Skip to Main Content
Forums

Java EE (Java Enterprise Edition) General Discussion

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

ID Verification using JSP

843838Mar 22 2007 — edited Mar 22 2007
Hi All, i am using the code below to make ID Verification of accessing a web site but the the validation method does not work, i mean i can access the web site with any username and password even if they are not stored in the database. where am using a table of customers how only allowed to access the web site. can anyone know what is wrong in the code, thanks iin advace. login.jsp [code] <html> <head> <title>Login page</title> </head> <body> <br> <p> <h3><center>Please enter your user name and password</center></h3></p> <br> <br> <form action="process2.jsp " method = "post" > <center>username</center> <center><input type = "text" name= "username"></center> <center>password</center> <center><input type = "password" name = "password"></center> <center><input type="submit" name="Submit" value="Login"></center> </form> </body> </html> [code] process2.jsp page [code] <%@ page import="java.util.*" %> <jsp:useBean id="idHandler" class="foo.Login" scope="request"> <jsp:setProperty name="idHandler" property="*"/> </jsp:useBean> <% if (idHandler.validate()) { %> <jsp:forward page="success.jsp"/> <% } else { %> <jsp:forward page="retry.jsp"/> <% } %> [/code] the bean class [code] import java.sql.*; public class Login { private String username = ""; private String password = ""; public Login() { } public void setUsername(String username) { this.username = username; } public void setPassword(String password) { this.password = password; } public boolean authenticate(String username2, String password2) { String query="select * from Registration;"; String DbUserName=""; String DbPassword=""; String finalUser=""; try { Class.forName("sun.jdbc.odbc.JdbcOdbcDriver"); Connection con=DriverManager.getConnection("jdbc:odbc:register"); Statement stat=con.createStatement(); ResultSet rst=stat.executeQuery(query); while(rst.next()) { DbUserName=rst.getString("UserName"); DbPassword=rst.getString("password"); if (username2.equals(DbUserName) && password2.equals(DbPassword)) { break; } } return true; }catch(Exception e){ e.printStackTrace(); return false; } }} [/code]
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Apr 19 2007
Added on Mar 22 2007
#javaserver-pages-jsp-and-jstl
1 comment
232 views