Newsletter sign-up
View all newsletters

Enterprise Java Newsletter
Stay up to date on the latest tutorials and Java community news posted on JavaWorld

JavaWorld.com > Java Standard Edition >
JavaWorld Daily Brew
Home » Java Q&A » Community Discussion

Using session to authenticate different types of users

Submitted by tangara on Fri, 01/29/2010 - 02:32.

Hi,

I'd like to know how I can incorporate cookie/session into my Java servlet page to remember and authenticate different users.

I have a login page done in html and a servlet page to compare the names and passwords in a Msaccess table.

So, I hope someone can help me regarding how to incorporate the session portion for different types of users. Also, do I need to create a different login page for different type of user or just use one will do. In that case, do I put in SELECT statement for different table. Hope to have some advice here also.

Thanks.

Here's my code for the servlet page :-

protected void processRequest(HttpServletRequest request, HttpServletResponse response)
            throws ServletException, IOException {
        response.setContentType("text/html;charset=UTF-8");
        PrintWriter out = response.getWriter();
        String userid = request.getParameter("userid");
        String password = request.getParameter("password");
        try {
            Class.forName("sun.jdbc.odbc.JdbcOdbcDriver");
            Connection conn = DriverManager.getConnection("jdbc:odbc:practicalODBC");      
                    
            String query = "SELECT  count( * ) FROM Member WHERE userid = ? AND password = ?";
            PreparedStatement stmt = conn.prepareStatement(query);
            stmt.setString(1, userid);
            stmt.setString(2, password);
            ResultSet resultSet = stmt.executeQuery();
              resultSet.next();
                int columnCount = resultSet.getInt(1);
                if (columnCount == 1) {
                    out.println("<html>");
                    out.println("<head><title>Login Success</title></head>");
                    out.println("<body>");
                    out.println("<p>Login Success! Welcome " + userid);
                    out.println("</body></html>");
                    out.println("<a href=\"AddMember.jsp\">Click here to Add Member</a>");                  
                } else {
                    out.println("<html>");
                    out.println("<head><title>No Such User</title></head>");
                    out.println("<body>");
                    out.println("<p>Login Failed! You are not " + userid);
                    out.println("<p>No such user exists, " + userid);
                    out.println("</body></html>");
                    out.println("<a href=\"login.html\">Click here to login</a>");
                out.close();
                conn.close();
            }} catch  (Exception e) {
            System.out.println("Error" + e.getMessage());
        }  
        try {
            /* TODO output your page here
            out.println("<html>");
            out.println("<head>");
            out.println("<title>Servlet Servlet1</title>");
            out.println("</head>");
            out.println("<body>");
            out.println("<h1>Servlet Servlet1 at " + request.getContextPath () + "</h1>");
            out.println("</body>");
            out.println("</html>");
             */
        } finally {
            out.close();
        }
    }