParameter("txtTel");
   String txtAddress = request.getParameter("txtAddress");
   String txtPostCode = request.getParameter("txtPostCode");
   String txtFax = request.getParameter("txtFax");
   String txtEmail = request.getParameter("txtEmail");
   String txtHomepage = request.getParameter("txtHomepage");
   String txtCountry = request.getParameter("txtCountry");
   String txtProvince = request.getParameter("txtProvince");
   String txtCity = request.getParameter("txtCity");
   String txtNote = request.getParameter("txtNote");

   String DoType = request.getParameter("do");
   //写入数据
   try
   {
      Class.forName("oracle.jdbc.driver.OracleDriver");
      Connection  cn = DriverManager.getConnection("jdbc:oracle:thin:@localhost:1521:name","Scott","Tiger");

      String sqlStr;
      if (DoType.equals("New"))
      {
    	  sqlStr = "Insert into Supplier values(Seq_Supplier.NextVal,?,?,?,?,?,?,?,?,?,?,?,?,?,?,sysdate)";
      }


      else if (DoType.equals("Edit"))
      {
    	  sqlStr = "Update Supplier ";
    	  sqlStr += "Set Name ='"+txtName+"',";
          sqlStr += "Company ='"+txtCompany+"',";
          sqlStr += "Linkman ='"+txtLinkman+"',";
          sqlStr += "Tel ='"+txtTel+"',";
          sqlStr += "Address ='"+txtAddress+"',";
          sqlStr += "PostCode ='"+txtPostCode+"',";
          sqlStr += "Fax ='"+txtFax+"',";
          sqlStr += "Email ='"+txtEmail+"',";
          sqlStr += "Homepage ='"+txtHomepage+"', ";
          sqlStr += "Country ='"+txtCountry+"' ,";
          sqlStr += "Province ='"+txtProvince+"', ";
          sqlStr += "City ='"+txtCity+"', ";
          sqlStr += "Note ='"+txtNote+"' ";        //最后一行不要多了逗号,可以先在oracl中编译
    	  sqlStr += "Where Code = '"+txtCode+"'";

      }
      else
      {
    	  String id = request.getParameter("PID");
    	  sqlStr = "Delete From Supplier Where SupID = "+id;
      }
      PreparedStatement pstmt = cn.prepareStatement(sqlStr);

      if (DoType.equals("New"))
      {
    	  pstmt.setString(1,txtCode);
    	  pstmt.setString(2,txtName);
    	  pstmt.setString(3,txtCompany);
    	  pstmt.setString(4,txtLinkman);
    	  pstmt.setString(5,txtTel);
    	  pstmt.setString(6,txtAddress);
    	  pstmt.setString(7,txtPostCode);
    	  pstmt.setString(8,txtFax);
    	  pstmt.setString(9,txtEmail);
       	  pstmt.setString(10,txtHomepage);
       	  pstmt.setString(11,txtCountry);
       	  pstmt.setString(12,txtProvince);
       	  pstmt.setString(13,txtCity);
       	  pstmt.setString(14,txtNote);

    	  //pstmt.setString(15,session.getAttribute("UserName").toString());不能有因为没有这一列
      }
      else if (DoType.equals("Edit"))
      {

      }
      else
      {

      }
      pstmt.execute();

      out.println(sqlStr);
      pstmt.close();
      cn.close();
      response.sendRedirect("Supplier.jsp");
   }
   catch(Exception e)
   {
 	  out.println("系统出错了，呵呵~~~~，原因："+e.getMessage());
   }
%>
</body>
</html>