protected void doGet(HttpServletRequest req, HttpServletResponse resp)
throws ServletException, IOException {
String pathInfo = req.getPathInfo();
HttpSession session = req.getSession();
if (session == null) {
resp.setStatus(401);
return;
}
String username = (String) session.getAttribute("username");
if (username == null) {
resp.setStatus(401);
return;
}
Map userMap = loadUserSettingsMap(username);
if (userMap == null) {
resp.setStatus(401);
return;
}
if (pathInfo.equals("/")) {
resp.setContentType("application/json; charset=UTF-8");
resp.getWriter().write(JSONUtil.write(userMap));
return;
}
String key = pathInfo.substring(1);
String value = (String) userMap.get(key);
Map jsonObject = new HashMap();
jsonObject.put(key, value);
resp.setContentType("application/json; charset=UTF-8");
resp.getWriter().write(JSONUtil.write(jsonObject));
}
public void doPost(HttpServletRequest req, HttpServletResponse resp) throws IOException {
PrintWriter out = resp.getWriter();
String nombre = req.getParameter("nombre");
String apellido = req.getParameter("apellido");
String especie = req.getParameter("especie");
int edad = Integer.parseInt(req.getParameter("edad"));
String sexo = req.getParameter("sexo");
String descripcion = req.getParameter("descripcion");
String mensaje = req.getParameter("mensaje");
Adopcion p = new Adopcion(nombre, apellido, especie, edad, sexo, descripcion, mensaje);
PersistenceManager pm = PMF.get().getPersistenceManager();
try {
pm.makePersistent(p);
(getServletContext().getRequestDispatcher("/WEB-INF/jspUsuario/confirmar.jsp"))
.forward(req, resp);
} catch (Exception e) {
System.out.println(e);
resp.getWriter().println("Ocurrió un error, <a href='index07.html'>vuelva a intentarlo</a>");
} finally {
pm.close();
}
}
/* good2() reverses the bodies in the if statement */
private void good2(HttpServletRequest request, HttpServletResponse response) throws Throwable {
if (IO.static_returns_t()) {
Logger tcLog = Logger.getLogger("cwe_testcases_logger");
if (request.getParameter("username") == null) {
return;
}
String username = request.getParameter("username");
if (username.matches("[a-zA-Z0-9]*")) {
HttpSession session = request.getSession(true);
/* FIX: logged message does not contain session id */
tcLog.log(Level.FINEST, "Username: "******" Session ID:" + session.getId());
} else {
response.getWriter().println("Invalid characters");
}
} else {
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
Logger tcLog = Logger.getLogger("cwe_testcases_logger");
if (request.getParameter("username") == null) {
return;
}
String username = request.getParameter("username");
if (username.matches("[a-zA-Z0-9]*")) {
HttpSession session = request.getSession(true);
/* FLAW: leak session ID to debug log */
tcLog.log(Level.FINEST, "Username: "******" Session ID:" + session.getId());
} else {
response.getWriter().println("Invalid characters");
}
}
}
/* goodG2B() - use goodsource and badsink by moving BadSource and BadSink to after return */
private void goodG2B(HttpServletRequest request, HttpServletResponse response) throws Throwable {
String data;
{
java.util.logging.Logger log_good = java.util.logging.Logger.getLogger("local-logger");
/* FIX: Use a hardcoded string */
data = "foo";
if (data != null) {
/* This prevents \r\n (and other chars) and should prevent incidentals such
* as HTTP Response Splitting and HTTP Header Injection.
*/
URI u;
try {
u = new URI(data);
} catch (URISyntaxException e) {
response.getWriter().write("Invalid redirect URL");
return;
}
/* POTENTIAL FLAW: redirect is sent verbatim; escape the string to prevent ancillary issues like XSS, Response splitting etc */
response.sendRedirect(data);
return;
}
}
if (true) return; /* INCIDENTAL: CWE 571 Expression is Always True.
We need the "if(true)" because the Java Language Spec requires that
unreachable code generate a compiler error */
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
{
Logger log_bad = Logger.getLogger("local-logger");
/* read parameter from cookie */
Cookie cookieSources[] = request.getCookies();
if (cookieSources != null) {
data = cookieSources[0].getValue();
} else {
data = null;
}
if (data != null) {
/* This prevents \r\n (and other chars) and should prevent incidentals such
* as HTTP Response Splitting and HTTP Header Injection.
