Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- package edu.hm.muse.controller;
- import org.springframework.jdbc.core.JdbcTemplate;
- import org.springframework.stereotype.Controller;
- import org.springframework.web.bind.annotation.RequestMapping;
- import org.springframework.web.bind.annotation.RequestMethod;
- import org.springframework.web.bind.annotation.RequestParam;
- import org.springframework.web.servlet.ModelAndView;
- import javax.annotation.Resource;
- import javax.servlet.http.HttpSession;
- import javax.sql.DataSource;
- import java.util.List;
- import java.util.Map;
- @Controller
- public class AccountController {
- private JdbcTemplate newJdbcTemplate;
- @Resource(name = "dataSource")
- public void setDataSource(DataSource dataSource) {
- newJdbcTemplate = new JdbcTemplate(dataSource);
- }
- @RequestMapping(value = "/account.secu", method = RequestMethod.GET)
- public ModelAndView showAccountPage(HttpSession session) {
- if (session.getAttribute("user") == null) {
- ModelAndView mv = new ModelAndView("newLogIn");
- mv.addObject("msg", "Bitte loggen Sie sich erst ein, um Ihre Account-Daten einzusehen.");
- return mv;
- }
- String memail = (String) session.getAttribute("user");
- String sql = String.format("Select * from Members where Email = '%s'", memail);
- List<User> showUser = newJdbcTemplate.query(sql, new UserMapper());
- ModelAndView modelAndView = new ModelAndView("account");
- modelAndView.addObject("showUser", showUser);
- return modelAndView;
- }
- @RequestMapping(value = "/account.secu", method = RequestMethod.POST)
- public ModelAndView changeUserDate(@RequestParam Map<String, String> allRequestParams, HttpSession session) {
- String oldEmail = allRequestParams.get("oldEmail");
- String newEmail = allRequestParams.get("newEmail");
- String canResetEmail = allRequestParams.get("emailResetGo");
- if (canResetEmail == null) {
- canResetEmail = "";
- }
- String newPassword = allRequestParams.get("newPassword");
- String canResetPassword = allRequestParams.get("passwordResetGo");
- if (canResetPassword == null) {
- canResetPassword = "";
- }
- String canDeleteAccount = allRequestParams.get("deleteAccountGo");
- if (canDeleteAccount == null) {
- canDeleteAccount = "";
- }
- String memail = (String) session.getAttribute("user");
- String sqlQuery;
- if (canResetEmail.equals("go")) {
- sqlQuery = String.format("UPDATE MEMBERS SET Email = '%s' WHERE Email = '%s'", newEmail, oldEmail);
- newJdbcTemplate.execute(sqlQuery);
- sqlQuery = String.format("Select * from Members where Email = '%s'", newEmail);
- List<User> showUser = newJdbcTemplate.query(sqlQuery, new UserMapper());
- ModelAndView modelAndView = new ModelAndView("account");
- modelAndView.addObject(showUser);
- modelAndView.addObject("showUser", showUser);
- session.setAttribute("user", newEmail);
- return modelAndView;
- }
- else if (canResetPassword.equals("go")) {
- sqlQuery = String.format("UPDATE MEMBERS SET Pwd = '%s' WHERE Email = '%s'", newPassword, memail);
- newJdbcTemplate.execute(sqlQuery);
- ModelAndView mv = new ModelAndView("newLogIn");
- mv.addObject("msg", "Bitte loggen Sie sich erst ein, um Ihre Account-Daten einzusehen.");
- return mv;
- } else if (canDeleteAccount.equals("go")) {
- sqlQuery = String.format("DELETE FROM MEMBERS WHERE Email = '%s'", memail);
- newJdbcTemplate.execute(sqlQuery);
- session.setAttribute("login", false);
- ModelAndView mv = new ModelAndView("newLogIn");
- mv.addObject("msg", "Bitte loggen Sie sich erst ein, um Ihre Account-Daten einzusehen.");
- return mv;
- }
- ModelAndView mv = new ModelAndView("newLogIn");
- mv.addObject("msg", "Bitte loggen Sie sich erst ein, um Ihre Account-Daten einzusehen.");
- return mv;
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement