1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
| <%@page contentType="text/html"%>
<%@page pageEncoding="UTF-8"%>
<%@page import="java.sql.*" %>
<%@page import="java.sql.ResultSet" %>
<%@page import="pack.Menu"%>
<%@page import="java.lang.*,java.io.*" %>
<%@page import="java.lang.String"%>
<%@ include file="entete.html" %>
<%@ include file="connBegin.jsp"%>
<%@ include file="accessControl.jsp"%>
<%
// are we coming from filling form ?
if (request.getParameter("done")!=null){
String name ="";
String dep ="";
String toModify = request.getParameter("user_mod");
int error=0;
// are the field well filled ?
if ((request.getParameter("p_name")==null)||(request.getParameter("p_dep")==null)){
error=error+1;
}
else{
name = request.getParameter("p_name");
dep = request.getParameter("p_dep");
// control of unicity of the name
if (toModify.compareTo(name)!=0){ // which means we are updating the name
rs=statement.executeQuery("SELECT * FROM USER WHERE USER_NAME='" + name + "'");
if (rs.next()){
out.println("le nom existe deja<br>");
error=error+2; // the name is already used
}
}
}
// case of error, determine which one and display message before form
if (error>0){
String message="";
if (error==1){
message="The field are not well filled. Please check.";
}
else{
message="The name you choose already exists, pick another one.";
}
%>
<jsp:forward page="modifyUser.jsp?mess=<% out.println(message);%>.jsp"/>
<%
}
// case delete ok, we proceed and display message
else {
statement.executeUpdate("UPDATE USER SET USER_NAME='" + name + "', USER_DEP='" + dep + "' WHERE USER_NAME='" + toModify + "'");
%>
<div class="access_refused" align="center">
Update successfull.<br><br>
<font color="#FF0000">: : </font><a href="userManager.jsp" class="link">BACK</a><font color="#FF0000"> : : </font>
</div>
<%
}
}
// first time in this page, or filling mistake
else{
// we never came but we have to check that we come from the userManager page
if (request.getParameter("user_mod")==null){// if not go to error page
%>
<%@ include file="errorToAdmin.jsp"%>
<%
}
// first come, normal use
else{
String toModify = request.getParameter("user_mod");
rs=statement.executeQuery("SELECT * FROM USER WHERE USER_NAME='" + toModify + "'");
rs.next();
%>
<div class="box" align="center">
<form method="POST" action="modifyUser.jsp">
<input type="hidden" value="ok" name="done">
<%
out.println("<input type=\"hidden\" name=\"user_mod\" value=\"" + toModify + "\">");
if (request.getParameter("mess")!=null){
String mess = request.getParameter("mess");
out.println("<font color=\"#CC0000\">" + mess + "</font><br>");
}
%>
<b>Please make your changes :</b><br><br>
<table border="0">
<tr>
<td>
<table border="0">
<tr>
<%
out.println("<td align=\"left\">Name : </td>");
out.println("<td class=\"form_element\"><input type=\"text\" name=\"p_name\" value=\"" + rs.getString(1) + "\"></td>");
out.println("</tr><tr>");
out.println("<td align=\"left\">Department : </td>");
out.println("<td class=\"form_element\"><input type=\"text\" name=\"p_dep\" value=\"" + rs.getString(4) + "\"></td>");
out.println("</tr><tr>");
out.println("<td align=\"left\">Area : </td>");
out.println("<td align=\"left\">" + rs.getString(3) + "</td>");
out.println("</tr><tr>");
out.println("<td align=\"left\">Access : </td>");
out.println("<td align=\"left\">" + rs.getString(2) + "</td>");
%>
</tr>
</table>
</td>
</tr>
<tr>
<td> </td>
</tr>
<tr>
<td align="center"><input class="button" type="submit" value="Save"></td>
</tr>
</tr>
</table>
</form>
</div>
<%
}
}
%>
<%@ include file="endAccess.jsp"%>
<%@ include file="connEnd.jsp" %>
<%@ include file="piedpage.html" %> |
message trop de connexions
Répondre avec citation
Partager