*/
URI u;
try {
u = new URI(data);
} catch (URISyntaxException e) {
response.getWriter().write("Invalid redirect URL");
return;
}
/* POTENTIAL FLAW: redirect is sent verbatim; escape the string to prevent ancillary issues like XSS, Response splitting etc */
response.sendRedirect(data);
return;
}
}
}
/* goodG2B1() - use goodsource and badsink by changing the first switch to switch(5) */
private void goodG2B1(HttpServletRequest request, HttpServletResponse response) throws Throwable {
String data;
switch (5) {
case 6:
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
{
/* POTENTIAL FLAW: sending login credentials information */
data = "Your username is: user1\nYour password is: w8KNdsa9\n";
}
break;
default:
{
/*FIX: send non-sensitive information */
data = "The weather is San Diego is 75 and sunny";
}
break;
}
switch (7) {
case 7:
{
PrintWriter out = null;
try {
out = response.getWriter();
/* POTENTIAL FLAW: transmitting login credentials across a possibly non-SSL connection */
out.println(data);
} catch (IOException e) {
IO.writeLine("There was a problem writing");
} finally {
if (out != null) {
out.close();
}
}
}
break;
default:
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
{
PrintWriter out = null;
try {
/* FIX: ensure the connection is secure */
if (request.isSecure()) {
out = response.getWriter();
out.println(data);
}
} catch (IOException e) {
IO.writeLine("There was a problem writing");
} finally {
if (out != null) {
out.close();
}
}
}
break;
}
}
public void doPost(HttpServletRequest req, HttpServletResponse resp) throws IOException {
/*String us = req.getParameter("usuario");
String pw = req.getParameter("passw");
Cuenta profSeverus = new Cuenta("severus","1234");
Cuenta profAlbus = new Cuenta("albus","6789");
Cuenta secreYayita = new Cuenta("yayita","condorito123");
PersistenceManager pm = PMF.get().getPersistenceManager();
try{
}catch(Exception e){
System.out.println(e);
PrintWriter out = resp.getWriter();
resp.setContentType("text/html");
resp.getWriter().println("Ocurrio un error, <a href='inicio.jsp'>vuelva a intentarlo</a>");
}finally{
pm.close();
}
*/
resp.setContentType("text/plain");
String us = req.getParameter("usuario");
String pw = req.getParameter("passw");
final PersistenceManager pm = PMF.get().getPersistenceManager();
if (us.equals("severus") && pw.equals("1234")) {
resp.getWriter().println("bienevenido profesor Severus Snape");
resp.sendRedirect("/bienvenidoP.jsp");
}
if (us.equals("albus") && pw.equals("6789")) {
resp.getWriter().println("bienevenido profesor Albus");
resp.sendRedirect("/bienvenidoP.jsp");
}
if (us.equals("yayita") && pw.equals("condorito123")) {
resp.getWriter().println("bienevenido secretaria yayita");
resp.sendRedirect("/bienvenidoS.jsp");
}
try {
/*if(us==cuenta.getUsuario()&&pw==cuenta.getContrasea()){
resp.getWriter().println("bienevenido alumno"+cuenta.getUsuario());
resp.sendRedirect("/bienvenidoA.jsp");
}*/
} catch (Exception e) {
System.out.println(e);
resp.getWriter().println("Ocurriñ un error, vuelva a intentarlo.");
resp.sendRedirect("/index.jsp");
} finally {
pm.close();
}
}
public void doGet(HttpServletRequest req, HttpServletResponse resp) throws IOException {
resp.setContentType("text/html");
resp.getWriter().println("<a href='/'>Back to home</a><br/>");
resp.getWriter().println("This is the admin page for making system updates.");
resp.getWriter()
.println("Please expect the system to take about 15 seconds to perform these actions.");
NascarConfig config = NascarConfigSingleton.get();
Race race = config.getRace();
resp.getWriter()
.println(
String.format(
"<h3>Current race: %d - %d (%s)</h3>",
race.getYear(), race.getWeek(), race.getRaceName()));
resp.getWriter().println("<form method='POST'>");
resp.getWriter()
.println(
"<p>Click the following magic button after the race results are in to prepare the system for the new week.</p>");
resp.getWriter().println("<input type='hidden' name='action' value='nextrace'/>");
resp.getWriter()
.println("<button type='submit'>Calculate Results and go to next Race</button></form>");
resp.getWriter().println("<form method='POST'>");
String lineupString = config.getCanEditLineup() ? "Lineups are unlocked" : "Lineups are locked";
resp.getWriter().println(lineupString);
resp.getWriter().println("<input type='hidden' name='action' value='toggleeditable'/>");
String lineupText = config.getCanEditLineup() ? "Lock lineups" : "Unlock lineups";
resp.getWriter().println("<button type='submit'>" + lineupText + "</button></form>");
resp.getWriter().println("<BR/>Last operation: " + LAST_OPERATION_MESSAGE);
}
/*
* (non-Javadoc)
*
* @see javax.servlet.http.HttpServlet#doPost(javax.servlet.http.
