问题

英文:

I am doing username and password check MySQL is returning blank
d-color:#272822;">package GUI_755; style="color:#f92672">import java.sql.*; style="color:#f92672">import nonGUI_755.AES; style="color:#66d9ef">public class test { public static void main(String args[]) throws Exception { System.out.println(loginResponse("jordan30@bulls.edu", "JordanTheGoat3098")); } /* 该方法处理用户的登录请求 */ public static String loginResponse(String email, String password) throws Exception { String returnStatement = ""; Connection connection = null; connection = establishConnection(); /* 类似于上面的代码，我们检查邮箱和密码是否与数据库中的匹配 */ final String queryCheck = "SELECT * from usersdata WHERE email = ?"; final PreparedStatement ps = connection.prepareStatement(queryCheck); ps.setString(1, email); final ResultSet resultSet = ps.executeQuery(); try { /* 首先，如果找不到用户的邮箱，我们返回该语句 */ if (resultSet.next()) { /* 其次，如果找到邮箱但密码不匹配，则返回密码不正确 */ String hashedPasswordInput = AES.doHash(password, resultSet.getObject("password").toString().split("\t")[1]); if (hashedPasswordInput.equals(resultSet.getObject("password").toString().split("\t")[0])) { returnStatement = "LoginFailure 您输入的密码不正确，请重试！"; connection.close(); } else { returnStatement = "LoginSuccess 登录成功！"; } } else { connection.close(); returnStatement = "LoginFailure 我们找不到与该邮箱关联的任何帐户，请重试！"; } } catch (Exception e) { } return returnStatement; } /* 此方法将连接到 MySQL 数据库 >> userdata */ public static Connection establishConnection() { try { Class.forName("com.mysql.jdbc.Driver"); Connection connection = DriverManager.getConnection("jdbc:mysql://localhost/userdata", "root", ""); return connection; } catch (Exception e) { return null; } } style="color:#f92672">} against MySQL database but somehow my code is returning none even for the base case (email does not exist). I hash my passwords on the server side. What should I fix in this case?


package GUI_755;
import java.sql.*;
import nonGUI_755.AES;
public class test {
public static void main(String args[]) throws Exception {
System.out.println(loginResponse(&quot;jordan30@bulls.edu&quot;,&quot;JordanTheGoat3098&quot;));
}
/* The method handles the login&#39;s request from the user */
public static String loginResponse(String email, String password) throws Exception{
String returnStatement = &quot;&quot;;
Connection connection = null;
connection = establishConnection();
/* Similar to the code above, we check whether the email and password match to those we have in the database */
final String queryCheck = &quot;SELECT * from usersdata WHERE email = ?&quot;;		
final PreparedStatement ps = connection.prepareStatement(queryCheck);
ps.setString(1, email);
final ResultSet resultSet = ps.executeQuery();
try {
/* First, if we cannot find the user&#39;s email, we return this statement */
if(email.equals(resultSet.getString(&quot;email&quot;))) {
/* Second, if we can find the email but the password do not match then we return that the password is incorrect */
String hashedPasswordInput = AES.doHash(password, resultSet.getObject(&quot;password&quot;).toString().split(&quot;\t&quot;)[1]);
if(hashedPasswordInput.equals(resultSet.getObject(&quot;password&quot;).toString().split(&quot;\t&quot;)[0])) {
returnStatement = &quot;LoginFailure The password that you entered is incorrect. Please try again!&quot;;
connection.close();
}
else {
returnStatement = &quot;LoginSuccess You are logged in!&quot;;
}
}
else {
connection.close();
returnStatement = &quot;LoginFailure We cannot find any account associated with that email. Please try again!&quot;;
}
}catch(Exception e) {}
return returnStatement;
}
/* This method will connect to MySQL database &gt;&gt; userdata */
public static Connection establishConnection(){
try {
Class.forName(&quot;com.mysql.jdbc.Driver&quot;);
Connection connection = DriverManager.getConnection(&quot;jdbc:mysql://localhost/userdata&quot;,&quot;root&quot;,&quot;&quot;);
return connection;
}catch(Exception e)
{return null;}
}
}


