请高手帮我看看是怎么回事:
当我点击edituser.jsp每次都提示没有此权限
我在登时是用admin进的,搞了好久都没解决,不知是怎么回事???
以下是程序代码:
edituser.jsp部分代码:
<%@ page contentType="text/html; charset=gb2312"%>
<%@ page session="true" %>
<%@ include file="verify.jsp" %>
<%@ include file="../share/connection.jsp" %>
<%
String name = (String)session.getAttribute("adminname");
if(!name.equals("admin"))
{
out.println("您没有此权限");
return;
}
%>
当我点击edituser.jsp每次都提示没有此权限
我在登时是用admin进的,搞了好久都没解决,不知是怎么回事???
以下是程序代码:
edituser.jsp部分代码:
<%@ page contentType="text/html; charset=gb2312"%>
<%@ page session="true" %>
<%@ include file="verify.jsp" %>
<%@ include file="../share/connection.jsp" %>
<%
String name = (String)session.getAttribute("adminname");
if(!name.equals("admin"))
{
out.println("您没有此权限");
return;
}
%>
后面加上一句
out.println("<br>name ="+name);
应该给if后加个else
然后在else块内给该session添加权限
也许读你有用
<%@ page language="java" contentType="text/html; charset=gb2312"%>
<%@ page import="java.sql.*" %>
<jsp:useBean id="conn" scope="page" class="daqing.Conn"></jsp:useBean>
<%!
ResultSet rs =null;
String sql ="";
String username="";
String password="";
%>
<%
username = request.getParameter("username");
password = request.getParameter("password");
if(username==null||username.equals("")||password==null||password.equals("")){
%>
<jsp:forward page="index.jsp"></jsp:forward>
<%
}
sql = "select * from admin where username='"+username+"' and password='"+password+"'";
rs = conn.executeQuery(sql);
if(rs.next()){
session.setAttribute("login",username);
response.sendRedirect("main.jsp");
%>
<%
}else{
%><%
System.out.println("请输入正确的用户名或密码");
response.sendRedirect("index.jsp");
}
rs.close();
%>
要用session.setAttribute("login",username);
<%
String name = (String)session.getAttribute("adminname");
if(!name.equals("admin"))
{
out.println("您没有此权限");
return;
}
%>
当我用
<%
String name =(String)session.getAttribute("adminname");
out.println(name);
out.println(name.equals("admin"));
if(!name.equals("admin"))
{
out.println("您没有此权限");
return;
}
%>
发现name确实是等于admin,但out.println(name.equals("admin"));输出为false,按理说应该是True吧????
session.setAttribute("login",username);
而
(String)session.getAttribute("adminname");
是否应该是
session.getAttribute("login");