if (action.equals("login")) { String email = request.getParameter

1. if (action.equals("login")) {
2.  
3. String email = request.getParameter("usernamelogin");
4. String password = request.getParameter("passwordlogin");
5. String checkEmail;
6. String checkPassword;
7. String checkSalt;
8. String checkHashedPassword;
9. //finish success
10.  
11. User user = UserDB.select(email);
12. if (user != null) {
13. checkEmail = user.getEmail();
14. checkPassword = user.getPassword();
15. checkSalt = user.getSalt();
16. try {
17. checkHashedPassword = PasswordUtil.hashAndSaltPassword(password, checkSalt);
18. if (checkPassword.equals(checkHashedPassword)) {
19. session.setAttribute("user", user);
20. success = true;
21. ArrayList<Tweet> tweets = TwitterDB.selectTweets(user.getUserName());
22. ArrayList<Tweet> mentionTweets = TwitterDB.selectTweetMentions(user.getUserName());
23. ArrayList<Tweet> totalTweets = new ArrayList<Tweet>();
24. totalTweets.addAll(tweets);
25. totalTweets.addAll(mentionTweets);
26. Collections.sort(totalTweets);
27. session.setAttribute("tweets", totalTweets);
28. session.setAttribute("success", success);
29.  
30. ArrayList<User> users = UserDB.selectUsers(user.getUserName());
31. session.setAttribute("users", users);
32.  
33. url = "/home.jsp";
34. } else {
35. message = "login failed";
36. session.setAttribute("message", message);
37. url = "/login.jsp";
38. }
39. } catch (NoSuchAlgorithmException ex) {
40. Logger.getLogger(membershipServlet.class.getName()).log(Level.SEVERE, null, ex);
41. }
42.  
43. } else {
44. message = "login failed";
45. session.setAttribute("message", message);
46. url = "/login.jsp";
47. }
48. }