pass parameter from to MySQL statementimport java.sql.*;import java.sql.Prepa

1. pass parameter from to MySQL statement
2. import java.sql.*;
3. import java.sql.PreparedStatement;
4. import java.sql.Connection;
5.  
6. public class Validation {
7.  
8. private PreparedStatement statement;
9. private Connection con;
10. private String x, y;
11.  
12. public Validation(String userID) {
13. try {
14. Class.forName("com.mysql.jdbc.Driver");
15. con = DriverManager.getConnection(
16. "jdbc:mysql://localhost:3306/test", "root", "");
17. statement = con.prepareStatement(
18. "SELECT * from employee WHERE userID = " + "''" + userID);
19. ResultSet rs = statement.executeQuery();
20. while (rs.next()) {
21. x = rs.getString(1);
22. System.out.print(x);
23. System.out.print(" ");
24. y = rs.getString(2);
25. System.out.println(y);
26. }
27. } catch (Exception ex) {
28. System.out.println(ex);
29. }
30. }
31. }
32.  
33. statement =con.prepareStatement("SELECT * from employee WHERE userID = ?");
34. statement.setString(1, userID);
35.  
36. statement = con.prepareStatement("SELECT * from employee WHERE userID = ?");
37. statement.setString(1, userID);
38. ResultSet rs = statement.executeQuery();
39.  
40. statement =con.prepareStatement("SELECT * from employee WHERE userID = ?");
41. statement.setString(1, userID);
42. ResultSet rs = statement.executeQuery();
43.  
44. "SELECT * from employee WHERE userID = ?"
45.  
46. statement.setString(1, userID);
47.  
48. statement =con.prepareStatement("SELECT * from employee WHERE userID = "+"''"+userID);
49. ResultSet rs = statement.executeQuery();
50.  
51. statement =con.prepareStatement("SELECT * from employee WHERE userID = :userId");
52. statement.setString(userId, userID);
53. ResultSet rs = statement.executeQuery();
54.  
55. statement =con.prepareStatement("SELECT * from employee WHERE userID = ?");
56. statement.setString(1, userID);