userop.java

Java实现权限管理

package cn.com.wap.relaOP;

import javax.servlet.http.HttpServletRequest;

import cn.com.wap.rela.User;
import cn.com.wap.role.DBManager;
import cn.com.wap.util.Strings;

import java.sql.*;
import java.lang.Integer;
import java.util.Vector;

public class UserOP {

	public boolean insert(HttpServletRequest request) {

		DBManager db = new DBManager();
		String username = "";
		username = Strings.uniCodetoGB(request.getParameter("userName"));
		String password = "";
		password = Strings.uniCodetoGB(request.getParameter("passWord"));
		int allyid = -1;
		allyid = Integer.parseInt(request.getParameter("allyID"));
		StringBuffer bf = new StringBuffer();
		bf.append("insert into WAP_TEST.T_User(userName,passWord,allyID) values ('"
				+ username + "',");
		bf.append("'" + password + "',");
		bf.append("'"+allyid+"')");

		// System.out.println("bfSQL____________: " + bf.toString());
		return db.execsql(bf.toString());
	}

	public Vector search(HttpServletRequest request) {

		String username = "";
//		int allyid = 0;
		String allyid = "";
		allyid = Strings.uniCodetoGB(request.getParameter("allyID"));
//		allyid = Integer.parseInt(request.getParameter("allyID"));
		System.out.println(allyid);
		username = Strings.uniCodetoGB(request.getParameter("userName"));

		StringBuffer bf = new StringBuffer();
		bf.append("select * from WAP_TEST.T_User ");
//		if(allyid.length() > 0){
//			if (username.equals("") == false) {
//				bf.append(" where userName='" + username + "'");
//				bf.append(" or allyID='" + allyid + "'");
//			}
//		}else if(username.endsWith("") == false){
//			bf.append(" where userName='" + username + "'");
//		}
		System.out.println("UserName.length: "+username.length());
		System.out.println("AllyID.length: "+allyid.length());
		if(username.length() > 0 && allyid.length() < 1){
			bf.append(" where userName='"+username+"'");
		}else if(username.length() > 0 && allyid.length() > 0){
			bf.append(" where userName='"+username+"'");
			bf.append(" and AllyID='"+allyid+"'");
		}else if(username.length() < 1 && allyid.length() > 0){
			bf.append(" where AllyID='"+allyid+"'");
		}else{
			
		}
		
		System.out.println(bf.toString());
		try {
			DBManager dba = new DBManager();
			dba.executesqlret(bf.toString());

			Vector vec = new Vector();
			while (dba.rs.next()) {
				User user = new User();
				user.setUserID(dba.rs.getInt(1));
				user.setUserName(dba.rs.getString(2));
				user.setPassWord(dba.rs.getString(3));
				user.setAllyID(dba.rs.getString(4));
				vec.add(user);
			}
			return vec;
		} catch (Exception ex) {
			ex.printStackTrace();
			// System.out.println("error*******************");
			return null;
		}

	}

	public boolean delete(HttpServletRequest request) {
		int userid = 0;
		userid = Integer.parseInt(request.getParameter("userID"));
		StringBuffer bf = new StringBuffer();
		bf.append("delete from WAP_TEST.T_User where userID = " + userid);
		DBManager dba = new DBManager();

		return dba.execsql(bf.toString());
	}

	public boolean update(HttpServletRequest request) {

		User user = new User();
		System.out.println("iiiiiiiiiii");
		user.setUserID(Integer.parseInt(request.getParameter("userID")));
		user.setUserName(Strings.uniCodetoGB(request.getParameter("userName")));
		user.setPassWord(Strings.uniCodetoGB(request.getParameter("passWord")));
		user.setAllyID(Strings.uniCodetoGB(request.getParameter("allyID")));
		System.out.println(user.getUserName());
		System.out.println(user.getPassWord());
		System.out.println(user.getAllyID());
		StringBuffer bf = new StringBuffer();

		bf.append("update WAP_TEST.T_User set userName='" + user.getUserName()
				+ "',");

		bf.append(" passWord='" + user.getPassWord() + "', ");
		bf.append(" allyID='"+user.getAllyID()+"' ");
		bf.append(" where userID='" + user.getUserID() + "'");
		System.out.println("UpdateSQL: "+bf.toString());
		DBManager dba = new DBManager();

		dba.execsql(bf.toString());
		return dba.execsql(bf.toString());
	}

	public Vector updateSearch(HttpServletRequest request) {

		int userid = -1;
		userid = Integer.parseInt(request.getParameter("userID"));
		StringBuffer bf = new StringBuffer();
		bf.append("select * from WAP_TEST.T_User where userID=" + userid);
		try {
			DBManager dba = new DBManager();
			dba.executesqlret(bf.toString());
			Vector vec = new Vector();
			while (dba.rs.next()) {
				User user = new User();
				user.setUserID(dba.rs.getInt(1));
				user.setUserName(dba.rs.getString(2));
				user.setPassWord(dba.rs.getString(3));
				user.setAllyID(dba.rs.getString(4));

				vec.add(user);
			}
			return vec;
		} catch (SQLException ex) {
			ex.printStackTrace();
			return null;
		}
	}

	public Vector search() {
		try {
			StringBuffer bf = new StringBuffer();
			bf.append("select * from WAP_TEST.T_User");
			DBManager dba = new DBManager();
			dba.executesqlret(bf.toString());
			Vector vec = new Vector();
			while (dba.rs.next()) {
				User user = new User();
				user.setUserID(dba.rs.getInt(1));
				user.setUserName(dba.rs.getString(2));
				user.setPassWord(dba.rs.getString(3));

				vec.add(user);
			}
			return vec;
		} catch (Exception ex) {
			ex.printStackTrace();
			return null;
		}
	}
}