package Connection;
import java.sql.Connection;
import java.sql.DriverManager;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
public class TestConnection {
public static void main(String[] args) {
Connection con = null;
PreparedStatement ps = null;
ResultSet rs = null;
try {
//加载驱动类:
Class.forName("com.mysql.jdbc.Driver");
//建立连接:并且设置其编码格式:
con = DriverManager.getConnection("jdbc:mysql://localhost:3306/forum?characterEncoding=utf8","root", "");
//容易发生sql注入危险:
// Statement stat = con.createStatement();
// String sql = "INSERT INTO users(username,pass,first_name,last_name,email)"
// + " VALUES('李四',SHA1(2334532),'李','四','626894341@qq.com')";
// stat.execute(sql);
//======================================为了保证安全 : 常用preparedstatement防止sql注入:================
// String sql = "INSERT INTO users(username,pass,first_name,last_name,email)"
// + "VALUES(?,?,?,?,?)";//?用占位符 防止sql注入:
// PreparedStatement ps = con.prepareStatement(sql);
// ps.setString(1, "王五");
//
// ps.setString(3, "王");
// ps.setString(4, "五");
// ps.setString(5, "1234545@qq.com");
//==========================查询 ====================================
String sql = "SELECT username,pass,first_name,last_name,email FROM users WHERE user_id=?";
ps = con.prepareStatement(sql);
ps.setObject(1, 3);
//取出查询结果:
rs = ps.executeQuery();
while(rs.next()){
System.out.println(rs.getString(1)+"=="+rs.getString(2)+"==");
}
//执行sql:
ps.execute();
} catch (ClassNotFoundException e) {
// TODO Auto-generated catch block
e.printStackTrace();
} catch (SQLException e) {
// TODO Auto-generated catch block
e.printStackTrace();
}finally{
//关闭数据库连接:注意关闭顺序:从result------->statement------------------>connection
try {
if(rs!=null){
rs.close();
}
} catch (SQLException e2) {
// TODO Auto-generated catch block
e2.printStackTrace();
}
try {
if(ps!=null){
ps.close();
}
} catch (SQLException e1) {
// TODO Auto-generated catch block
e1.printStackTrace();
}
try {
if(con!=null){
con.close();
}
} catch (SQLException e) {
// TODO Auto-generated catch block
e.printStackTrace();
}
}
}
}
import java.sql.Connection;
import java.sql.DriverManager;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
public class TestConnection {
public static void main(String[] args) {
Connection con = null;
PreparedStatement ps = null;
ResultSet rs = null;
try {
//加载驱动类:
Class.forName("com.mysql.jdbc.Driver");
//建立连接:并且设置其编码格式:
con = DriverManager.getConnection("jdbc:mysql://localhost:3306/forum?characterEncoding=utf8","root", "");
//容易发生sql注入危险:
// Statement stat = con.createStatement();
// String sql = "INSERT INTO users(username,pass,first_name,last_name,email)"
// + " VALUES('李四',SHA1(2334532),'李','四','626894341@qq.com')";
// stat.execute(sql);
//======================================为了保证安全 : 常用preparedstatement防止sql注入:================
// String sql = "INSERT INTO users(username,pass,first_name,last_name,email)"
// + "VALUES(?,?,?,?,?)";//?用占位符 防止sql注入:
// PreparedStatement ps = con.prepareStatement(sql);
// ps.setString(1, "王五");
//
// ps.setString(3, "王");
// ps.setString(4, "五");
// ps.setString(5, "1234545@qq.com");
//==========================查询 ====================================
String sql = "SELECT username,pass,first_name,last_name,email FROM users WHERE user_id=?";
ps = con.prepareStatement(sql);
ps.setObject(1, 3);
//取出查询结果:
rs = ps.executeQuery();
while(rs.next()){
System.out.println(rs.getString(1)+"=="+rs.getString(2)+"==");
}
//执行sql:
ps.execute();
} catch (ClassNotFoundException e) {
// TODO Auto-generated catch block
e.printStackTrace();
} catch (SQLException e) {
// TODO Auto-generated catch block
e.printStackTrace();
}finally{
//关闭数据库连接:注意关闭顺序:从result------->statement------------------>connection
try {
if(rs!=null){
rs.close();
}
} catch (SQLException e2) {
// TODO Auto-generated catch block
e2.printStackTrace();
}
try {
if(ps!=null){
ps.close();
}
} catch (SQLException e1) {
// TODO Auto-generated catch block
e1.printStackTrace();
}
try {
if(con!=null){
con.close();
}
} catch (SQLException e) {
// TODO Auto-generated catch block
e.printStackTrace();
}
}
}
}