package contact; import java.io.IOException; import java.io.PrintWriter; import java.sql.Connection; import java.sql.ResultSet; import java.sql.Statement; import oracle.jdbc.pool.OracleDataSource; import javax.servlet.ServletException; import javax.servlet.http.HttpServlet; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; public class login extends HttpServlet { public void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { String address="/index.html"; String loginid = request.getParameter("loginid"); String password = request.getParameter("password"); String slogin; // from our database String spassword; // from our database String slastname; String sfirstname; String html=""; int sidnum; int slevel; PrintWriter out = response.getWriter(); if ((loginid!=null) && (loginid.length()!=0)) { String dbtime; String dbUrl = "jdbc:mysql://localhost/contact?user=zdouglas&password=cheese"; String dbClass = "com.mysql.jdbc.Driver"; //String query = "Select * FROM employee where login='"+loginid.trim()+"'"; //String connect_string = "jdbc:oracle:thin:cs4500/cs4500@//localhost:1521/orcl.oracle.com"; String connect_string = "jdbc:oracle:thin:cs4500/cs4500@//localhost:1521/cs4500"; // String query = "select login from user_info"; String login_query = "select password from user_info where login='" + loginid + "'"; // The connection to the database Connection conn=null; try { // See if we need to open the connection to the database if (conn == null) { // Create a OracleDataSource instance and set URL OracleDataSource ods = new OracleDataSource(); ods.setURL(connect_string); // Connect to the databse //out.println("Connecting to " + connect_string + "\n"); conn = ods.getConnection (); //out.println("Connected\n"); } // Create a statement Statement stmt = conn.createStatement (); // Execute the query // out.println("Executing query " + login_query + "\n"); ResultSet rset = stmt.executeQuery (login_query); out.println(""); out.println(""); out.println("eWallet Management System"); out.println(""); out.println(""); out.println("
"); out.println("

"); out.println("eWallet Management System


"); // Dump the result if (rset.next ()) { String db_pass = rset.getString(1); //out.println(db_pass + "\n"); if (rset.getString(1).equals(password)) { out.println(""); out.println(""); out.println(""); out.println("
"); out.println("

Logout

"); } else{ out.println("

An incorrect id/password combination was entered

"); out.println("

Restart Login

"); } } else { out.println("

An incorrect id/password combination was entered

"); out.println("

Restart Login

"); } out.println("

"); out.println("

"); out.println("
"); out.println(""); out.println(""); } catch (Exception e) { e.printStackTrace(); // Oops out.println(e.getMessage () + "\n"); } /*out.println(" "); out.println(""); out.println(""); out.println(""); out.println(""); out.println(""); out.println("");*/ /*out.println(""); out.println(""); out.println(""); out.println("
"); out.println(""); out.println(""); out.println("");*/ //try { /* Class.forName("com.mysql.jdbc.Driver"); Connection con = DriverManager.getConnection (dbUrl); Statement stmt = con.createStatement(); ResultSet rs = stmt.executeQuery(query); while (rs.next()) { slogin = rs.getString("login"); out.println(slogin); spassword = rs.getString("password"); if (password.compareTo(spassword)!=0) { out.println("INVALID PASSWORD"); } else { empbean bean = new empbean(); genbean rawhtml = new genbean(); bean.setLogin(slogin); slastname = rs.getString("lastname"); bean.setLastname(slastname); out.print(slastname); out.print(", "); sfirstname = rs.getString("firstname"); bean.setFirstname(sfirstname); sidnum = rs.getInt("id"); bean.setIdnum(sidnum); slevel = rs.getInt("level"); bean.setLevel(slevel); out.println(sfirstname); address = "/WEB-INF/main.jsp"; HttpSession session = request.getSession(); session.setAttribute("empdata",bean); topfivebean top5bean = new topfivebean(); request.setAttribute("top5bean", top5bean); html = html+"Quick Notes!
"; query="select notes.id, note, timestamp, firstname from notes,employee where notes.employeeid=employee.id and companyid=0 and contactid=0 order by id desc;"; rs=stmt.executeQuery(query); html=html+"
"; while(rs.next()) { html=html+""; } html=html+"
Entered ByDateNote
"+rs.getString("firstname")+""+rs.getString("timestamp")+""+rs.getString("note")+"
"; rawhtml.setRawdata(html); request.setAttribute("gendata", rawhtml); con.close(); } } RequestDispatcher dispatcher = request.getRequestDispatcher(address); dispatcher.forward(request, response); */ //} //catch(ClassNotFoundException e) { // e.printStackTrace(); //} //catch(SQLException e) { // e.printStackTrace(); //} } else { out.println(""); out.println(""); out.println("eWallet Management System"); out.println(""); out.println(""); out.println("
"); out.println("

"); out.println("eWallet Management System


"); out.println("

An incorrect id/password combination was entered

"); out.println("

Restart Login

"); out.println("

"); out.println("

"); out.println("
"); out.println(""); out.println(""); } } }