stackoom
  简体   繁体   中英

JDBC login that asks user to re-enter username and password if not found in database

 原文  2022-01-11 23:47:58       java/ sql/ jdbc

Question

So I am trying to practice working with databases and I decided to make a Banking System. I am using MariaDB. I wanted to make it so the user can login and if the info doesnt match anything in the database, they have to re-enter the username and password until it matches but I cannot figure it out. This is my first time implementing sql into java so I apologize if i made any mistakes. I have researched, but the solutions I could find were using swing or javafx but i am not looking to make a gui right now. Anyway, I am not really sure what I am doing in this part.

public void loginAccount(Connection conn) throws SQLException {
        String login;
        ResultSet rs;

        do {
            System.out.print("Enter Username: ");
            Username = in.nextLine();
            System.out.print("Enter Password: ");
            Password = in.nextLine();

            login = "SELECT * FROM Person WHERE Username = ? AND AccPassword = ?";
            PreparedStatement ps = conn.prepareStatement(login);

            ps.setString(1, Username);
            ps.setString(2, Password);

            rs = ps.executeQuery(login);

        }   while (!rs.next());
    }

I keep getting java.sql.SQLSyntaxErrorException: You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near '? AND AccPassword =?' at line 1

Also, I originally had

login = "SELECT * FROM Person WHERE Username = " +Username+ " AND AccPassword = " + Password;

But i read somewhere that it is bad practice to use +. Not sure if that is true or not.

2 answers

solution1
 2  2022-01-12 00:08:58

You are using the wrong method of PreparedStatement.

You should use

rs = ps.executeQuery();

so that your statement gets executed where the placeholders actually have values.

solution2
 2  2022-01-12 00:17:38

You intended to call PreparedStatement.executeQuery()

rs = ps.executeQuery();

but instead you called a static method Statement.executeQuery(String sql)

rs = ps.executeQuery(login);

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to make it re-enter when user login fail Login Authentication using JDBC and JSP : How to check if the username and Password entered by the user exists in the Database? Prompting user to re-enter integers until binary number is entered Java JDBC Login with user-provided username/password How can I ask the user to re-enter their choice? make a user re-enter values if value not correct login page enter correct username and password Is there a way for me to re-enter a wrong input? How to do I make the user re-enter the exam scores if its negative, in the second for loop? Trying to prompt the user to re-enter from the catch block, but the catch block terminates?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM