Newsletter sign-up
View all newsletters

Enterprise Java Newsletter
Stay up to date on the latest tutorials and Java community news posted on JavaWorld

JavaWorld Daily Brew

Using session to authenticate different types of users


Hi,

I'd like to know how I can incorporate cookie/session into my Java servlet page to remember and authenticate different users.

I have a login page done in html and a servlet page to compare the names and passwords in a Msaccess table.

So, I hope someone can help me regarding how to incorporate the session portion for different types of users. Also, do I need to create a different login page for different type of user or just use one will do. In that case, do I put in SELECT statement for different table. Hope to have some advice here also.

Thanks.

Here's my code for the servlet page :-

protected void processRequest(HttpServletRequest request, HttpServletResponse response)
            throws ServletException, IOException {
        response.setContentType("text/html;charset=UTF-8");
        PrintWriter out = response.getWriter();
        String userid = request.getParameter("userid");
        String password = request.getParameter("password");
        try {
            Class.forName("sun.jdbc.odbc.JdbcOdbcDriver");
            Connection conn = DriverManager.getConnection("jdbc:odbc:practicalODBC");      
                    
            String query = "SELECT  count( * ) FROM Member WHERE userid = ? AND password = ?";
            PreparedStatement stmt = conn.prepareStatement(query);
            stmt.setString(1, userid);
            stmt.setString(2, password);
            ResultSet resultSet = stmt.executeQuery();
              resultSet.next();
                int columnCount = resultSet.getInt(1);
                if (columnCount == 1) {
                    out.println("<html>");
                    out.println("<head><title>Login Success</title></head>");
                    out.println("<body>");
                    out.println("<p>Login Success! Welcome " + userid);
                    out.println("</body></html>");
                    out.println("<a href=\"AddMember.jsp\">Click here to Add Member</a>");                  
                } else {
                    out.println("<html>");
                    out.println("<head><title>No Such User</title></head>");
                    out.println("<body>");
                    out.println("<p>Login Failed! You are not " + userid);
                    out.println("<p>No such user exists, " + userid);
                    out.println("</body></html>");
                    out.println("<a href=\"login.html\">Click here to login</a>");
                out.close();
                conn.close();
            }} catch  (Exception e) {
            System.out.println("Error" + e.getMessage());
        }  
        try {
            /* TODO output your page here
            out.println("<html>");
            out.println("<head>");
            out.println("<title>Servlet Servlet1</title>");
            out.println("</head>");
            out.println("<body>");
            out.println("<h1>Servlet Servlet1 at " + request.getContextPath () + "</h1>");
            out.println("</body>");
            out.println("</html>");
             */
        } finally {
            out.close();
        }
    }