Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- /*
- * To change this template, choose Tools | Templates
- * and open the template in the editor.
- */
- import java.sql.ResultSet;
- import eskuel.CMI_SQL;
- import java.io.IOException;
- import java.io.PrintWriter;
- import java.sql.SQLException;
- import javax.servlet.*;
- import javax.servlet.http.*;
- /**
- *
- * @author Wolfert
- */
- public class login extends HttpServlet {
- /**
- * Processes requests for both HTTP <code>GET</code> and <code>POST</code> methods.
- * @param request servlet request
- * @param response servlet response
- */
- protected void processRequest(HttpServletRequest request, HttpServletResponse response)
- throws ServletException, IOException {
- response.setContentType("text/html;charset=UTF-8");
- PrintWriter out = response.getWriter();
- try {
- CMI_SQL sql = new CMI_SQL("jdbc:mysql://mysql.cmi-hro.nl:3306/cmi0815283", "cmi0815283", "d8xzc ");
- String username = request.getParameter("Rnaam");
- String password = request.getParameter("Rnummer");
- String dbpassword, dbusername;
- if (username.contains("=")) {
- out.println("faal evil hax0r");
- } else {
- String query = "SELECT reserveringsnummer, klantnaam FROM KLANT WHERE klantnaam ='" + username + "'";
- ResultSet resultaat = sql.selectieQuery(query);
- try {
- while (resultaat.next()) {
- dbpassword = resultaat.getString("reserveringsnummer");
- dbusername = resultaat.getString("klantnaam");
- if (dbusername.equals(username) && dbpassword.equals(password)) {
- request.setAttribute("authorized", "yes");
- out.println("win");
- String nextJSP = "/home.jsp";
- RequestDispatcher dispatcher = getServletContext().getRequestDispatcher(nextJSP);
- dispatcher.forward(request, response);
- //getServletContext().getRequestDispatcher("/home.jsp").forward(request, response);
- } else {
- request.setAttribute("authorized", "no");
- out.println("faal");
- String nextHTML = "/index.html";
- RequestDispatcher dispatcher = getServletContext().getRequestDispatcher(nextHTML);
- dispatcher.forward(request, response);
- //getServletContext().getRequestDispatcher("/home.jsp").forward(request, response);
- }
- }
- } catch (SQLException e_sql) {
- }
- }
- } finally {
- out.close();
- }
- }
- // <editor-fold defaultstate="collapsed" desc="HttpServlet methods. Click on the + sign on the left to edit the code.">
- /**
- * Handles the HTTP <code>GET</code> method.
- * @param request servlet request
- * @param response servlet response
- */
- protected void doGet(HttpServletRequest request, HttpServletResponse response)
- throws ServletException, IOException {
- processRequest(request, response);
- }
- /**
- * Handles the HTTP <code>POST</code> method.
- * @param request servlet request
- * @param response servlet response
- */
- protected void doPost(HttpServletRequest request, HttpServletResponse response)
- throws ServletException, IOException {
- processRequest(request, response);
- }
- /**
- * Returns a short description of the servlet.
- */
- public String getServletInfo() {
- return "Short description";
- }
- // </editor-fold>
- }
Add Comment
Please, Sign In to add comment