protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException { String pathInfo = req.getPathInfo(); HttpSession session = req.getSession(); if (session == null) { resp.setStatus(401); return; } String username = (String) session.getAttribute("username"); if (username == null) { resp.setStatus(401); return; } Map userMap = loadUserSettingsMap(username); if (userMap == null) { resp.setStatus(401); return; } if (pathInfo.equals("/")) { resp.setContentType("application/json; charset=UTF-8"); resp.getWriter().write(JSONUtil.write(userMap)); return; } String key = pathInfo.substring(1); String value = (String) userMap.get(key); Map jsonObject = new HashMap(); jsonObject.put(key, value); resp.setContentType("application/json; charset=UTF-8"); resp.getWriter().write(JSONUtil.write(jsonObject)); }
public void doPost(HttpServletRequest req, HttpServletResponse resp) throws IOException { PrintWriter out = resp.getWriter(); String nombre = req.getParameter("nombre"); String apellido = req.getParameter("apellido"); String especie = req.getParameter("especie"); int edad = Integer.parseInt(req.getParameter("edad")); String sexo = req.getParameter("sexo"); String descripcion = req.getParameter("descripcion"); String mensaje = req.getParameter("mensaje"); Adopcion p = new Adopcion(nombre, apellido, especie, edad, sexo, descripcion, mensaje); PersistenceManager pm = PMF.get().getPersistenceManager(); try { pm.makePersistent(p); (getServletContext().getRequestDispatcher("/WEB-INF/jspUsuario/confirmar.jsp")) .forward(req, resp); } catch (Exception e) { System.out.println(e); resp.getWriter().println("Ocurrió un error, <a href='index07.html'>vuelva a intentarlo</a>"); } finally { pm.close(); } }
/* good2() reverses the bodies in the if statement */ private void good2(HttpServletRequest request, HttpServletResponse response) throws Throwable { if (IO.static_returns_t()) { Logger tcLog = Logger.getLogger("cwe_testcases_logger"); if (request.getParameter("username") == null) { return; } String username = request.getParameter("username"); if (username.matches("[a-zA-Z0-9]*")) { HttpSession session = request.getSession(true); /* FIX: logged message does not contain session id */ tcLog.log(Level.FINEST, "Username: "******" Session ID:" + session.getId()); } else { response.getWriter().println("Invalid characters"); } } else { /* INCIDENTAL: CWE 561 Dead Code, the code below will never run */ Logger tcLog = Logger.getLogger("cwe_testcases_logger"); if (request.getParameter("username") == null) { return; } String username = request.getParameter("username"); if (username.matches("[a-zA-Z0-9]*")) { HttpSession session = request.getSession(true); /* FLAW: leak session ID to debug log */ tcLog.log(Level.FINEST, "Username: "******" Session ID:" + session.getId()); } else { response.getWriter().println("Invalid characters"); } } }
/* goodG2B() - use goodsource and badsink by moving BadSource and BadSink to after return */ private void goodG2B(HttpServletRequest request, HttpServletResponse response) throws Throwable { String data; { java.util.logging.Logger log_good = java.util.logging.Logger.getLogger("local-logger"); /* FIX: Use a hardcoded string */ data = "foo"; if (data != null) { /* This prevents \r\n (and other chars) and should prevent incidentals such * as HTTP Response Splitting and HTTP Header Injection. */ URI u; try { u = new URI(data); } catch (URISyntaxException e) { response.getWriter().write("Invalid redirect URL"); return; } /* POTENTIAL FLAW: redirect is sent verbatim; escape the string to prevent ancillary issues like XSS, Response splitting etc */ response.sendRedirect(data); return; } } if (true) return; /* INCIDENTAL: CWE 571 Expression is Always True. We need the "if(true)" because the Java Language Spec requires that unreachable code generate a compiler error */ /* INCIDENTAL: CWE 561 Dead Code, the code below will never run */ { Logger log_bad = Logger.getLogger("local-logger"); /* read parameter from cookie */ Cookie cookieSources[] = request.getCookies(); if (cookieSources != null) { data = cookieSources[0].getValue(); } else { data = null; } if (data != null) { /* This prevents \r\n (and other chars) and should prevent incidentals such * as HTTP Response Splitting and HTTP Header Injection. */ URI u; try { u = new URI(data); } catch (URISyntaxException e) { response.getWriter().write("Invalid redirect URL"); return; } /* POTENTIAL FLAW: redirect is sent verbatim; escape the string to prevent ancillary issues like XSS, Response splitting etc */ response.sendRedirect(data); return; } } }
