调试易

只能用JAVA脚本，用服务器验证，跟本没有这么做的

提交页面代码：
<%@page import = "java.util.*,java.io.*,java.net.*,java.lang.*" %>
<%@include file="session.jsp" %>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<META HTTP-EQUIV="Pragma" CONTENT="no-cache"> 
<META HTTP-EQUIV="Cache-Control" CONTENT="no-cache"> 
<META HTTP-EQUIV="Expires" CONTENT="0"> 
<%@ page contentType="text/html; charset=GB2312" %> 
<title>视频点播系统后台管理</title>
<link href="css/style.css" rel="stylesheet" type="text/css">
</head><body leftmargin="0" topmargin="0">
<form name="adduser" method="post" action="UserManageServlet">
<input type="hidden" name="action" value="adduser">
 <table width="760" border="0" align="center" cellpadding="1" cellspacing="1" background="img/dian1.gif">
  <!--DWLayoutTable-->
  <tr bgcolor="f9f9f9"> 
    <td colspan="2"> 
      <%@include file="head.jsp" %>
    </td>
  </tr>
  <tr> 
    <td width="140"  valign="top" ><%@include file="left.jsp" %>
    </td>
    <td width="617" bgcolor="f9f9f9"> 
      
      <table width="42%" border="1"  align="center"cellpadding="2" cellspacing="1">
          <!--DWLayoutTable-->
          <tr> 
            <td width="188" height="23" align="center" valign="top">用户名 </td>
            <td width="188" align="center" valign="top"><input name="UserName" type="text" id="UserName"   size="15"></td>
          </tr>
          <tr> 
            <td height="23" align="center" valign="top">密&nbsp;&nbsp;码 </td>
            <td height="23" align="center" valign="top"><input name="PassWord" type="password" id="PassWord"  size="15"></td>
          </tr>
          <tr> 
            <td height="23" align="center" valign="top">确认密码</td>
            <td height="23" align="center" valign="top"><input name="RePassWord" type="password"  id="RePassWord2"  size="15"></td>
          </tr>
          <tr>
            <td height="23" align="center" valign="top">是否为管理员 </td>
            <td height="23" align="center" valign="top">是
              <input name="AdminPower" type="checkbox"  value="yes">
   <input type="hidden" name="AdminPower">
  </td>
          </tr>
          <tr> 
            <td height="30" align="center" valign="top"> <div align="right"> 
                <input name="submit" type="submit" id="submit" value="提 交">
                &nbsp;&nbsp;&nbsp; </div></td>
            <td height="30" align="center" valign="top"><div align="left"> &nbsp;&nbsp;&nbsp; 
                <input name="reset" type="reset"  id="reset" value="重 置">
              </div></td>
          </tr>
        </table>
      <p>&nbsp;</p>
      <center><font color="#FF0000" size="+2" ><%
if(request.getParameter("err")!=null)
{
String err=URLDecoder.decode(new String(request.getParameter("err").getBytes("iso8859_1"),"gbk"));
out.print(err);
}
%></font></center>
      <p>&nbsp;</p>
      <p>&nbsp;</p>
      </td>
  </tr>
  <tr> 
    <td colspan="2">
<div align="center"><%@include file="end.jsp" %></div></td>
  </tr>
</table>
</form>
</body>
</html>

在SERVLET里进行校验
package user;import javax.servlet.*;
import javax.servlet.http.*;
import java.io.*;
import java.util.*;
import java.net.URLEncoder;
import user.*;
import manage.*;
 
//添加用户SERVLET
public class UserManageServlet extends HttpServlet {
String err = "";
 
  private static final String CONTENT_TYPE = "text/html; charset=GBK";
  
  public void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
    response.setContentType(CONTENT_TYPE);
    
    
   
String action=request.getParameter("action");
 //System.out.println("action value is: "+action);
 //添加用户
  if (action.equals("adduser")){
    String getUserName=new String(request.getParameter("UserName").getBytes("iso8859_1"),"gbk");
    String getPassWord=new String(request.getParameter("PassWord").getBytes("iso8859_1"),"gbk");
    String getRePassWord=new String(request.getParameter("RePassWord").getBytes("iso8859_1"),"gbk");
    String getAdminPower=request.getParameter("AdminPower");
  if(getUserName.equals("")){
   err = URLEncoder.encode("用户名不能为空,请重新输入！");
     response.sendRedirect("/cyvod/manage/adduser.jsp?err="+err);
  }else
  if(getPassWord.equals("")){
   err = URLEncoder.encode("密码不能为空,请重新输入！");
     response.sendRedirect("/cyvod/manage/adduser.jsp?err="+err);
  }else
  if(!getPassWord.equals(getRePassWord)){
      err = URLEncoder.encode("两次密码输入不同,请重新输入！");
     response.sendRedirect("/cyvod/manage/adduser.jsp?err="+err);
   }else
   {    
   
        if(getAdminPower.equals("")){
                    getAdminPower="否";
        }
        if(getAdminPower.equals("yes")){
                    getAdminPower="是";
        }
           
             CheckUser CU = new CheckUser();
         int CUN = CU.CheckUserName(getUserName);
         if ( CUN == 1 )
          {
           err = URLEncoder.encode("该用户名称已经存在，请添入新用户名！");
                    response.sendRedirect("/cyvod/manage/adduser.jsp?err="+err);
          }else
                     {
                      UserManage add=new UserManage();
                         add.UserName=getUserName;
                         add.PassWord=getPassWord;
                         add.AdminPower=getAdminPower;
                         add.AddUser();
             
                          err = URLEncoder.encode("提交成功！");
                            response.sendRedirect("/cyvod/manage/adduser.jsp?err="+err);
                         }           // /mes/msgboard.jsp这么写是因为这个文件在服务器的根目录下
   
    }
  }else
  //批量删除用户
  
   if (action.equals("deluser")){
     
        String deluser=request.getParameter("v1");
         
        System.out.print(deluser);
        deluser=(deluser==null)?"":deluser;
       if(deluser.equals("")){
     err = URLEncoder.encode("您没有选择任何用户，请正确选择！");
          response.sendRedirect("/cyvod/manage/info.jsp?err="+err);
         }else
         {
            UserManage del=new UserManage();
           del.getdeluser=deluser;
           del.DelUser();
            err = URLEncoder.encode("删除成功！");
           response.sendRedirect("/cyvod/manage/info.jsp?err="+err);
         }
  }else
  //登陆管理员判断
   if (action.equals("login")){
    String loginusername=new String(request.getParameter("loginusername").getBytes("iso8859_1"),"gbk");
        String loginpassword=new String(request.getParameter("loginpassword").getBytes("iso8859_1"),"gbk");
    if(loginusername.equals("")){
           err = URLEncoder.encode("用户名不能为空,请重新输入！");
                response.sendRedirect("/cyvod/manage/login.jsp?err="+err);
        }else
        if(loginpassword.equals("")){
             err = URLEncoder.encode("密码不能为空,请重新输入！");
                  response.sendRedirect("/cyvod/manage/login.jsp?err="+err);
        }else
    {
    CheckUser CLUN = new CheckUser();
    int cun = CLUN.CheckAdmin(loginusername,loginpassword);
         if ( cun == 1 )
          {
           err = URLEncoder.encode("管理员帐号或密码错误！");
                   response.sendRedirect("/cyvod/manage/login.jsp?err="+err);
          }else
                     {
                            HttpSession session=request.getSession();
                            String power="是";
                            session.setAttribute("adminpower",power);
                            session.setAttribute("adminname",loginusername);
                            session.setAttribute("adminpassword",loginpassword);
                            err = URLEncoder.encode("欢迎使用本系统！");
                            response.sendRedirect("/cyvod/manage/actadd.jsp?err="+err);
                         }      
   
    } 
   
   
   
    }
}
}