/**
* Checks if the databasePassword is the same as the provided password.
*
* @param login
* @param password
* @return true / false
* @throws InstantiationException
* @throws IllegalAccessException
* @throws ClassNotFoundException
* @throws SQLException
*/
public static boolean checkPassword(String login, String password)
throws InstantiationException, IllegalAccessException, ClassNotFoundException, SQLException {
String sql = "SELECT password FROM users WHERE login = ? ";
String serverPassword = "";
Boolean isValid = false;
Connection connection = DataBaseUtils.getMySQLConnection();
PreparedStatement ps = (PreparedStatement) connection.prepareStatement(sql);
ps.setString(1, login);
ResultSet rs = ps.executeQuery();
if (rs.next()) {
serverPassword = rs.getString("password");
if (password.equals(serverPassword)) {
isValid = true;
}
}
ps.close();
connection.close();
return isValid;
}
/**
* Inserts a new entry in the `session` table.
*
* @param id I
* @param root
* @return A unique key associated with the user
* @throws InstantiationException
* @throws IllegalAccessException
* @throws ClassNotFoundException
* @throws SQLException
*/
public static String insertSession(int id, boolean root)
throws InstantiationException, IllegalAccessException, ClassNotFoundException, SQLException {
/* SESSION_HOUR_DURATIONS starting from now */
Timestamp expires =
new Timestamp(System.currentTimeMillis() + SESSION_HOUR_DURATION * 60 * 60 * 1000);
String key = generateKey();
String sql =
"INSERT INTO `session` " + "(`key`, `user_id`, `expires`, `root`)" + " VALUE(?,?,?,?)";
Connection connection = DataBaseUtils.getMySQLConnection();
PreparedStatement ps = (PreparedStatement) connection.prepareStatement(sql);
ps.setString(1, key);
ps.setInt(2, id);
ps.setTimestamp(3, expires);
ps.setBoolean(4, root);
ps.executeUpdate();
System.out.println("Session inserted for id : " + id);
ps.close();
connection.close();
return key;
}
/**
* Deletes the user from the data-base.
*
* @param id user id
* @return true | false
* @throws SQLException
* @throws ClassNotFoundException
* @throws IllegalAccessException
* @throws InstantiationException
*/
public static void removeUserFromDataBase(int id)
throws InstantiationException, IllegalAccessException, ClassNotFoundException, SQLException {
String sql = "DELETE FROM users WHERE `id`=?";
Connection connection = DataBaseUtils.getMySQLConnection();
PreparedStatement ps = (PreparedStatement) connection.prepareStatement(sql);
ps.setInt(1, id);
ps.executeUpdate();
System.out.println("User removed for id : " + id);
ps.close();
connection.close();
}
/**
* Removes the entry associated with id, from the `sessions` table.
*
* @param id user id
* @throws InstantiationException
* @throws IllegalAccessException
* @throws ClassNotFoundException
* @throws SQLException
*/
public static void removeSession(String key)
throws InstantiationException, IllegalAccessException, ClassNotFoundException, SQLException {
String sql = "DELETE FROM session WHERE `key`=?";
Connection connection = DataBaseUtils.getMySQLConnection();
PreparedStatement ps = (PreparedStatement) connection.prepareStatement(sql);
ps.setString(1, key);
ps.executeUpdate();
System.out.println("Session removed for key : " + key);
ps.close();
connection.close();
}
/**
* Returns the session-key associated with the user.
*
* @param id
* @return session-key
* @throws InstantiationException
* @throws IllegalAccessException
* @throws ClassNotFoundException
* @throws SQLException
*/
public static String getUserKey(int id)
throws InstantiationException, IllegalAccessException, ClassNotFoundException, SQLException {
String sql = "SELECT `key` FROM session WHERE user_id = ?";
String key = null;
Connection connection = DataBaseUtils.getMySQLConnection();
PreparedStatement ps = (PreparedStatement) connection.prepareStatement(sql);
ps.setInt(1, id);
ResultSet rs = ps.executeQuery();
if (rs.next()) {
key = rs.getString("key");
}
ps.close();
connection.close();
return key;
}
/**
* Returns a user id corresponding to the session key.
*
* @param key session key
* @return userId | -1
* @throws InstantiationException
* @throws IllegalAccessException
* @throws ClassNotFoundException
* @throws SQLException
*/
public static int getUserIdFromKey(String key)
throws InstantiationException, IllegalAccessException, ClassNotFoundException, SQLException {
int id = -1;
String sql = "SELECT `user_id` FROM `session` WHERE `key` = ?";
Connection connection = DataBaseUtils.getMySQLConnection();
PreparedStatement ps = (PreparedStatement) connection.prepareStatement(sql);
ps.setString(1, key);
ResultSet rs = ps.executeQuery();
if (rs.next()) {
id = rs.getInt("user_id");
}
ps.close();
connection.close();
return id;
}
/**
* Returns the id associated with the login from the users table.
*
* @param login, username
* @return id | -1 (for debbuging purposes)
* @throws InstantiationException
* @throws IllegalAccessException
* @throws ClassNotFoundException
* @throws SQLException
*/
public static String getUserLoginFromId(int id)
throws InstantiationException, IllegalAccessException, ClassNotFoundException, SQLException {
String login = null;
String sql = "SELECT login FROM users WHERE id = ?";
Connection connection = DataBaseUtils.getMySQLConnection();
PreparedStatement ps = (PreparedStatement) connection.prepareStatement(sql);
ps.setInt(1, id);
ResultSet rs = ps.executeQuery();
if (rs.next()) {
login = rs.getString("login");
}
ps.close();
connection.close();
return login;
}
/**
* Checks if the user already exists in the database.
*
* @param user username
* @return true / false
* @throws SQLException
* @throws ClassNotFoundException
* @throws IllegalAccessException
* @throws InstantiationException
*/
public static boolean userExists(String login)
throws InstantiationException, IllegalAccessException, ClassNotFoundException, SQLException {
String sql = "SELECT id FROM users WHERE login = ?";
boolean found = false;
Connection connection = DataBaseUtils.getMySQLConnection();
PreparedStatement ps = (PreparedStatement) connection.prepareStatement(sql);
ps.setString(1, login);
ResultSet rs = ps.executeQuery();
if (rs.next()) {
found = true;
}
ps.close();
connection.close();
return found;
}
/**
* Adds a new username to the data-base.
*
* @param login username
* @param password password
* @param email email
* @return true / false
* @throws SQLException
* @throws ClassNotFoundException
* @throws IllegalAccessException
* @throws InstantiationException
*/
public static boolean addUserToDataBase(String login, String password, String email)
throws InstantiationException, IllegalAccessException, ClassNotFoundException, SQLException {
String sql = "INSERT INTO users " + "(login, password, email)" + " VALUES (?, ?, ?)";
Boolean isAdded = false;
Connection connection = DataBaseUtils.getMySQLConnection();
PreparedStatement ps = (PreparedStatement) connection.prepareStatement(sql);
ps.setString(1, login);
ps.setString(2, password);
ps.setString(3, email);
ps.executeUpdate();
isAdded = true;
ps.close();
connection.close();
System.out.println("User Added To Database");
return isAdded;
}