/* goodG2B1() - use goodsource and badsink by changing the first switch to switch(5) */ private void goodG2B1(HttpServletRequest request, HttpServletResponse response) throws Throwable { String data; switch (5) { case 6: /* INCIDENTAL: CWE 561 Dead Code, the code below will never run */ { /* POTENTIAL FLAW: sending login credentials information */ data = "Your username is: user1\nYour password is: w8KNdsa9\n"; } break; default: { /*FIX: send non-sensitive information */ data = "The weather is San Diego is 75 and sunny"; } break; } switch (7) { case 7: { PrintWriter out = null; try { out = response.getWriter(); /* POTENTIAL FLAW: transmitting login credentials across a possibly non-SSL connection */ out.println(data); } catch (IOException e) { IO.writeLine("There was a problem writing"); } finally { if (out != null) { out.close(); } } } break; default: /* INCIDENTAL: CWE 561 Dead Code, the code below will never run */ { PrintWriter out = null; try { /* FIX: ensure the connection is secure */ if (request.isSecure()) { out = response.getWriter(); out.println(data); } } catch (IOException e) { IO.writeLine("There was a problem writing"); } finally { if (out != null) { out.close(); } } } break; } }
public void doPost(HttpServletRequest req, HttpServletResponse resp) throws IOException { /*String us = req.getParameter("usuario"); String pw = req.getParameter("passw"); Cuenta profSeverus = new Cuenta("severus","1234"); Cuenta profAlbus = new Cuenta("albus","6789"); Cuenta secreYayita = new Cuenta("yayita","condorito123"); PersistenceManager pm = PMF.get().getPersistenceManager(); try{ }catch(Exception e){ System.out.println(e); PrintWriter out = resp.getWriter(); resp.setContentType("text/html"); resp.getWriter().println("Ocurrio un error, <a href='inicio.jsp'>vuelva a intentarlo</a>"); }finally{ pm.close(); } */ resp.setContentType("text/plain"); String us = req.getParameter("usuario"); String pw = req.getParameter("passw"); final PersistenceManager pm = PMF.get().getPersistenceManager(); if (us.equals("severus") && pw.equals("1234")) { resp.getWriter().println("bienevenido profesor Severus Snape"); resp.sendRedirect("/bienvenidoP.jsp"); } if (us.equals("albus") && pw.equals("6789")) { resp.getWriter().println("bienevenido profesor Albus"); resp.sendRedirect("/bienvenidoP.jsp"); } if (us.equals("yayita") && pw.equals("condorito123")) { resp.getWriter().println("bienevenido secretaria yayita"); resp.sendRedirect("/bienvenidoS.jsp"); } try { /*if(us==cuenta.getUsuario()&&pw==cuenta.getContrasea()){ resp.getWriter().println("bienevenido alumno"+cuenta.getUsuario()); resp.sendRedirect("/bienvenidoA.jsp"); }*/ } catch (Exception e) { System.out.println(e); resp.getWriter().println("Ocurriñ un error, vuelva a intentarlo."); resp.sendRedirect("/index.jsp"); } finally { pm.close(); } }
public void doGet(HttpServletRequest req, HttpServletResponse resp) throws IOException { resp.setContentType("text/html"); resp.getWriter().println("<a href='/'>Back to home</a><br/>"); resp.getWriter().println("This is the admin page for making system updates."); resp.getWriter() .println("Please expect the system to take about 15 seconds to perform these actions."); NascarConfig config = NascarConfigSingleton.get(); Race race = config.getRace(); resp.getWriter() .println( String.format( "<h3>Current race: %d - %d (%s)</h3>", race.getYear(), race.getWeek(), race.getRaceName())); resp.getWriter().println("<form method='POST'>"); resp.getWriter() .println( "<p>Click the following magic button after the race results are in to prepare the system for the new week.</p>"); resp.getWriter().println("<input type='hidden' name='action' value='nextrace'/>"); resp.getWriter() .println("<button type='submit'>Calculate Results and go to next Race</button></form>"); resp.getWriter().println("<form method='POST'>"); String lineupString = config.getCanEditLineup() ? "Lineups are unlocked" : "Lineups are locked"; resp.getWriter().println(lineupString); resp.getWriter().println("<input type='hidden' name='action' value='toggleeditable'/>"); String lineupText = config.getCanEditLineup() ? "Lock lineups" : "Unlock lineups"; resp.getWriter().println("<button type='submit'>" + lineupText + "</button></form>"); resp.getWriter().println("<BR/>Last operation: " + LAST_OPERATION_MESSAGE); }
/* * (non-Javadoc) * * @see javax.servlet.http.HttpServlet#doPost(javax.servlet.http. * HttpServletRequest, javax.servlet.http.HttpServletResponse) */ @Override protected void service(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException { // request uri contains application context path,/contextPaht/hello resp.setContentType(MimeTypeUtils.TEXT_PLAIN.toString()); if (req.getRequestURI().endsWith("hello")) { resp.getWriter().write("world."); } else if (req.getRequestURI().endsWith("make")) { resp.getWriter().write("love."); } }
/** * 输出json到HTML * * @param response * @param jsonString 要输出的字符串 */ public void outJson(HttpServletResponse response, String jsonString) { response.setContentType("text/html"); response.setCharacterEncoding("utf-8"); response.setHeader("Pragma", "no-cache"); response.setHeader("Cache-Control", "no-cache, must-revalidate"); response.setHeader("Pragma", "no-cache"); try { response.getWriter().println(jsonString); response.getWriter().flush(); response.getWriter().close(); } catch (IOException e) { e.printStackTrace(); } }
public void doPost(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException { resp.getWriter().println("<HTML><BODY>"); resp.getWriter().println(this + ": <br>"); for (int c = 0; c < 10; c++) { resp.getWriter().println("Counter = " + counter + "<BR>"); try { Thread.currentThread().sleep((long) Math.random() * 1000); counter++; } catch (InterruptedException exc) { exc.printStackTrace(); } } resp.getWriter().println("</BODY></HTML>"); }
private void generateNoRowsPage(HttpServletResponse response) throws Exception { response.setContentType("text/html"); response.getWriter().println("<html><head><title>"); response.getWriter().println(XavaResources.getString("no_rows_report_message_title")); response .getWriter() .println( "</title></head><body style='font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;'>"); response.getWriter().println("<h1 style='font-size:22px;'>"); response.getWriter().println(XavaResources.getString("no_rows_report_message_title")); response.getWriter().println("</h1>"); response.getWriter().println("<p style='font-size:16px;'>"); response.getWriter().println(XavaResources.getString("no_rows_report_message_detail")); response.getWriter().println("</p></body></html>"); }
public void doGet(HttpServletRequest rq, HttpServletResponse rs) { PrintWriter pw = null; try { pw = rs.getWriter(); rs.setContentType("application/json"); OperatorBLInterface operatorInterface = new Operator(); LoyaltyApplication loyaltyApplication = new LoyaltyApplication(); boolean found = loyaltyApplication.operatorExists(Integer.parseInt(rq.getParameter("code"))); pw.println("{"); pw.println("\"success\":true,"); pw.println("\"found\":" + found); pw.println("}"); } catch (ApplicationException ae) { System.out.println(ae); pw.println("{"); pw.println("\"success\":false,"); pw.println("\"errorMessage\":" + "\"" + ae + "\""); pw.println("}"); } catch (Exception e) { System.out.println(e); } }
