From 8b6675d178db8e0f8b419d33867463fa69394ed2 Mon Sep 17 00:00:00 2001 From: tangxinyuan Date: Mon, 11 Nov 2024 09:54:47 +0800 Subject: [PATCH] =?UTF-8?q?=E4=B8=8A=E4=BC=A0=E6=96=87=E4=BB=B6=E8=87=B3?= =?UTF-8?q?=20'code/springboot/newBank/src/main/java/demo/zhangjialei/cont?= =?UTF-8?q?roller'?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit 20241111提交修改 --- .../demo/zhangjialei/controller/makeNo.java | 2 +- .../controller/userController.java | 334 ++++++++++-------- 2 files changed, 196 insertions(+), 140 deletions(-) diff --git a/code/springboot/newBank/src/main/java/demo/zhangjialei/controller/makeNo.java b/code/springboot/newBank/src/main/java/demo/zhangjialei/controller/makeNo.java index 4d46affe1..29249a69e 100644 --- a/code/springboot/newBank/src/main/java/demo/zhangjialei/controller/makeNo.java +++ b/code/springboot/newBank/src/main/java/demo/zhangjialei/controller/makeNo.java @@ -1,4 +1,4 @@ -package demo; +package demo.zhangjialei.controller; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.jdbc.core.JdbcTemplate; diff --git a/code/springboot/newBank/src/main/java/demo/zhangjialei/controller/userController.java b/code/springboot/newBank/src/main/java/demo/zhangjialei/controller/userController.java index 3a098c3ae..855681c38 100644 --- a/code/springboot/newBank/src/main/java/demo/zhangjialei/controller/userController.java +++ b/code/springboot/newBank/src/main/java/demo/zhangjialei/controller/userController.java @@ -1,140 +1,196 @@ -package demo.zhangjialei.controller; - -import org.springframework.beans.factory.annotation.Autowired; -import org.springframework.jdbc.core.JdbcTemplate; -import org.springframework.web.bind.annotation.RequestMapping; -import org.springframework.web.bind.annotation.RestController; - -import javax.servlet.http.HttpServletRequest; -import java.sql.*; -import java.text.SimpleDateFormat; -import java.util.Date; -import java.util.List; -import java.util.Map; - - -@RestController -public class userController { - - @Autowired - private JdbcTemplate jdbcTemplate; - - // 查询客户信息 - @RequestMapping("/qryUser") - public Map QryUser(HttpServletRequest request){ - // 接收前端字段 - String userNo = request.getParameter("userdNo"); - // 建立sql查询语句 - String sql = String.format("select * from user u where userNo = %s", userNo); - // 使用sql语句查询并接收 - List> list = jdbcTemplate.queryForList(sql); - // 返回查询结果 - return list.get(0); - // http://127.0.0.1:12709/qryUser?userdNo=0001 - - } - - // 生成客户编号 - @RequestMapping("/userNoMake") - public String makeUserNo(){ - - // 将数据库中客户编号 +1 - String sql_update = String.format("update userNoMaker set userNo = userNo + 1"); - jdbcTemplate.update(sql_update); - - // 返回 +1 后的客户编号 - String sql_select = String.format("select userNo from userNoMaker"); - int No = (int) jdbcTemplate.queryForList(sql_select).get(0).get("userNo"); - - String userNo = String.format("%04d", No); - - return userNo; - // http://localhost:12709/userNoMake - }; - - // 获取当前系统时间 - public static String getDate() { - - java.util.Date date = new Date(); - SimpleDateFormat sdf = new SimpleDateFormat("yyyy-MM-dd HH:mm:ss"); - - // 2024-10-22 12:30:30 - return sdf.format(date); - } - - // 新增客户 - @RequestMapping("/addUser") - public int addUser(HttpServletRequest request) throws SQLException { - - // 从前端获取客户输入数据 - String passwd = request.getParameter("passwd"); // 密码 - String userName = request.getParameter("userName"); // 姓名 - String gender = request.getParameter("gender"); // 性别 - String birthday = request.getParameter("birthday"); // 生日 - String docType = request.getParameter("docType"); // 证件类型 - String docNo = request.getParameter("docNo"); // 证件编号 - String tel = request.getParameter("tel"); // 电话号码 - String addr = request.getParameter("addr"); // 居住地址 - - // 生成客户编号 - String userNo = makeUserNo(); - - // 获取系统时间 - String date = getDate(); - - // 将数据添加到数据库 - String sql = String.format( - "INSERT INTO newbank.user (userNo, passwd, userName, gender, birthday, docType, docNo, tel, addr, createDate) " + - "VALUES ('%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s');", - userNo, passwd, userName, gender, birthday, docType, docNo, tel, addr, date - ); - - int i = jdbcTemplate.update(sql); - - return i; - // http://localhost:12709/addUser? - // passwd=123123&userName=Alex&gender=1&birthday=20001010&docType=身份证&docNo=123123123&tel=123123123&addr=广西桂林 - } - - // 修改客户信息 - @RequestMapping("/updateUserInfo") - public int updateUserInfo(HttpServletRequest request) { - - // 获取要修改的客户编号 - String userNo = request.getParameter("userNo"); - - // 获取客户输入数据 -// String passwd = request.getParameter("passwd"); // 密码 -// String userName = request.getParameter("userName"); // 姓名 -// String gender = request.getParameter("gender"); // 性别 -// String birthday = request.getParameter("birthday"); // 生日 - String docType = request.getParameter("docType"); // 证件类型 - String docNo = request.getParameter("docNo"); // 证件编号 - String tel = request.getParameter("tel"); // 电话号码 - String addr = request.getParameter("addr"); // 居住地址 - - // 更新数据 - String sql = String.format( - "update newbank.user set " + -// "passwd = '%s', " + -// "userName = '%s', " + -// "gender = '%s', " + -// "birthday = '%s', " + - "docType = '%s', " + - "docNo = '%s', " + - "tel = '%s', " + - "addr = '%s' " + - "where userNo = '%s'", -// passwd, userName, gender, birthday, - docType, docNo, tel, addr, userNo - ); - - int i = jdbcTemplate.update(sql); - - return i; - // http://localhost:12709/updateUserInfo? - // userNo=0003&passwd=123123&userName=Alex123&gender=3&birthday=20001010&docType=身份证&docNo=123123123&tel=123123123&addr=广西来宾 - } - - +package demo.zhangjialei.controller; + +import org.springframework.beans.factory.annotation.Autowired; +import org.springframework.jdbc.core.JdbcTemplate; +import org.springframework.web.bind.annotation.RequestMapping; +import org.springframework.web.bind.annotation.RestController; + +import javax.servlet.http.HttpServletRequest; +import java.sql.*; +import java.text.SimpleDateFormat; +import java.util.Date; +import java.util.List; +import java.util.Map; + + +@RestController +public class userController { + + @Autowired + private JdbcTemplate jdbcTemplate; + + // 查询客户信息 + @RequestMapping("/qryUser") + public Map QryUser(HttpServletRequest request){ + // 接收前端字段 + String userNo = request.getParameter("userdNo"); + // 建立sql查询语句 + String sql = String.format("select * from user u where userNo = %s", userNo); + // 使用sql语句查询并接收 + List> list = jdbcTemplate.queryForList(sql); + // 返回查询结果 + return list.get(0); + // http://127.0.0.1:12709/qryUser?userdNo=0001 + + } + + // 生成客户编号 + @RequestMapping("/userNoMake") + public String makeUserNo(){ + + // 将数据库中客户编号 +1 + String sql_update = String.format("update userNoMaker set userNo = userNo + 1"); + jdbcTemplate.update(sql_update); + + // 返回 +1 后的客户编号 + String sql_select = String.format("select userNo from userNoMaker"); + int No = (int) jdbcTemplate.queryForList(sql_select).get(0).get("userNo"); + + String userNo = String.format("%04d", No); + + return userNo; + // http://localhost:12709/userNoMake + }; + + // 获取当前系统时间 + public static String getDate() { + + java.util.Date date = new Date(); + SimpleDateFormat sdf = new SimpleDateFormat("yyyy-MM-dd HH:mm:ss"); + + // 2024-10-22 12:30:30 + return sdf.format(date); + } + + // 新增客户 + @RequestMapping("/addUser") + public int addUser(HttpServletRequest request) throws SQLException { + + // 从前端获取客户输入数据 + String passwd = request.getParameter("passwd"); // 密码 + String userName = request.getParameter("userName"); // 姓名 + String gender = request.getParameter("gender"); // 性别 + String birthday = request.getParameter("birthday"); // 生日 + String docType = request.getParameter("docType"); // 证件类型 + String docNo = request.getParameter("docNo"); // 证件编号 + String tel = request.getParameter("tel"); // 电话号码 + String addr = request.getParameter("addr"); // 居住地址 + + // 生成客户编号 + String userNo = makeUserNo(); + + // 获取系统时间 + String date = getDate(); + + // 将数据添加到数据库 + String sql = String.format( + "INSERT INTO newbank.user (userNo, passwd, userName, gender, birthday, docType, docNo, tel, addr, createDate) " + + "VALUES ('%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s');", + userNo, passwd, userName, gender, birthday, docType, docNo, tel, addr, date + ); + + int i = jdbcTemplate.update(sql); + + return i; + // http://localhost:12709/addUser? + // passwd=123123&userName=Alex&gender=1&birthday=20001010&docType=身份证&docNo=123123123&tel=123123123&addr=广西桂林 + } + + // 修改客户信息 + @RequestMapping("/updateUserInfo") + public int updateUserInfo(HttpServletRequest request) { + + // 获取要修改的客户编号 + String userNo = request.getParameter("userNo"); + + // 获取客户输入数据 +// String passwd = request.getParameter("passwd"); // 密码 +// String userName = request.getParameter("userName"); // 姓名 +// String gender = request.getParameter("gender"); // 性别 +// String birthday = request.getParameter("birthday"); // 生日 + String docType = request.getParameter("docType"); // 证件类型 + String docNo = request.getParameter("docNo"); // 证件编号 + String tel = request.getParameter("tel"); // 电话号码 + String addr = request.getParameter("addr"); // 居住地址 + + // 更新数据 + String sql = String.format( + "update newbank.user set " + +// "passwd = '%s', " + +// "userName = '%s', " + +// "gender = '%s', " + +// "birthday = '%s', " + + "docType = '%s', " + + "docNo = '%s', " + + "tel = '%s', " + + "addr = '%s' " + + "where userNo = '%s'", +// passwd, userName, gender, birthday, + docType, docNo, tel, addr, userNo + ); + + int i = jdbcTemplate.update(sql); + + return i; + // http://localhost:12709/updateUserInfo? + // userNo=0003&passwd=123123&userName=Alex123&gender=3&birthday=20001010&docType=身份证&docNo=123123123&tel=123123123&addr=广西来宾 + } + + // 客户注销 + @RequestMapping("/delUser") + public int delUser(HttpServletRequest request) { + + // 接收要注销得客户编号 + String userNo = request.getParameter("userdNo"); + + // 向数据库中查询编号是否存在 + String sql_sel = String.format("select * from user where userNo = %s", userNo); + List> sel_res = jdbcTemplate.queryForList(sql_sel); + + if (sel_res.size() > 0){ // 查询结果大于 1 该如何处置? + // 在数据库中删除改客户编号对应数据 + String sql_del = String.format("delete from user where userNo = %s", userNo); + return jdbcTemplate.update(sql_del); + } else { + // 编号不存在 返回 0 + return 0; + } + // http://localhost:12709/delUser?userNo=9900 + } + + // 客户登录 + @RequestMapping("/userLogin") + public int userLogin(HttpServletRequest request) { + + // 接收客户编号和密码 + String userNo = request.getParameter("userdNo"); + String passwd_input = request.getParameter("passwd"); + + // 向数据库中查询编号是否存在 + String sql_sel = String.format("select * from user where userNo = %s", userNo); + List> sel_res = jdbcTemplate.queryForList(sql_sel); + + System.out.println(sel_res); + + if (sel_res.size() != 0){ + + // 正确密码 + String passwd_true = (String) sel_res.get(0).get("passwd"); + + // 判断密码是否正确 + if (passwd_input.equals(passwd_true)) { + // 密码正确 登录成功 + return 1; + } else { + // 密码错误 登录失败 + return 0; + } + } else { + // 编号不存在 + return 0; + + } + // 存在安全隐患 + // http://localhost:12709/userLogin?userNo=9999&passwd=123456 + } } \ No newline at end of file