public void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
// I use "session" in order to throws the object named user bean.
HttpSession session = request.getSession(true);
response.setContentType("text/html");
request.setCharacterEncoding("UTF-8");
UserBean ub = (UserBean) session.getAttribute("user");
if (ub == null) {
String haveLogin = "******";
session.setAttribute("haveLogin", haveLogin);
response.sendRedirect("cart");
} else {
String mID = ub.getmID();
String iID = (String) request.getParameter("iID");
// String idx = (String)request.getParameter("idx");
Connection conn = null;
try {
// Getting the connection from database.
Class.forName("com.mysql.jdbc.Driver");
/*conn = DriverManager
.getConnection("jdbc:mysql://localhost/se?"
+ "user=root");*/
conn =
DriverManager.getConnection(
"jdbc:mysql://localhost/user_register?"
+ "user=sqluser&password=sqluserpw&useUnicode=true&characterEncoding=UTF-8");
String sql = "delete from cart_item_mapping where mID=? and iID = ?";
PreparedStatement pst = conn.prepareStatement(sql);
// Using preparedstatement by set the parameter related to "?" symbol.
pst.setString(1, mID);
pst.setString(2, iID);
pst.executeUpdate();
pst.close();
response.sendRedirect("ShowCartController");
} catch (Exception e) {
e.printStackTrace();
}
}
}
public void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
request.setCharacterEncoding("gb2312");
response.setContentType("text/html; charset=gb2312");
out = response.getWriter();
session = request.getSession();
time = new Time();
str = new Str();
db = new Db();
// 取得
try {
id = Integer.parseInt((String) request.getParameter("id"));
} catch (Exception e) {
id = 0;
}
password = request.getParameter("password");
password = str.inStr(password);
sqlsp = "SELECT * FROM password WHERE employeeid=" + id;
sqlse = "SELECT employeeid FROM eminfo WHERE employeeid=" + id;
sqlu =
"UPDATE password SET time='"
+ time.getYMDHMS()
+ "',password='******' WHERE employeeid="
+ id;
sqli =
"INSERT INTO password(employeeid,password,time) VALUES("
+ id
+ ",'"
+ password
+ "','"
+ time.getYMDHMS()
+ "')";
try {
stmt = db.getStmtread();
rs = stmt.executeQuery(sqlsp);
// 不是第一次设置更新数据库
if (rs.next()) {
db.close();
stmt = db.getStmt();
temp = 0;
temp = stmt.executeUpdate(sqlu);
if (temp > 0) {
request.setAttribute("msg", "设置成功");
} else {
request.setAttribute("msg", "设置失败");
}
db.close();
} else {
// 第一次设置
db.close();
temp = 0;
stmt = db.getStmtread();
rs = stmt.executeQuery(sqlse);
if (rs.next()) {
// id存在
rs.close();
stmt.close();
temp = 0;
stmt = db.getStmt();
temp = stmt.executeUpdate(sqli);
if (temp > 0) {
request.setAttribute("msg", "设置成功");
} else {
request.setAttribute("msg", "设置失败");
}
db.close();
} else {
// id不存在
db.close();
request.setAttribute("msg", "员工序号不存在");
}
}
} catch (SQLException e) {
e.printStackTrace();
} finally {
RequestDispatcher dispatcher = request.getRequestDispatcher("set1.jsp");
dispatcher.forward(request, response);
}
}