/* uses badsource and badsink */ public void bad(HttpServletRequest request, HttpServletResponse response) throws Throwable { String data; if (privateTrue) { data = ""; /* initialize data in case id is not in query string */ /* POTENTIAL FLAW: Parse id param out of the URL querystring (without using getParameter()) */ { StringTokenizer tokenizer = new StringTokenizer(request.getQueryString(), "&"); while (tokenizer.hasMoreTokens()) { String token = tokenizer.nextToken(); /* a token will be like "id=foo" */ if (token.startsWith("id=")) /* check if we have the "id" parameter" */ { data = token.substring(3); /* set data to "foo" */ break; /* exit while loop */ } } } } else { /* INCIDENTAL: CWE 561 Dead Code, the code below will never run * but ensure data is inititialized before the Sink to avoid compiler errors */ data = null; } if (data != null) { /* POTENTIAL FLAW: Display of data in web page without any encoding or validation */ response.getWriter().println("<br>bad(): data = " + data); } }
public void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { PrintWriter writer = response.getWriter(); HttpSession session = request.getSession(); String username = request.getParameter("username"); String password = request.getParameter("password"); String type = request.getParameter("type"); System.out.println(username + password + type); session.setAttribute("user", username); try { writer.println("<html>"); writer.println("<body bgcolor=green>"); writer.println("<center>"); ps.setString(1, username); ps.setString(2, password); ps.setString(3, type); ResultSet rs = ps.executeQuery(); if (rs.next()) { writer.println("<h1>LOGIN SUCCESSFUL</h1><br><br>"); writer.println("<a href=account.html>click here to see your account</a>"); } else { writer.println("<h1>LOGIN FAILED</h1><br><br>"); writer.println("<a href=login.html>click here to login again</a>"); } writer.println("</center>"); writer.println("</body>"); writer.println("</html>"); } catch (Exception e) { e.printStackTrace(); } }
/* goodG2B() - use goodsource and badsink */ public void goodG2B_sink(String data, HttpServletRequest request, HttpServletResponse response) throws Throwable { Hashtable<String, String> env = new Hashtable<String, String>(); env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory"); env.put(Context.PROVIDER_URL, "ldap://localhost:389"); DirContext ctx = new InitialDirContext(env); String search = "(cn=" + data + ")"; /* POTENTIAL FLAW: unsanitized data from untrusted source */ NamingEnumeration<SearchResult> answer = ctx.search("", search, null); while (answer.hasMore()) { SearchResult sr = answer.next(); Attributes a = sr.getAttributes(); NamingEnumeration<?> attrs = a.getAll(); while (attrs.hasMore()) { Attribute attr = (Attribute) attrs.next(); NamingEnumeration<?> values = attr.getAll(); while (values.hasMore()) { response.getWriter().println(" Value: " + values.next().toString()); } } } }
public void doGet(HttpServletRequest req, HttpServletResponse resp) throws IOException { resp.setContentType("text/html"); PrintWriter out = resp.getWriter(); UserService userService = UserServiceFactory.getUserService(); if (userService.isUserLoggedIn()) { User user = userService.getCurrentUser(); out.println("<p>You are signed in as " + user.getNickname() + ". "); if (userService.isUserAdmin()) { out.println("You are an administrator. "); } out.println("<a href=\"" + userService.createLogoutURL("/") + "\">Sign out</a>.</p>"); } else { out.println( "<p>You are not signed in to Google Accounts. " + "<a href=\"" + userService.createLoginURL(req.getRequestURI()) + "\">Sign in</a>.</p>"); } out.println( "<ul>" + "<li><a href=\"/\">/</a></li>" + "<li><a href=\"/required\">/required</a></li>" + "<li><a href=\"/admin\">/admin</a></li>" + "</ul>"); SimpleDateFormat fmt = new SimpleDateFormat("yyyy-MM-dd hh:mm:ss.SSSSSS"); fmt.setTimeZone(new SimpleTimeZone(0, "")); out.println("<p>The time is: " + fmt.format(new Date()) + "</p>"); }