* HttpServletRequest, javax.servlet.http.HttpServletResponse)
*/
@Override
protected void service(HttpServletRequest req, HttpServletResponse resp)
throws ServletException, IOException {
// request uri contains application context path,/contextPaht/hello
resp.setContentType(MimeTypeUtils.TEXT_PLAIN.toString());
if (req.getRequestURI().endsWith("hello")) {
resp.getWriter().write("world.");
} else if (req.getRequestURI().endsWith("make")) {
resp.getWriter().write("love.");
}
}
/**
* 输出json到HTML
*
* @param response
* @param jsonString 要输出的字符串
*/
public void outJson(HttpServletResponse response, String jsonString) {
response.setContentType("text/html");
response.setCharacterEncoding("utf-8");
response.setHeader("Pragma", "no-cache");
response.setHeader("Cache-Control", "no-cache, must-revalidate");
response.setHeader("Pragma", "no-cache");
try {
response.getWriter().println(jsonString);
response.getWriter().flush();
response.getWriter().close();
} catch (IOException e) {
e.printStackTrace();
}
}
public void doPost(HttpServletRequest req, HttpServletResponse resp)
throws ServletException, IOException {
resp.getWriter().println("<HTML><BODY>");
resp.getWriter().println(this + ": <br>");
for (int c = 0; c < 10; c++) {
resp.getWriter().println("Counter = " + counter + "<BR>");
try {
Thread.currentThread().sleep((long) Math.random() * 1000);
counter++;
} catch (InterruptedException exc) {
exc.printStackTrace();
}
}
resp.getWriter().println("</BODY></HTML>");
}
private void generateNoRowsPage(HttpServletResponse response) throws Exception {
response.setContentType("text/html");
response.getWriter().println("<html><head><title>");
response.getWriter().println(XavaResources.getString("no_rows_report_message_title"));
response
.getWriter()
.println(
"</title></head><body style='font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;'>");
response.getWriter().println("<h1 style='font-size:22px;'>");
response.getWriter().println(XavaResources.getString("no_rows_report_message_title"));
response.getWriter().println("</h1>");
response.getWriter().println("<p style='font-size:16px;'>");
response.getWriter().println(XavaResources.getString("no_rows_report_message_detail"));
response.getWriter().println("</p></body></html>");
}
public void doGet(HttpServletRequest rq, HttpServletResponse rs) {
PrintWriter pw = null;
try {
pw = rs.getWriter();
rs.setContentType("application/json");
OperatorBLInterface operatorInterface = new Operator();
LoyaltyApplication loyaltyApplication = new LoyaltyApplication();
boolean found = loyaltyApplication.operatorExists(Integer.parseInt(rq.getParameter("code")));
pw.println("{");
pw.println("\"success\":true,");
pw.println("\"found\":" + found);
pw.println("}");
} catch (ApplicationException ae) {
System.out.println(ae);
pw.println("{");
pw.println("\"success\":false,");
pw.println("\"errorMessage\":" + "\"" + ae + "\"");
pw.println("}");
} catch (Exception e) {
System.out.println(e);
}
}
/* uses badsource and badsink */
public void bad(HttpServletRequest request, HttpServletResponse response) throws Throwable {
String data;
if (privateTrue) {
data = ""; /* initialize data in case id is not in query string */
/* POTENTIAL FLAW: Parse id param out of the URL querystring (without using getParameter()) */
{
StringTokenizer tokenizer = new StringTokenizer(request.getQueryString(), "&");
while (tokenizer.hasMoreTokens()) {
String token = tokenizer.nextToken(); /* a token will be like "id=foo" */
if (token.startsWith("id=")) /* check if we have the "id" parameter" */ {
data = token.substring(3); /* set data to "foo" */
break; /* exit while loop */
}
}
}
} else {
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run
* but ensure data is inititialized before the Sink to avoid compiler errors */
data = null;
}
if (data != null) {
/* POTENTIAL FLAW: Display of data in web page without any encoding or validation */
response.getWriter().println("<br>bad(): data = " + data);
