package com.weiyuan.goods.user.domian;

public class User {

private String uid; //主键
private String loginname;// 登陆名称
private String loginpass;// 登陆密码
private String email;//注册的邮箱
private String verifyCode; //验证码
private int status;//是否激活
private String activationCode;//激活码

private String reloginpass; //确认密码
private String newpass;//修改密码对应的新密码

public int getStatus() {
return status;
public void setStatus(int status) {
this.status = status;
public String getReloginpass() {
return reloginpass;
public void setReloginpass(String reloginpass) {
this.reloginpass = reloginpass;
public String getNewpass() {
return newpass;
public void setNewpass(String newpass) {
this.newpass = newpass;
public String getUid() {
return uid;
public void setUid(String uid) {
this.uid = uid;
public String getLoginname() {
return loginname;
public void setLoginname(String loginname) {
this.loginname = loginname;
public String getLoginpass() {
return loginpass;
public void setLoginpass(String loginpass) {
this.loginpass = loginpass;
public String getEmail() {
return email;
public void setEmail(String email) {
this.email = email;
public String getVerifyCode() {
return verifyCode;
public void setVerifyCode(String verifyCode) {
this.verifyCode = verifyCode;

public String getActivationCode() {
return activationCode;
public void setActivationCode(String activationCode) {
this.activationCode = activationCode;
public String toString() {
return "User [uid=" + uid + ", loginname=" + loginname + ", loginpass="
+ loginpass + ", email=" + email + ", verifyCode=" + verifyCode
+ ", status=" + status + ", activationCode=" + activationCode
+ "]";




package com.weiyuan.goods.user.dao;

import java.sql.SQLException;

import org.apache.commons.dbutils.handlers.BeanHandler;
import org.apache.commons.dbutils.handlers.ScalarHandler; import com.weiyuan.goods.user.domian.User; import cn.itcast.jdbc.TxQueryRunner; public class UserDao { //操作数据库
private TxQueryRunner qr = new TxQueryRunner(); /***
* 查询用户名是否存在
* @throws SQLException
public boolean ajaxValidateLoginName(String loginName) throws SQLException{
String sql ="select count(*) from t_user where loginname=?";
Number num = (Number) qr.query(sql, new ScalarHandler(),loginName);
int count = num.intValue(); if(count>0){
return true;
return false;
} /***
* 查询邮箱是否存在
* @throws SQLException
public boolean ajaxValidateEmail(String email) throws SQLException{
String sql ="select count(*) from t_user where email=?";
Number num = (Number) qr.query(sql, new ScalarHandler(),email);
int count = num.intValue();
return true;
return false;
} /***
* 添加注册的用户
* @throws SQLException
public void addUser(User user) throws SQLException{
String sql ="insert into t_user values(?,?,?,?,?,?)";
Object[] params = {user.getUid(),user.getLoginname(),user.getLoginpass(),
qr.update(sql, params);
} /*
* 通过激活码获得用户
* */
public User findUserByActivationCode(String activationCode) throws SQLException{ String sql = "select * from t_user where activationCode = ?";
return qr.query(sql, new BeanHandler<User>(User.class),activationCode);
} /*
* 设置用户的激活状态
* */ public void setUserActivationCode(String uuid,int status) throws SQLException{
String sql = "update t_user set status = ? where uid = ? ";
} /*
* 通过用户名和密码查找得到对应的用户
* */ public User findUserByLoginnameAndPass(String loginName,String pass) throws SQLException{
String sql = "select * from t_user where loginname = ? and loginpass = ?";
return qr.query(sql, new BeanHandler<User>(User.class),loginName,pass);
} /*
* 通过uid和登陆密码查找对应的用户
* **/ public Boolean findUserByUidAndLoginPass(String uid,String loginPass) throws SQLException{ String sql = "select count(*) from t_user where uid = ? and loginpass = ?"; Number num = (Number) qr.query(sql, new ScalarHandler(),uid,loginPass);
if(num.intValue() > 0){
return true;
return false;
} } /*修改用户的密码*/
public void updateUserPassword(String uid,String newPass) throws SQLException{
String sql = "update t_user set loginpass = ? where uid = ?";
qr.update(sql,newPass,uid); } }


package com.weiyuan.goods.user.service;