public void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { try { response.setContentType("text/html"); PrintWriter out = response.getWriter(); /*String n=request.getParameter("username"); out.print("Welcome "+n);*/ String name = request.getParameter("name"); String dob = request.getParameter("dob"); String address = request.getParameter("address"); String email = request.getParameter("email"); HttpSession session = request.getSession(true); String userid = (String) session.getAttribute("theName"); int AccNo = 0; String AccMsg = ""; DbCommunication db_comm = new DbCommunication(); AccNo = db_comm.accountCreation(name, dob, address, email, userid); // db_comm.accountCreation(name,email); AccMsg = "Account created successfully. Account number is:" + AccNo; // out.println(AccMsg); String redirectURL = "accountCreationPage.jsp"; response.sendRedirect(redirectURL); session.setAttribute("AccCreationalMsgStatus", "set"); session.setAttribute("AccCreationalMsg", AccMsg); } catch (Exception e) { System.out.println(e); } }
public void doGet(HttpServletRequest req, HttpServletResponse res) throws ServletException, IOException { res.setContentType("text/html"); PrintWriter out = res.getWriter(); Enumeration values = req.getParameterNames(); String name = ""; String value = ""; String id = ""; while (values.hasMoreElements()) { name = ((String) values.nextElement()).trim(); value = req.getParameter(name).trim(); if (name.equals("id")) id = value; } if (url.equals("")) { url = getServletContext().getInitParameter("url"); cas_url = getServletContext().getInitParameter("cas_url"); } HttpSession session = null; session = req.getSession(false); if (session != null) { session.invalidate(); } res.sendRedirect(cas_url); return; }
/* goodG2B() - use goodsource and badsink by changing the "if" so that * both branches use the GoodSource */ private void goodG2B(HttpServletRequest request, HttpServletResponse response) throws Throwable { String data; if (IO.staticReturnsTrueOrFalse()) { /* FIX: Use a hardcoded string */ data = "foo"; } else { /* FIX: Use a hardcoded string */ data = "foo"; } if (data != null) { /* This prevents \r\n (and other chars) and should prevent incidentals such * as HTTP Response Splitting and HTTP Header Injection. */ URI uri; try { uri = new URI(data); } catch (URISyntaxException exceptURISyntax) { response.getWriter().write("Invalid redirect URL"); return; } /* POTENTIAL FLAW: redirect is sent verbatim; escape the string to prevent ancillary issues like XSS, Response splitting etc */ response.sendRedirect(data); return; } }
private void callMethodForMultiPart(HttpServletRequest req, HttpServletResponse resp) throws Exception { String pinfo = req.getPathInfo(); int pos = pinfo.indexOf('.'); String cname = pinfo.substring(1, pos).replace('/', '.'); String mname = pinfo.substring(pos + 1); MultiPartMap map = new MultiPartMap(); FileItemIterator ite = new FileUpload().getItemIterator(req); while (ite.hasNext()) { FileItemStream item = ite.next(); if (item.isFormField()) { map.put(item.getFieldName(), IOUtil.streamToString(item.openStream(), "UTF-8")); } else { FileItem val = new FileItem( item.getFileName(), item.getContentType(), IOUtil.streamToBytes(item.openStream())); map.put(item.getFieldName(), val); } } Class clazz = Class.forName(cname); Class[] types = new Class[] {MultiPartMap.class}; Method method = clazz.getMethod(mname, types); if (method == null) { throw new RuntimeException("Not found method " + mname + "(Map)"); } Object result = method.invoke(null, map); resp.setContentType(MIME_HTML + ";charset=utf-8"); resp.getWriter().write(result.toString()); }
public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { response.setContentType("text/html"); PrintWriter out = response.getWriter(); String title = "Showing Request Headers"; StringBuilder sb = new StringBuilder(); sb.append("<html>\n<head>\n"); sb.append("<title>" + title + "</title>\n"); sb.append("</head>\n"); sb.append("<body bgcolor='#FDF5E6'>\n"); sb.append("<h1 align='center'>" + title + "</h1>\n"); sb.append("<b> Request Method: </b>" + request.getMethod() + "<br>\n"); sb.append("<b> Request URI: </b>" + request.getRequestURI() + "<br>\n"); sb.append("<b> Request Protocol: </b>" + request.getProtocol() + "<br>\n"); sb.append("<table border=1 align='center'>\n"); sb.append("<tr bgcolor='#FFAD00'>\n"); sb.append("<th> Header Name </th><th> Header Value </th></tr>\n"); Enumeration headerNames = request.getHeaderNames(); while (headerNames.hasMoreElements()) { String headerName = (String) headerNames.nextElement(); sb.append("<tr><td>" + headerName + "</td>"); sb.append("<td>" + request.getHeader(headerName) + "</td></tr>\n"); } sb.append("</table>\n"); sb.append("</body></html>"); out.println(sb.toString()); out.close(); }