}
}
public void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
PrintWriter writer = response.getWriter();
HttpSession session = request.getSession();
String username = request.getParameter("username");
String password = request.getParameter("password");
String type = request.getParameter("type");
System.out.println(username + password + type);
session.setAttribute("user", username);
try {
writer.println("<html>");
writer.println("<body bgcolor=green>");
writer.println("<center>");
ps.setString(1, username);
ps.setString(2, password);
ps.setString(3, type);
ResultSet rs = ps.executeQuery();
if (rs.next()) {
writer.println("<h1>LOGIN SUCCESSFUL</h1><br><br>");
writer.println("<a href=account.html>click here to see your account</a>");
} else {
writer.println("<h1>LOGIN FAILED</h1><br><br>");
writer.println("<a href=login.html>click here to login again</a>");
}
writer.println("</center>");
writer.println("</body>");
writer.println("</html>");
} catch (Exception e) {
e.printStackTrace();
}
}
/* goodG2B() - use goodsource and badsink */
public void goodG2B_sink(String data, HttpServletRequest request, HttpServletResponse response)
throws Throwable {
Hashtable<String, String> env = new Hashtable<String, String>();
env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
env.put(Context.PROVIDER_URL, "ldap://localhost:389");
DirContext ctx = new InitialDirContext(env);
String search =
"(cn=" + data + ")"; /* POTENTIAL FLAW: unsanitized data from untrusted source */
NamingEnumeration<SearchResult> answer = ctx.search("", search, null);
while (answer.hasMore()) {
SearchResult sr = answer.next();
Attributes a = sr.getAttributes();
NamingEnumeration<?> attrs = a.getAll();
while (attrs.hasMore()) {
Attribute attr = (Attribute) attrs.next();
NamingEnumeration<?> values = attr.getAll();
while (values.hasMore()) {
response.getWriter().println(" Value: " + values.next().toString());
}
}
}
}
public void doGet(HttpServletRequest req, HttpServletResponse resp) throws IOException {
resp.setContentType("text/html");
PrintWriter out = resp.getWriter();
UserService userService = UserServiceFactory.getUserService();
if (userService.isUserLoggedIn()) {
User user = userService.getCurrentUser();
out.println("<p>You are signed in as " + user.getNickname() + ". ");
if (userService.isUserAdmin()) {
out.println("You are an administrator. ");
}
out.println("<a href=\"" + userService.createLogoutURL("/") + "\">Sign out</a>.</p>");
} else {
out.println(
"<p>You are not signed in to Google Accounts. "
+ "<a href=\""
+ userService.createLoginURL(req.getRequestURI())
+ "\">Sign in</a>.</p>");
}
out.println(
"<ul>"
+ "<li><a href=\"/\">/</a></li>"
+ "<li><a href=\"/required\">/required</a></li>"
+ "<li><a href=\"/admin\">/admin</a></li>"
+ "</ul>");
SimpleDateFormat fmt = new SimpleDateFormat("yyyy-MM-dd hh:mm:ss.SSSSSS");
fmt.setTimeZone(new SimpleTimeZone(0, ""));
out.println("<p>The time is: " + fmt.format(new Date()) + "</p>");
}
public void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
try {
response.setContentType("text/html");
PrintWriter out = response.getWriter();
/*String n=request.getParameter("username");
out.print("Welcome "+n);*/
String name = request.getParameter("name");
String dob = request.getParameter("dob");
String address = request.getParameter("address");
String email = request.getParameter("email");
HttpSession session = request.getSession(true);
String userid = (String) session.getAttribute("theName");
int AccNo = 0;
String AccMsg = "";
DbCommunication db_comm = new DbCommunication();
AccNo = db_comm.accountCreation(name, dob, address, email, userid);
// db_comm.accountCreation(name,email);
AccMsg = "Account created successfully. Account number is:" + AccNo;
// out.println(AccMsg);
String redirectURL = "accountCreationPage.jsp";
response.sendRedirect(redirectURL);
session.setAttribute("AccCreationalMsgStatus", "set");
session.setAttribute("AccCreationalMsg", AccMsg);
} catch (Exception e) {
System.out.println(e);
}
}
public void doGet(HttpServletRequest req, HttpServletResponse res)
throws ServletException, IOException {
res.setContentType("text/html");
PrintWriter out = res.getWriter();
Enumeration values = req.getParameterNames();
String name = "";
String value = "";
String id = "";
while (values.hasMoreElements()) {
name = ((String) values.nextElement()).trim();
value = req.getParameter(name).trim();
if (name.equals("id")) id = value;
}
if (url.equals("")) {
url = getServletContext().getInitParameter("url");
cas_url = getServletContext().getInitParameter("cas_url");
}
HttpSession session = null;
session = req.getSession(false);
if (session != null) {
session.invalidate();
}
res.sendRedirect(cas_url);
return;
}
/* goodG2B() - use goodsource and badsink by changing the "if" so that
* both branches use the GoodSource */
private void goodG2B(HttpServletRequest request, HttpServletResponse response) throws Throwable {
String data;
if (IO.staticReturnsTrueOrFalse()) {
/* FIX: Use a hardcoded string */
data = "foo";
} else {
/* FIX: Use a hardcoded string */
data = "foo";
}
if (data != null) {
/* This prevents \r\n (and other chars) and should prevent incidentals such
* as HTTP Response Splitting and HTTP Header Injection.
*/
URI uri;
try {
uri = new URI(data);
} catch (URISyntaxException exceptURISyntax) {
response.getWriter().write("Invalid redirect URL");
return;
}
/* POTENTIAL FLAW: redirect is sent verbatim; escape the string to prevent ancillary issues like XSS, Response splitting etc */
response.sendRedirect(data);
return;
}
}
private void callMethodForMultiPart(HttpServletRequest req, HttpServletResponse resp)
throws Exception {
String pinfo = req.getPathInfo();
int pos = pinfo.indexOf('.');
String cname = pinfo.substring(1, pos).replace('/', '.');
String mname = pinfo.substring(pos + 1);
MultiPartMap map = new MultiPartMap();
FileItemIterator ite = new FileUpload().getItemIterator(req);
while (ite.hasNext()) {
FileItemStream item = ite.next();
if (item.isFormField()) {
map.put(item.getFieldName(), IOUtil.streamToString(item.openStream(), "UTF-8"));
} else {
FileItem val =
new FileItem(
item.getFileName(), item.getContentType(), IOUtil.streamToBytes(item.openStream()));
map.put(item.getFieldName(), val);
}
}
Class clazz = Class.forName(cname);
Class[] types = new Class[] {MultiPartMap.class};
Method method = clazz.getMethod(mname, types);
if (method == null) {
throw new RuntimeException("Not found method " + mname + "(Map)");
}
Object result = method.invoke(null, map);
resp.setContentType(MIME_HTML + ";charset=utf-8");
resp.getWriter().write(result.toString());
}
public void doGet(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
response.setContentType("text/html");
PrintWriter out = response.getWriter();
String title = "Showing Request Headers";
StringBuilder sb = new StringBuilder();
sb.append("<html>\n<head>\n");
sb.append("<title>" + title + "</title>\n");
sb.append("</head>\n");
sb.append("<body bgcolor='#FDF5E6'>\n");
sb.append("<h1 align='center'>" + title + "</h1>\n");
sb.append("<b> Request Method: </b>" + request.getMethod() + "<br>\n");
sb.append("<b> Request URI: </b>" + request.getRequestURI() + "<br>\n");
sb.append("<b> Request Protocol: </b>" + request.getProtocol() + "<br>\n");
sb.append("<table border=1 align='center'>\n");
sb.append("<tr bgcolor='#FFAD00'>\n");
sb.append("<th> Header Name </th><th> Header Value </th></tr>\n");
Enumeration headerNames = request.getHeaderNames();
while (headerNames.hasMoreElements()) {
String headerName = (String) headerNames.nextElement();
sb.append("<tr><td>" + headerName + "</td>");
sb.append("<td>" + request.getHeader(headerName) + "</td></tr>\n");
}
sb.append("</table>\n");
sb.append("</body></html>");
out.println(sb.toString());
out.close();
}
public void doGet(HttpServletRequest rq, HttpServletResponse rs) {
