Auth.html
<html>
<body>
<form method="post" action="./Login.jsp">
user name:<input type="text" name="txt"><br>
password:<input type="password" name="pwd"><br>
<input type="submit" name="sub" value="submit">
</form>
</body>
</html>
Login.jsp
<%@ page import ="java.sql.*" %>
<%
try{
String user=request.getParameter("txt");
String pass=request.getParameter("pwd");
Class.forName("oracle.jdbc.driver.OracleDriver");
Connection con=DriverManager.getConnection(
"jdbc:oracle:thin:@localhost:1521:xe","system","manager");
Statement st = con.createStatement();
ResultSet rs;
rs = st.executeQuery("select * from login where un='" + user + "' and pw='" + pass + "'");
if (rs.next()){
session.setAttribute("userid", user);
//out.println("welcome " + user);
// out.println("<a href='logout.jsp'>Log out</a>");
response.sendRedirect("success.jsp");
}
else {
out.println("Invalid User<br><a href='Auth1.html'>try again</a>");
}
}
catch(Exception e){
System.out.println(e);
}
%>
Logout.jsp
<%
session.setAttribute("userid", null);
session.invalidate();
response.sendRedirect("auth.html");
%>
Success.jsp
<%
if ((session.getAttribute("userid") == null) || (session.getAttribute("userid")== "")) {
%>
You are not logged in<br/>
<a href="Auth.html">Please Login</a>
<%} else {
%>
Welcome <%=session.getAttribute("userid")%>
<br>
<a href='logout.jsp'>Log out</a>
<%
}
%>