public void doGet(HttpServletRequest rq, HttpServletResponse rs) { PrintWriter pw = null; try { pw = rs.getWriter(); rs.setContentType("application/json"); LoyaltyApplication loyaltyApplication = new LoyaltyApplication(); loyaltyApplication.removeOperator(Integer.parseInt(rq.getParameter("code"))); pw.println("{"); pw.println("\"success\":true,"); pw.println("\"message\":\"removed\""); pw.println("}"); } catch (ApplicationException ae) { System.out.println(ae); pw.println("{"); pw.println("\"success\":false,"); pw.println("\"errorMessage\":" + "\"" + ae + "\""); pw.println("}"); } catch (IOException ioe) { System.out.println(ioe); } }
protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { response.setContentType("text/html; charset=UTF-8"); Tools.sendDisableCacheHeaders(response); final PrintWriter out = response.getWriter(); out.println("<html>"); out.println(" <body>"); Cookie cookie = getCookie("carlos-cookie-test", request); if (cookie == null) { print(out, "No cookie set."); } else { print(out, "<b>Cookie ID</b>: " + cookie.getName() + "<br>"); print(out, "<b>Value</b>: " + cookie.getValue() + "<br>"); refreshCookie(cookie, response); } out.println(" <br>"); out.println(" <form method=\"post\">"); out.println(" <input type=\"submit\" value=\"create\" name=\"button\"><br><br>"); out.println(" <input type=\"submit\" value=\"delete\" name=\"button\"><br><br>"); out.println(" <input type=\"submit\" value=\"no-pass\" name=\"button\"><br>"); out.println(" </form>"); out.println(" </body>"); out.println("</html>"); out.close(); }
/* goodG2B2() - use goodsource and badsink by reversing statements in if */ private void goodG2B2(HttpServletRequest request, HttpServletResponse response) throws Throwable { String data; if (IO.STATIC_FINAL_TRUE) { /* FIX: Use a hardcoded string */ data = "foo"; } else { /* INCIDENTAL: CWE 561 Dead Code, the code below will never run * but ensure data is inititialized before the Sink to avoid compiler errors */ data = null; } if (data != null) { /* This prevents \r\n (and other chars) and should prevent incidentals such * as HTTP Response Splitting and HTTP Header Injection. */ URI uri; try { uri = new URI(data); } catch (URISyntaxException exceptURISyntax) { response.getWriter().write("Invalid redirect URL"); return; } /* POTENTIAL FLAW: redirect is sent verbatim; escape the string to prevent ancillary issues like XSS, Response splitting etc */ response.sendRedirect(data); return; } }
@Override public void doGet(HttpServletRequest req, HttpServletResponse resp) throws IOException { String thisUsersId = req.getParameter("userId"); if ("true".equals(req.getParameter("pingAlive"))) { updateLastAliveTime(thisUsersId); } else { ObjectMapper mapper = new ObjectMapper(); ArrayNode usersArray = mapper.createArrayNode(); for (Map.Entry<String, User> userEntry : users.entrySet()) { if (!thisUsersId.equals(userEntry.getKey())) { User user = userEntry.getValue(); Date now = new Date(); if ((now.getTime() - user.getLastAliveTime().getTime()) / 1000 <= 10) { ObjectNode userJson = mapper.createObjectNode(); userJson.put("user_id", userEntry.getKey()); userJson.put("user_name", user.getName()); usersArray.add(userJson); } } } ObjectNode usersJson = mapper.createObjectNode(); usersJson.put("opponents", usersArray); resp.setContentType("application/json; charset=UTF-8"); mapper.writeValue(resp.getWriter(), usersJson); } }