import java.io.IOException;
import java.sql.SQLException;
import java.text.MessageFormat;
import java.util.Properties; import javax.mail.MessagingException;
import javax.mail.Session;
import javax.management.RuntimeErrorException; import cn.itcast.commons.CommonUtils;
import cn.itcast.mail.Mail;
import cn.itcast.mail.MailUtils; import com.weiyuan.goods.user.dao.UserDao;
import com.weiyuan.goods.user.domian.User; public class UserService { private UserDao dao = new UserDao(); public boolean ajaxValidateLoginName(String loginName) { try {
return dao.ajaxValidateLoginName(loginName);
} catch (SQLException e) {
// TODO Auto-generated catch block
throw new RuntimeException(e.getMessage());
} } public boolean ajaxValidateEmail(String email) { try {
return dao.ajaxValidateEmail(email);
} catch (SQLException e) {
// TODO Auto-generated catch block
throw new RuntimeException(e.getMessage());
} } //添加注册的用户
public void addUser(User user){
String activationCode = CommonUtils.uuid()+CommonUtils.uuid();
user.setStatus(0);//0表示未激活 try {
} catch (SQLException e) {
// TODO Auto-generated catch block
throw new RuntimeException(e.getMessage());
} //向注册的用户发送邮件
Properties properties = new Properties();
try {
} catch (IOException e1) {
throw new RuntimeException(e1.getMessage());
} String host = properties.getProperty("host"); //qq邮箱发送邮件的地址,端口465或者587
String username=properties.getProperty("username"); //登陆服务器的账号
String password=properties.getProperty("password");//这里不是客户端登陆的密码,而是授权密码一定要注意
Session session = MailUtils.createSession(host, username, password);
String from = properties.getProperty("from");//发件人
String to = user.getEmail();//收件人
String title = properties.getProperty("subject");
String content = properties.getProperty("content");
Object [] array = new Object[]{user.getActivationCode()};
String formatContent = MessageFormat.format(content, user.getActivationCode());//替换占位符
System.out.println("email content is:"+content);
Mail mail = new Mail(from,to,title,formatContent);
try {
MailUtils.send(session, mail);
} catch (Exception e) {
throw new RuntimeException(e.getMessage());
} } /*设置用户的激活状态*/ public void activation(String activationCode) throws Exception{
//1 、通过激活码查找对应的用户信息
try {
User user = dao.findUserByActivationCode(activationCode);
if(user == null){
throw new Exception("无效的激活码");//业务异常,业务失败
if(user.getStatus()== 1){
throw new Exception("用户已经既激活,不要二次激活");//业务异常,业务失败
dao.setUserActivationCode(user.getUid(), 1); //1表示激活
} catch (SQLException e) {
// TODO Auto-generated catch block
throw new RuntimeException(e.getMessage()); // 不是业务的异常吗,而是电脑环境系统数据库的异常,直接退出线程,无法进行业务的操作了
} } /*
* 用户登录的业务操作,这里传递的参数是一个User对象
* */ public User login(User user){ try {
return dao.findUserByLoginnameAndPass(user.getLoginname(),user.getLoginpass());
} catch (SQLException e) {
throw new RuntimeException(e.getMessage());
} } /*修改用户的密码*/ public void updateUserPassword(String uid ,String oldPass,String newPass) throws Exception{
// 1、查找用户是否存在
try {
Boolean flag = dao.findUserByUidAndLoginPass(uid, oldPass);
throw new Exception("输入的原始密码有误,请重新输入");
// 2、修改用户的密码
dao.updateUserPassword(uid, newPass);
} catch (SQLException e) {
throw new RuntimeException(e.getMessage());
} } }



package com.weiyuan.goods.user.web.servlet;