PrintWriter pw = null;
try {
pw = rs.getWriter();
rs.setContentType("application/json");
LoyaltyApplication loyaltyApplication = new LoyaltyApplication();
loyaltyApplication.removeOperator(Integer.parseInt(rq.getParameter("code")));
pw.println("{");
pw.println("\"success\":true,");
pw.println("\"message\":\"removed\"");
pw.println("}");
} catch (ApplicationException ae) {
System.out.println(ae);
pw.println("{");
pw.println("\"success\":false,");
pw.println("\"errorMessage\":" + "\"" + ae + "\"");
pw.println("}");
} catch (IOException ioe) {
System.out.println(ioe);
}
}
protected void doGet(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
response.setContentType("text/html; charset=UTF-8");
Tools.sendDisableCacheHeaders(response);
final PrintWriter out = response.getWriter();
out.println("<html>");
out.println(" <body>");
Cookie cookie = getCookie("carlos-cookie-test", request);
if (cookie == null) {
print(out, "No cookie set.");
} else {
print(out, "<b>Cookie ID</b>: " + cookie.getName() + "<br>");
print(out, "<b>Value</b>: " + cookie.getValue() + "<br>");
refreshCookie(cookie, response);
}
out.println(" <br>");
out.println(" <form method=\"post\">");
out.println(" <input type=\"submit\" value=\"create\" name=\"button\"><br><br>");
out.println(" <input type=\"submit\" value=\"delete\" name=\"button\"><br><br>");
out.println(" <input type=\"submit\" value=\"no-pass\" name=\"button\"><br>");
out.println(" </form>");
out.println(" </body>");
out.println("</html>");
out.close();
}
/* goodG2B2() - use goodsource and badsink by reversing statements in if */
private void goodG2B2(HttpServletRequest request, HttpServletResponse response) throws Throwable {
String data;
if (IO.STATIC_FINAL_TRUE) {
/* FIX: Use a hardcoded string */
data = "foo";
} else {
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run
* but ensure data is inititialized before the Sink to avoid compiler errors */
data = null;
}
if (data != null) {
/* This prevents \r\n (and other chars) and should prevent incidentals such
* as HTTP Response Splitting and HTTP Header Injection.
*/
URI uri;
try {
uri = new URI(data);
} catch (URISyntaxException exceptURISyntax) {
response.getWriter().write("Invalid redirect URL");
return;
}
/* POTENTIAL FLAW: redirect is sent verbatim; escape the string to prevent ancillary issues like XSS, Response splitting etc */
response.sendRedirect(data);
return;
}
}
@Override
public void doGet(HttpServletRequest req, HttpServletResponse resp) throws IOException {
String thisUsersId = req.getParameter("userId");
if ("true".equals(req.getParameter("pingAlive"))) {
updateLastAliveTime(thisUsersId);
} else {
ObjectMapper mapper = new ObjectMapper();
ArrayNode usersArray = mapper.createArrayNode();
for (Map.Entry<String, User> userEntry : users.entrySet()) {
if (!thisUsersId.equals(userEntry.getKey())) {
User user = userEntry.getValue();
Date now = new Date();
if ((now.getTime() - user.getLastAliveTime().getTime()) / 1000 <= 10) {
ObjectNode userJson = mapper.createObjectNode();
userJson.put("user_id", userEntry.getKey());
userJson.put("user_name", user.getName());
usersArray.add(userJson);
}
}
}
ObjectNode usersJson = mapper.createObjectNode();
usersJson.put("opponents", usersArray);
resp.setContentType("application/json; charset=UTF-8");
mapper.writeValue(resp.getWriter(), usersJson);
}
}
public void service(HttpServletRequest request, HttpServletResponse response)
throws IOException, ServletException {
response.setContentType("text/html");
PrintWriter out = response.getWriter();
try {
userObj = new User();
tmsManager = new TMSManager();
RequestDispatcher rd1 = request.getRequestDispatcher("./header");
rd1.include(request, response);
out.println("<html><head><title>UpdateUser</title></head>");
out.println("<body onload=onSubmit() bgcolor =\"#ffcc00\">");
out.println("<form method =\"POST\" action =\"./updateUser\" ><br><br><br>");
