</pre><pre>
package lmf.com;
import java.sql.Connection;
import java.sql.DriverManager;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
/**
* 学习PreparedStatement 数据库安全操作
* @author Administrator
*
*/
public class Main {
//数据库地址
public final static String URL = "jdbc:mysql://localhost:3306/jdbc?Unicode=true&characterEncoding=UTF-8";
//数据库用户名
public final static String USER = "root";
//数据库密码
public final static String PWD = "root";
/**
* C action
* @param args
*/
public static void insert(User u){
try {
Class.forName("com.mysql.jdbc.Driver");
Connection con = DriverManager.getConnection(URL, USER, PWD);
String sql = "insert into pre_user(username,password,age)values(?,?,?)";
PreparedStatement ps = con.prepareStatement(sql);
ps.setString(1, u.getUsername());
ps.setString(2, u.getPassword());
ps.setInt(3, u.getAge());
ps.executeUpdate();
ps.close();
con.close();
}catch (ClassNotFoundException e) {
e.printStackTrace();
} catch (SQLException e) {
e.printStackTrace();
}
}
/**
* Update action
* @param args
*/
public static void Update(User u){
try {
Class.forName("com.mysql.jdbc.Driver");
Connection con = DriverManager.getConnection(URL, USER, PWD);
String sql = "update pre_user set username = ? where age = ?";
PreparedStatement ps = con.prepareStatement(sql);
ps.setString(1, u.getUsername());
ps.setInt(2, u.getAge());
ps.executeUpdate();
ps.close();
con.close();
}catch (ClassNotFoundException e) {
e.printStackTrace();
} catch (SQLException e) {
e.printStackTrace();
}
}
/**
* Delete action
* @param args
*/
public static void Delete(int id){
try {
Class.forName("com.mysql.jdbc.Driver");
Connection con = DriverManager.getConnection(URL, USER, PWD);
String sql = "delete from pre_user where age = ?";
PreparedStatement ps = con.prepareStatement(sql);
ps.setInt(1, id);
ps.executeUpdate();
ps.close();
con.close();
}catch (ClassNotFoundException e) {
e.printStackTrace();
} catch (SQLException e) {
e.printStackTrace();
}
}
/**
* query action
* @param args
*/
public static User finds(int id){
User u = null;
try {
Class.forName("com.mysql.jdbc.Driver");
Connection con = DriverManager.getConnection(URL, USER, PWD);
String sql = "select username,password from pre_user where age = ?";
PreparedStatement ps = con.prepareStatement(sql);
ps.setInt(1, id);
ResultSet rs = ps.executeQuery();
if(rs.next()){
u = new User();
u.setUsername(rs.getString(1));
u.setPassword(rs.getString(2));
}
rs.close();
ps.close();
con.close();
}catch (ClassNotFoundException e) {
e.printStackTrace();
} catch (SQLException e) {
e.printStackTrace();
}
return u;
}
/**
* 入口文件
* @param args
*/
public static void main(String[] args) {
User u = new User("帅哥","233232",32);
//insert(u);
//Update(u);
//Delete(32);
u = finds(40);
System.out.print(u.getPassword());
}
}
java使用安全的PreparedStatement操作mysql数据库(菜鸟入门级别的)