How to compare HTML input to the database

Question

1.00/5 (1 vote)

See more:

I created a html login page in which user enter the name and password and I want to compare the name and password to the database for existance if user exist the login else error.for database use mysql.

What I have tried:

#servlet page
Try
{
Class.forName("sun.jdbc.odbc.jdbcodbcdriver");
System.out.println("driver loaded");
Connection.con=DriverManager("jdbc:odbc:five");
System.out.println(database loaded);
PreparedStatement ps=con.preparedStatement("select name from table");
Results rs=ps.executQuery();
String s=JTextField.getText();
String s1= rs.getString("name");
If(s.equals(s1)){
Matched

}
else{
Invalid user;
}
}
#html page

Name

Posted 1-Feb-18 21:17pm

Pmourya

Updated 1-Feb-18 22:19pm

v3

Add a Solution

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Richard MacCutchan · Accepted Answer · 2018-02-01T21:39:00

Solution 1

What does "not work" mean? Please remember, we cannot see your screen or guess what you have done. You need to show your code and explain exactly what is happening.

You should start by reading Secure Password Authentication Explained Simply[^] to ensure you are storing your passwords securely. Also check bobby-tables.com: A guide to preventing SQL injection[^] to see that you are protecting the integrity of your database.

Posted 1-Feb-18 21:39pm

Richard MacCutchan

Comments

Pmourya 2-Feb-18 4:20am

Ok,Pls recheck

Richard MacCutchan 2-Feb-18 4:42am

Your SELECT query is returning all the names in the database, so if the first one does not match the textbox you reject it. You should query for only the name that the user enters. See MySQL :: MySQL 5.7 Reference Manual :: 13.2.9 SELECT Syntax[^] for a full explanation.