out.println("<table border = 1 width = \"40%\" align = \"center\" bgcolor = \"#bbccff\">");
out.println("<caption><b>UpdateUser</b></caption>");
out.println("<tr><td style = font face: verdana>Enter User ID</td>");
out.println("<td><input type = \"text\" name = \"user_id\" ></td></tr>");
out.println(
"<tr><td colspan = 2 align = \"center\"><input type = \"submit\" name = \"Submit\" value = \"Submit\">");
out.println("<input type = \"Reset\" name = \"Reset\" value = \"Clear\"></td></tr>");
out.println("</table>");
out.println("</body></html>");
// String user_id = request.getParameter("user_id");
// userObj = tmsManager.getUser(user_id);
} catch (Exception e) {
System.out.println(e.getMessage());
}
RequestDispatcher rd2 = request.getRequestDispatcher("./footer");
rd2.include(request, response);
}
public void doGet(HttpServletRequest solicitacao, HttpServletResponse resposta)
throws IOException, ServletException {
resposta.setContentType("text/html");
PrintWriter out = resposta.getWriter();
out.println("<html>");
out.println("<body>");
out.println("<center>");
out.println("<h1>Insira os dados para a criação do cookie</h1>");
out.println("</center>");
out.println("<table border='0' width='400'>");
out.println("<tr>");
out.println("<td>");
out.println("<form method='post' action='ExemploCookies'>");
out.println("<font face='verdana' size='2'>");
out.println("Nome do cookie: < / font > ");
out.println("<input type='text' name='nome' size = '20'>");
out.println("<br>");
out.println("<font face='verdana' size='2'>");
out.println("Valor do cookie: < / font > ");
out.println("<input type='text' name='valor' size ='20'><br > ");
out.println("</td>");
out.println("</tr>");
out.println("<tr>");
out.println("<td align='center'>");
out.println("<input type='submit' value='Criar' name = 'S1'>");
out.println(" ");
out.println("<input type='reset' value='Limpar' name = 'S2'>");
out.println("</td>");
out.println("</tr>");
out.println("</table>");
out.println("</body>");
out.println("</html>");
}
public void doGet(HttpServletRequest req, HttpServletResponse res)
throws IOException, ServletException {
res.setContentType("text/html");
try {
PrintWriter pw = res.getWriter();
pw.println("<html><head><TITLE>Web-Enabled Automated Manufacturing System</TITLE></head>");
pw.println(
"<body><br><br><br><form name=modifyuser method=post action='http://peers:8080/servlet/showUser')");
v = U.allUsers();
pw.println("<table align='center' border=0> <tr><td>");
pw.println(
"Select User Name To Modify</td><td><SELECT id=select1 name=uid style='HEIGHT: 22px; LEFT: 74px; TOP: 222px; WIDTH: 155px'>");
pw.println("<OPTION selected value=''></OPTION>");
for (i = 0; i < v.size(); i++)
pw.println(
"<OPTION value="
+ (String) v.elementAt(i)
+ ">"
+ (String) v.elementAt(i)
+ "</OPTION>");
pw.println(
"</SELECT></td></tr><tr><td></td><td><input type='submit' name='submit' value='Submit'></td></tr></table></form></body></html>");
pw.flush();
pw.close();
} catch (Exception e) {
}
}
@Override
protected void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
// POST method only used for tracked login operation
HttpSession session = request.getSession();
response.setContentType("text/plain");
PrintWriter out = response.getWriter();
// Get the username and password from request
String username = request.getParameter("id");
String password = request.getParameter("pwd");
Long id = 0L;
try {
id = Long.parseLong(username);
} catch (Exception ex) {
}
if (username != null && password != null) {
// Login into tracked system
CTracked ctracked = db.loginTrackedFromMobile(id, password).getResult();
if (ctracked != null) {
// Login successful
out.print("OK," + ctracked.getUsername());
session.setAttribute("device_id", ctracked.getUsername());
log.info(ctracked + " : logined!");
}
}
}
public void doGet(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
out = response.getWriter();
boolean result = false;
result = getScoreboard();
}
