userloginmanageimpl.java

本代码是一个权限管理系统源代码

package com.seavision.PermissionManage.components;

import java.sql.Connection;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.sql.Statement;
import java.util.ArrayList;
import java.util.List;
import java.util.Vector;

import net.sf.hibernate.HibernateException;

import com.seavision.PermissionManage.help.HibernateUtil;
import com.seavision.PermissionManage.vo.UserLoginVO;

/**
 * 获得登录用户信息
 */
public class UserLoginManageImpl {	
	public UserLoginVO getUserLoginVO(String userName, String userPassWord) {
		Connection con = HibernateUtil.getConnection();//数据库链接
		Statement stat = null;//句柄
		ResultSet rs = null;//结果集
		UserLoginVO userLoginVO = null;//登录用户对象
		int userId;//用户编号
		Vector function = new Vector();;//功能点路径
		try {
			stat = con.createStatement();
			String Sql = "select users.userId as userId," +
						    	"users.userName as userName," +
						    	"users.userPassWord as userPassWord," +
						    	"users.sex as sex," +
						    	"users.duty as duty," +
						    	"users.Email as Email," +
						    	"users.Mk as Mk," +
						    	"users.userState as userState," +
						    	"users.companyId as companyId," +
						    	"users.departmentId as departmentId," +
						    	"company.companyName as companyName," +
						    	"company.companyType as companyType," +
						    	"department.departmentName as departmentName," +
						    	"department.departmentType as departmentType " +
						    	"from users,company,department " +
						    	"where users.companyId = company.companyId and " +
						    	"users.departmentId = department.departmentId and " +
						    	"users.userName = '"+userName+"' and " +
						    	"users.userPassWord = '"+userPassWord+"'";	
			

			System.out.println(Sql);
			rs = stat.executeQuery(Sql);			
			//获得用户信息
			while(rs.next()){
				userLoginVO = new UserLoginVO();
				userLoginVO.setUserId(Integer.parseInt(rs.getString("userId")));
				userLoginVO.setUserName(rs.getString("userName"));
				userLoginVO.setUserPassWord(rs.getString("userPassWord"));
				userLoginVO.setSex(rs.getString("sex"));
				userLoginVO.setDuty(rs.getString("duty"));
				userLoginVO.setEmail(rs.getString("Email"));
				userLoginVO.setCompanyId(Integer.parseInt(rs.getString("companyId")));
				userLoginVO.setDepartmentId(Integer.parseInt(rs.getString("departmentId")));
				userLoginVO.setMk(Integer.parseInt(rs.getString("MK")));
				userLoginVO.setUserState(Integer.parseInt(rs.getString("userState")));
				userLoginVO.setCompanyName(rs.getString("companyName"));
				userLoginVO.setCompanyType(rs.getString("companyType"));
				userLoginVO.setDepartmentName(rs.getString("departmentName"));
				userLoginVO.setDepartmentType(rs.getString("departmentType"));
			}
			//获得用户功能点
			if(userLoginVO != null){
				userId = userLoginVO.getUserId();	
				String sql = "SELECT url FROM userandrole ur,functionandrole fr,functionn f WHERE " + String.valueOf(userId) + " = ur.userId AND ur.roleId = fr.roleId AND fr.functionName = f.functionName";
				rs = stat.executeQuery(sql);
				while(rs.next()){					
					function.addElement((String)rs.getString("url"));
				}
				userLoginVO.setUserFunction(function);
			}else{
				return null;
			}	

		} catch (SQLException e) {
			// TODO Auto-generated catch block
			e.printStackTrace();
		}
		return userLoginVO;
	}
	
	public List getUserVOList(String companyId){
		List list = new ArrayList();
		try {
			list = HibernateUtil.queryHQL("from UserVO company where company.companyId = " + companyId);
		} catch (HibernateException e) {
			// TODO Auto-generated catch block
			e.printStackTrace();
		}		
		return list;
	}
	/**2008-01-24 修改UserLoginVO对象属性，添加公司和部门名称
	public UserLoginVO getUserLoginVO(String userName, String userPassWord) {
		Connection con = HibernateUtil.getConnection();//数据库链接
		Statement stat = null;//句柄
		ResultSet rs = null;//结果集
		UserLoginVO userLoginVO = null;//登录用户对象
		int userId;//用户编号
		Vector function = new Vector();;//功能点路径
		try {
			stat = con.createStatement();
			String Sql = "SELECT * FROM USERS WHERE userName = '"+userName+"' AND userPassWord = '"+userPassWord+"'";
			rs = stat.executeQuery(Sql);			
			//获得用户信息
			while(rs.next()){
				userLoginVO = new UserLoginVO();
				userLoginVO.setUserId(Integer.parseInt(rs.getString("userId")));
				userLoginVO.setUserName(rs.getString("userName"));
				userLoginVO.setUserPassWord(rs.getString("userPassWord"));
				userLoginVO.setSex(rs.getString("sex"));
				userLoginVO.setDuty(rs.getString("duty"));
				userLoginVO.setEmail(rs.getString("Email"));
				userLoginVO.setCompanyId(Integer.parseInt(rs.getString("companyId")));
				userLoginVO.setDepartmentId(Integer.parseInt(rs.getString("departmentId")));
				userLoginVO.setMk(Integer.parseInt(rs.getString("MK")));
				userLoginVO.setUserState(Integer.parseInt(rs.getString("userState")));
			}
			//获得用户功能点
			if(userLoginVO != null){
				userId = userLoginVO.getUserId();	
				String sql = "SELECT url FROM userandrole ur,functionandrole fr,functionn f WHERE " + String.valueOf(userId) + " = ur.userId AND ur.roleId = fr.roleId AND fr.functionName = f.functionName";
				rs = stat.executeQuery(sql);
				//System.out.println("sql=UserLoginManageImpl===="+sql);
				while(rs.next()){					
					function.addElement((String)rs.getString("url"));
				}
				userLoginVO.setUserFunction(function);
			}else{
				return null;
			}	
			//获得用户所在单位类型
			CompanyManageImpl companyManage = new CompanyManageImpl();
			CompanyVO companyVO = new CompanyVO();
			companyVO = companyManage.getCompany(userLoginVO.getCompanyId());
			userLoginVO.setType(companyVO.getCompanyType());
		} catch (SQLException e) {
			// TODO Auto-generated catch block
			e.printStackTrace();
		}
		return userLoginVO;
	}*/
}