import java.io.IOException;
import java.net.URLEncoder;
import java.util.Map; import javax.servlet.ServletException;
import javax.servlet.annotation.WebServlet;
import javax.servlet.http.Cookie;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse; import org.apache.commons.collections.map.HashedMap; import com.weiyuan.goods.user.domian.User;
import com.weiyuan.goods.user.service.UserService; import cn.itcast.commons.CommonUtils;
import cn.itcast.servlet.BaseServlet; /**
* Servlet implementation class UserServlet
public class UserServlet extends BaseServlet{
private static final long serialVersionUID = 1L;
private UserService service = new UserService();
* 用户注册页面使用ajax校验/*
* 用户注册页面使用ajax校验用户名会调用该方法
* *会调用该方法
* */
public String validateLoginname(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
// TODO Auto-generated method stub
String loginName = request.getParameter("loginname");
boolean flag = service.ajaxValidateLoginName(loginName);
return null;
* 用户注册页面使用ajax校验邮箱会调用该方法
* */
public String validateEmail(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
// TODO Auto-generated method stub
//获得用户上传的emai String email = request.getParameter("email");
System.out.println("validateEmail is called"+email);
boolean flag = service.ajaxValidateEmail(email);
return null;
} /*
* 用户修改密码页面使用ajax校验原始的密码是否正确
* */
public String validateLoginpass(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
// TODO Auto-generated method stub
//获得用户上传的emai String loginpass = request.getParameter("loginpass");
boolean flag = service.ajaxValidateLoginPass(loginpass);
return null;
} /*
* 用户注册页面使用ajax校验验证码会调用该方法
* */
public String validateVerifyCode(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
// TODO Auto-generated method stub
String verifyCode = request.getParameter("verifyCode");
String sessionCode = (String) request.getSession().getAttribute("vCode");
System.out.println("validateVerifyCode is called"+verifyCode+":"+sessionCode);
boolean flag = sessionCode.equalsIgnoreCase(verifyCode);
return null;
} /*
* 当用户从邮箱点击的激活的时候会调用该方法,并且把激活码传递过来
* */
public String activation(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
// TODO Auto-generated method stub String activationCode = request.getParameter("activationCode");
System.out.println("email activationCode is :"+activationCode);
try {
request.setAttribute("code", "success"); //msg.jsp已经code的值来显示错误信息还是正确的信息
request.setAttribute("msg", "激活成功");
return "f:/jsps/msg.jsp";
} catch (Exception e) {
String msg = e.getMessage();
request.setAttribute("code", "error"); //msg.jsp已经code的值来显示错误信息还是正确的信息
request.setAttribute("msg", msg);
return "f:/jsps/msg.jsp"; } } /*
* 当用户注册的时候会调用该方法
* */
public String regist(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
// TODO Auto-generated method stub
System.out.println("activation is called"); //1、将请求的参数封装成User对象
User user = CommonUtils.toBean(request.getParameterMap(), User.class);
//2 、对传递过来的参数进行校验,把错误的信息封装到一个hashMap中
Map errors = validateParams(user, request);
if(errors.size() > 0){//说明参数错误,跳转到注册界面提示用户输入的参数有误
request.setAttribute("errors", errors);
request.setAttribute("user", user);
return "f:/jsps/user/regist.jsp";
request.setAttribute("code", "success");
request.setAttribute("msg", "用户注册成功,请马上到邮箱进行激活");
return "f:/jsps/msg.jsp"; } /*
* 当用户登录的时候会调用该方法
* */
public String login(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
// TODO Auto-generated method stub
System.out.println("activation is called"); /*1、第一步将用户提交的参数封装成javabean对象
* */ User formUser = CommonUtils.toBean(request.getParameterMap(), User.class);
//2 、对传递过来的参数进行校验,把错误的信息封装到一个hashMap中
Map errors = validateLoginParams(formUser, request);
if(errors.size() > 0){//说明参数错误,跳转到注册界面提示用户输入的参数有误
request.setAttribute("errors", errors);
request.setAttribute("user", formUser);
return "f:/jsps/user/login.jsp";
User user =service.login(formUser); //判断用户是否为null
if(user == null){
request.setAttribute("msg", "输入的用户名和密码不正确");
request.setAttribute("user", formUser);
return "f:/jsps/user/login.jsp";
if(0 == user.getStatus()){ //没有激活
request.setAttribute("msg", "当前用户没有激活,请先激活该用户");
request.setAttribute("user", formUser);
return "f:/jsps/user/login.jsp";
request.getSession().setAttribute("sessionUser", user);
Cookie cookie = new Cookie("cookieLoginName", URLEncoder.encode(user.getLoginname(), "utf-8"));
return "r:/index.jsp"; }
} public Map validateParams(User user,HttpServletRequest request){
Map<String, String> map = new HashedMap();
String loginName = user.getLoginname();
if(loginName == null || loginName.isEmpty()){
map.put("loginname", "用户名不能为空");
if(loginName.length() < 3 || loginName.length() > 20){
map.put("loginname", "用户名长度应该在3到20之间");
map.put("loginname", "用户名已经被注册");
} //检查登陆密码
String loginpass = user.getLoginpass();
if(loginpass == null || loginpass.isEmpty()){
map.put("loginpass", "登陆密码不能为空");
if(loginpass.length() < 3 || loginpass.length() > 20){
map.put("loginname", "登陆密码的长度应该在3到20之间");
} //检查确认密码的信息
String reloginpass = user.getReloginpass();
if(reloginpass == null || reloginpass.isEmpty()){
map.put("reloginpass", "登陆密码不能为空");
if(reloginpass.length() < 3 || reloginpass.length() > 20){
map.put("reloginpass", "登陆密码的长度应该在3到20之间");
map.put("reloginpass", "两次输入的密码不一样");
} //检查邮箱
String email = user.getEmail();
if(email == null || email.isEmpty()){
map.put("email", "登陆邮箱不能为空");
map.put("email", "邮箱格式不正确");
} //检查验证码是否相等
String verifyCode = user.getVerifyCode();
String sessionCode =(String) request.getSession().getAttribute("vCode");
map.put("verifyCode", "验证码不正确");
} return map; } public Map validateLoginParams(User user,HttpServletRequest request){
Map<String, String> map = new HashedMap();
String loginName = user.getLoginname();
if(loginName == null || loginName.isEmpty()){
map.put("loginname", "用户名不能为空");
if(loginName.length() < 3 || loginName.length() > 20){
map.put("loginname", "用户名长度应该在3到20之间");
} //检查验证码是否相等
String verifyCode = user.getVerifyCode();
String sessionCode =(String) request.getSession().getAttribute("vCode");
map.put("verifyCode", "验证码不正确");
} return map; } /*
* 当用户修改密码的时候会调用该方法
* */
public String updatePassword(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { /*业务操作的流程
* 1、将请求的参数封装成javaBean对象
* 2、获得当前登录用户的uuid
* 3、利用uuid和原始的密码去查找用户是否存在
* 3、利用uuid去修改新的密码
* */
System.out.println("updatePassword is called");
User formUser = CommonUtils.toBean(request.getParameterMap(), User.class);
//如果用户登录成功了,会在session中保存该用户 User loginUser = (User) request.getSession().getAttribute("sessionUser");
if(loginUser == null){//说明当前用户没有登录,到pwd.jsp显示异常信息
request.setAttribute("msg", "用户没有登录,请先登录在修改用户密码");
return "f:/jsps/user/login.jsp";
try {
service.updateUserPassword(loginUser.getUid(), loginUser.getLoginpass(), formUser.getNewpass());
request.setAttribute("code", "success");
request.setAttribute("msg", "用户修改密码成功,请重新登录");
return "f:/jsps/msg.jsp";
} catch (Exception e) {
return "f:/jsps/user/pwd.jsp";
} } }