public void service(HttpServletRequest request, HttpServletResponse response) throws IOException, ServletException { response.setContentType("text/html"); PrintWriter out = response.getWriter(); try { userObj = new User(); tmsManager = new TMSManager(); RequestDispatcher rd1 = request.getRequestDispatcher("./header"); rd1.include(request, response); out.println("<html><head><title>UpdateUser</title></head>"); out.println("<body onload=onSubmit() bgcolor =\"#ffcc00\">"); out.println("<form method =\"POST\" action =\"./updateUser\" ><br><br><br>"); out.println("<table border = 1 width = \"40%\" align = \"center\" bgcolor = \"#bbccff\">"); out.println("<caption><b>UpdateUser</b></caption>"); out.println("<tr><td style = font face: verdana>Enter User ID</td>"); out.println("<td><input type = \"text\" name = \"user_id\" ></td></tr>"); out.println( "<tr><td colspan = 2 align = \"center\"><input type = \"submit\" name = \"Submit\" value = \"Submit\">"); out.println("<input type = \"Reset\" name = \"Reset\" value = \"Clear\"></td></tr>"); out.println("</table>"); out.println("</body></html>"); // String user_id = request.getParameter("user_id"); // userObj = tmsManager.getUser(user_id); } catch (Exception e) { System.out.println(e.getMessage()); } RequestDispatcher rd2 = request.getRequestDispatcher("./footer"); rd2.include(request, response); }
public void doGet(HttpServletRequest solicitacao, HttpServletResponse resposta) throws IOException, ServletException { resposta.setContentType("text/html"); PrintWriter out = resposta.getWriter(); out.println("<html>"); out.println("<body>"); out.println("<center>"); out.println("<h1>Insira os dados para a criação do cookie</h1>"); out.println("</center>"); out.println("<table border='0' width='400'>"); out.println("<tr>"); out.println("<td>"); out.println("<form method='post' action='ExemploCookies'>"); out.println("<font face='verdana' size='2'>"); out.println("Nome do cookie: < / font > "); out.println("<input type='text' name='nome' size = '20'>"); out.println("<br>"); out.println("<font face='verdana' size='2'>"); out.println("Valor do cookie: < / font > "); out.println("<input type='text' name='valor' size ='20'><br > "); out.println("</td>"); out.println("</tr>"); out.println("<tr>"); out.println("<td align='center'>"); out.println("<input type='submit' value='Criar' name = 'S1'>"); out.println(" "); out.println("<input type='reset' value='Limpar' name = 'S2'>"); out.println("</td>"); out.println("</tr>"); out.println("</table>"); out.println("</body>"); out.println("</html>"); }
public void doGet(HttpServletRequest req, HttpServletResponse res) throws IOException, ServletException { res.setContentType("text/html"); try { PrintWriter pw = res.getWriter(); pw.println("<html><head><TITLE>Web-Enabled Automated Manufacturing System</TITLE></head>"); pw.println( "<body><br><br><br><form name=modifyuser method=post action='http://peers:8080/servlet/showUser')"); v = U.allUsers(); pw.println("<table align='center' border=0> <tr><td>"); pw.println( "Select User Name To Modify</td><td><SELECT id=select1 name=uid style='HEIGHT: 22px; LEFT: 74px; TOP: 222px; WIDTH: 155px'>"); pw.println("<OPTION selected value=''></OPTION>"); for (i = 0; i < v.size(); i++) pw.println( "<OPTION value=" + (String) v.elementAt(i) + ">" + (String) v.elementAt(i) + "</OPTION>"); pw.println( "</SELECT></td></tr><tr><td></td><td><input type='submit' name='submit' value='Submit'></td></tr></table></form></body></html>"); pw.flush(); pw.close(); } catch (Exception e) { } }
@Override protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { // POST method only used for tracked login operation HttpSession session = request.getSession(); response.setContentType("text/plain"); PrintWriter out = response.getWriter(); // Get the username and password from request String username = request.getParameter("id"); String password = request.getParameter("pwd"); Long id = 0L; try { id = Long.parseLong(username); } catch (Exception ex) { } if (username != null && password != null) { // Login into tracked system CTracked ctracked = db.loginTrackedFromMobile(id, password).getResult(); if (ctracked != null) { // Login successful out.print("OK," + ctracked.getUsername()); session.setAttribute("device_id", ctracked.getUsername()); log.info(ctracked + " : logined!"); } } }
public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { out = response.getWriter(); boolean result = false; result = getScoreboard(); }