/** checks database for this user */ private boolean realAuthentication(HttpServletRequest request, ConnectionPool conPool) throws SQLException { // user authentication is required! User user = (User) request.getSession().getAttribute(StringInterface.USERATTR); if (user == null) { return false; } Connection con = conPool.getConnection(); boolean authenticated = false; try { authenticated = userUtils.confirmUserWithEncrypted(user.getID(), user.getEncrypted(), con); } catch (Exception e) { throw new SQLException(e.getMessage()); } finally { conPool.free(con); con = null; } return authenticated; } // end realAuthentication