stackoom
  简体   繁体   中英

Java - Mysql Getter/Setter

 原文  2013-11-23 01:02:49       java/ mysql

Question

I'm newbie in java, I use getter and setter, as the user authentic. - How to add a query in the getter and setter? - How to use ResultSet, Statement on getter and setter?

Excuse my English, is very lousy. Thanks for your reply

My Class Connection 

    public class con {
    String driver = "com.mysql.jdbc.Driver";
    String url ="jdbc:mysql://localhost:3306/tienda";
    String user = "root";
    String pw = "";
    Connection conn = null;
public ResultSet iList(String iSql){
       try{
           Class.forName(driver).newInstance();
           Connection oCnn  = DriverManager.getConnection(url,user,pw);
           PreparedStatement oPst = oCnn.prepareStatement(iSql);
           ResultSet oRst = oPst.executeQuery();
           return oRst;
       }catch(Exception e){
           return null;
       }
   }
   public String Exen(String iSql){
       try{
           Class.forName(driver).newInstance();
           Connection oCnn = DriverManager.getConnection(url, user, pw);
           PreparedStatement oPst = oCnn.prepareStatement(iSql);
           int i= oPst.executeUpdate();
           return null;
       }catch(Exception e){
           return "error "+e.getMessage();
       }
   }
}

My User Getter and setter 

public class usuario {
   conexion cn = new con();
    private String id;
    private String name;
    private String lastn;
    private String dir;
    private String iPass;

    public String Eliminau(){
        String cad ="delete from tblusuario where idusuario='" + this.getId() + "'";
        return cn.Ejecutar(cad);
    }
    public String Login(){
        String cad = "SELECT * FROM tblusuario WHERE name  '" + this.getname() + "' AND pass = '"+
                this.getiPass() + "'";
        return cn.Ejecutar(cad);
    }

    public String agregar(){
        String cad = "INSERT INTO tblusuario VALUES('" + 
                this.getId() + "','" + this.getiPass() + "','" + this.getname() + "','" +
                this.getlastn() + "','" + this.getDir() +"')";
        return cn.Ejecutar(cad);
    }

    public String getId() { return id;}

    public void setId(String id) {this.id = id;}

    public String getname() { return name;}

    public void setname(String name) {this.name = name;}

    public String getlastn() {return lastn;}

    public void setlastn(String lastn) {this.lastn = lastn;}

    public String getDir() {return dir;}

    public void setDir(String dir) {this.dir = dir; }

    public String getiPass() { return iPass;}

    public void setiPass(String iPass) {
        String cript;
        cript = DigestUtils.md5Hex(iPass);
        this.iPass = cript;
    }    
}

1 answers

solution1
 0 ACCPTED  2013-11-23 01:09:57

First, your whole code is kinda badly composed. Don't return ResultSet or Statement at all. Best idea is to use DAO design pattern which will ensure clean code at least.

Also, in that example, it's shown how to use PreparedStatement to prevent SQL injection vulnerability. And your code is quite vulnerable. Here is mkyongs tutorial about JDBC too.

Here is my GitHub project about JDBC too. Made just for cases like yours. Download it and test it.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Java setter and getter methods getter setter scope in java Java Setter and Getter Java Getter Setter Codestyle Setter Getter Arrays Java Getter/Setter Problem in Java? Java setter and getter? Java :Setter Getter and constructor java enum getter setter Java Getter and Setter Problem
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM