Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <%
- String user = request.getParameter("name");
- String pwd = request.getParameter("password");
- String sql = "select * from members where name = ? and password = ?";
- int role = 0;
- // since execute returns an int of 1 or 0, we can use it for our if-else statement
- if (BaseDAO.check(sql, user, pwd) != 0) {
- session.setAttribute("user", user);
- role = BaseDAO.checkRole(sql, user, pwd);
- session.setAttribute("role", role);
- response.sendRedirect("frameMgr.jsp");
- } else {
- session.setAttribute("login", 0);
- response.sendRedirect("loginPage.jsp");
- }
- %>
- <%
- int role = (Integer) session.getAttribute("role");
- // only allow people with admin role to create more accounts
- if (role != 5) {
- response.sendRedirect("frameContent.jsp"); //back to homepage
- }
- %>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