<%@ page language="java" import="java.util.*" pageEncoding="UTF-8"%>
<%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<title>pwd.jsp</title> <meta http-equiv="pragma" content="no-cache">
<meta http-equiv="cache-control" content="no-cache">
<meta http-equiv="expires" content="0">
<meta http-equiv="keywords" content="keyword1,keyword2,keyword3">
<meta http-equiv="description" content="This is my page">
<link rel="stylesheet" type="text/css" href="styles.css">
<link rel="stylesheet" type="text/css" href="<c:url value='/css/css.css'/>">
<link rel="stylesheet" type="text/css" href="<c:url value='/jsps/css/user/pwd.css'/>">
<script type="text/javascript" src="<c:url value='/jquery/jquery-1.5.1.js'/>"></script>
<%--引入pwd.js文件 --%>
<script type="text/javascript" src="<c:url value='/jsps/js/user/pwd.js'/>"></script>
<script src="<c:url value='/js/common.js'/>"></script>
</head> <body>
<div class="div0">
</div> <div class="div1">
<form action="<c:url value='/UserServlet'/>" method="post" target="_top">
<input type="hidden" name="method" value="updatePassword"/>
<td><label class="error">${msg }</label></td>
<td colspan="2">&nbsp;</td>
<td align="right">原密码:</td>
<td><input class="input" type="password" name="loginpass" id="loginpass" value=""/></td>
<td><label id="loginpassError" class="error"></label></td>
<td align="right">新密码:</td>
<td><input class="input" type="password" name="newpass" id="newpass" value=""/></td>
<td><label id="newpassError" class="error"></label></td>
<td align="right">确认密码:</td>
<td><input class="input" type="password" name="reloginpass" id="reloginpass" value=""/></td>
<td><label id="reloginpassError" class="error"></label></td>
<td align="right"></td>
<img id="vCode" src="/VerifyCodeServlet" border="1"/>
<a href="javascript:changeVerifyCode();">看不清,换一张</a>
<td align="right">验证码:</td>
<input class="input" type="text" name="verifyCode" id="verifyCode" value=""/>
<td><label id="verifyCodeError" class="error"></label></td>
<td align="right"></td>
<td><input id="submit" type="submit" value="修改密码"/></td>


