赞
踩
// 接收用户输入 用户名和密码
String name = "hfkjsfhskj";
String pwd = "'' or '1' ='1'";
//2、获取链接
String url = "jdbc:mysql://127.0.0.1:3306/db1";
String username = "root";
String password = "****";
Connection conn = DriverManager.getConnection(url, username, password);
// 接收用户输入 用户名和密码
String name = "zhangsan";
String pwd = "123";
//定义sql
String sql = "select * from tb_user where username = ? and password = ?";
//获取pstmt对象
PreparedStatement pstmt = conn.prepareStatement(sql);
// 设置?的值
pstmt.setString(1,name);
pstmt.setString(2,pwd);
// 执行sql
ResultSet rs = pstmt.executeQuery();
public void testLogin() throws Exception{ //2、获取链接 String url = "jdbc:mysql://127.0.0.1:3306/db1"; String username = "root"; String password = "****"; Connection conn = DriverManager.getConnection(url, username, password); // 接收用户输入 用户名和密码 String name = "zhangsan"; String pwd = "123"; //定义sql String sql = "select * from tb_user where username = ? and password = ?"; //获取pstmt对象 PreparedStatement pstmt = conn.prepareStatement(sql); // 设置?的值 pstmt.setString(1,name); pstmt.setString(2,pwd); // 执行sql ResultSet rs = pstmt.executeQuery(); // 判断登录是否成功 if (rs.next()){ System.out.println("登录成功"); }else { System.out.println("登录失败"); } //7、释放资源 rs.close(); pstmt.close(); conn.close(); }
Copyright © 2003-2013 www.wpsshop.cn 版权所有,并保留所有权利。