答案1
得分: 2
你需要检查你的 ResultSet resultSet 是否返回了一些行。为此，你应该使用 ResultSet 的 next() 方法。如果你只对第一行感兴趣（就像你在这里的情况），可以使用 if (resultSet.next())，如果你想循环遍历返回的结果行（不是你的情况），则可以使用 while (resultSet.next())。
因此，将其放在一起：
final String queryCheck = "SELECT * FROM usersdata WHERE email = ?";
final PreparedStatement ps = connection.prepareStatement(queryCheck);
ps.setString(1, email);
final ResultSet resultSet = ps.executeQuery();
if (resultSet.next()) {
    /* 首先，如果我们找不到用户的电子邮件，我们返回此语句 */
    if (email.equals(resultSet.getString("email"))) {
        /* 其次，如果我们可以找到电子邮件但密码不匹配，则返回密码不正确 */
        String hashedPasswordInput = AES.doHash(password, resultSet.getObject("password").toString().split("\t")[1]);
        if (hashedPasswordInput.equals(resultSet.getObject("password").toString().split("\t")[0])) {
            // 不要在这里执行
            // returnStatement = "LoginFailure The password that you entered is incorrect. Please try again!";
            // connection.close();
        } else {
            returnStatement = "LoginSuccess You are logged in!";
        }
    } else {
        // 不要在这里执行
        // connection.close();
        // returnStatement = "LoginFailure We cannot find any account associated with that email. Please try again!";
    }
}

请注意，由于文本中包含了 HTML 转义字符（&quot;），我已经将其还原为正常的引号表示。

英文:
You need to check if your ResultSet resultSet is returning some rows. For that, you should use next() method of ResultSet. You can use if (resultSet.next() if you are interested in only first row (like your case here) or while (resultSet.next()) if you want to loop over the returned result rows (not your case).
So to put it together:
final String queryCheck = &quot;SELECT * from usersdata WHERE email = ?&quot;;        
final PreparedStatement ps = connection.prepareStatement(queryCheck);
ps.setString(1, email);
final ResultSet resultSet = ps.executeQuery();
if (resultSet.next()) {
/* First, if we cannot find the user&#39;s email, we return this statement */
if(email.equals(resultSet.getString(&quot;email&quot;))) {
/* Second, if we can find the email but the password do not match then we return that the password is incorrect */
String hashedPasswordInput = AES.doHash(password, resultSet.getObject(&quot;password&quot;).toString().split(&quot;\t&quot;)[1]);
if(hashedPasswordInput.equals(resultSet.getObject(&quot;password&quot;).toString().split(&quot;\t&quot;)[0])) {
// dont do it here
// returnStatement = &quot;LoginFailure The password that you entered is incorrect. Please try again!&quot;;
//  connection.close();
}
else {
returnStatement = &quot;LoginSuccess You are logged in!&quot;;
}
}
else {
// don&#39;t do it here
// connection.close();
// returnStatement = &quot;LoginFailure We cannot find any account associated with that email. Please try again!&quot;;
}
}







通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库，让每个人都能够通过互相帮助和分享经验来进步。






						
	

点赞		

					https://go.coder-hub.com/61571327.html
复制链接
复制链接
		


go

检查用户名和密码与MySQL匹配时返回空白

问题

答案1

关于Spring Boot Kafka Stream Binder应用程序错误，需要建议。

使用Java流从HashMap中删除作为值使用的ArrayList中的条目。

AWS EC2 Linux实例 – 适合存储由Web服务器频繁更新和读取的文件的文件夹位置

使用密码表对字符串进行编码

What's the correct way to type hint an empty list as a literal in python?

如何在Highcharts Gantt中更改本地化的星期名称

如何在同一个流中使用多个过滤器和映射函数？

如何使用Map/Set来将代码优化到O(n)？

.NET MAUI Android在GitHub Actions上构建失败，错误代码为1。

如何在Playwright视觉比较中屏蔽多个定位器？

在C++中，可以使用可变模板参数来检索类型的内部类型。

selenium.common.exceptions.StaleElementReferenceException: Message: stale element reference: stale element not found

Creating and opening a URL to log in to Website via Basic Auth with Robot Framework/Selenium (Python)

AG Grid 在上下文菜单中以大文本形式打开

发表评论