<%@ page language = "java" import = "java.sql.*,java.io.*,java.util.*" %>
<%!
	public final String SITE_NAME = "Guest Book";
	
	public static String monthNames[] = {"January","February","March","April","May","June","July","August","September","October","November","December"};
	
	public static String replace(String s, String s1, String s2)
		{
		while(s.indexOf(s1)>=0)
			{
			s = s.substring(0, s.indexOf(s1)) + s2 + s.substring(s.indexOf(s1) + s1.length(), s.length());
			}
		return s;
		}

	public String formatDate(Timestamp ts)
		{
		if ( ts == null) return "";
		Calendar cal = Calendar.getInstance();
		cal.setTime(new java.util.Date(ts.getTime()));
		return "" + cal.get(Calendar.DATE) + " " + monthNames[cal.get(Calendar.MONTH)] + ", " + cal.get(Calendar.YEAR) + " " + cal.get(Calendar.HOUR_OF_DAY) + ":" + cal.get(Calendar.MINUTE) + ":" + cal.get(Calendar.SECOND);
		}
	
	public String getFullName (String fn, String mn, String ln)
		{
		String name = parseString(fn);
		String temp = parseString(mn);
		if(!temp.equals(""))
			{
			if(name.equals(""))
				name = temp;
			else
				name += " " + temp;
			}
		temp = parseString(ln);
		if(!temp.equals(""))
			{
			if(name.equals(""))
				name = temp;
			else
				name += " " + temp;
			}
		if(name.equals(""))
			name = "Anonymous";
		return name;
		}

	public static String parseString(String source)
		{
		return parseString(source, "", true);
		}
	
	public static String parseString(String source, String dString)
		{
		return parseString(source, dString, true);
		}
	
	public static String parseString(String source, String dString, boolean allowNullString)
		{
		try
			{
			if(source == null)
				return dString;
			if(source.equals("") && !allowNullString)
				return dString;
			return source;
			}
		catch(Exception e)
			{
			return dString;
			}
		}

	private String getStringFromReader (Reader reader) throws SQLException
		{
		String temp = "";
		try
			{
			if(reader != null)
				{
				int c = 0;
				while(c != -1)
					{
					c = reader.read();
					if(c != -1)
						{
						temp += (char)c;
						System.out.print("\n"+ ((char)c) );
						}
					}
				reader.close();
				}
			}
		catch(IOException e)
			{
			throw new SQLException("Custom SQLException : Unable to read data from java.io.Reader > " + e.toString()); 
			}
		return temp;
		}
%>
<%
	Class.forName("org.hsqldb.jdbcDriver");
	String conStr = "jdbc:hsqldb:" + application.getRealPath("/~smhumayun/GuestBook/GuestBook");
	final String GuestBookDBUser = "sa";
	final String GuestBookDBPwd = "";
	Connection con = DriverManager.getConnection(conStr,GuestBookDBUser,GuestBookDBPwd);

	String Username = replace( parseString(request.getParameter("Username") ,""), "\'", "&#39;");
	String Pwd = replace( parseString(request.getParameter("Pwd") ,""), "\'", "&#39;");

	if ( Username.equals("") || Pwd.equals(""))
		response.sendRedirect("admin.jsp?isErr=" + response.encodeURL("Username and/or Password required"));

	/*try
		{*/
		ResultSet rs = con.createStatement().executeQuery(" Select Pwd from Admin where Username = '" + Username + "'");
		if ( !rs.next() )
			response.sendRedirect("admin.jsp?isErr=" + response.encodeURL("Invalid Username"));
		if( !Pwd.equals( parseString(rs.getString("Pwd")) ) )
			response.sendRedirect("admin.jsp?isErr=" + response.encodeURL("Invalid Password"));
		session.putValue("adminLogged", new Boolean("True"));
		response.sendRedirect("GuestBook_Admin.jsp?isErr=" + response.encodeURL("Welcome to Guest Book Administration, A special request from CEO of javaserverfaces.co.uk !"));
		/*}
	catch(Exception e)
		{
		System.out.println("\n\nError : \n\n" + e.toString() + "\n\n");
		response.sendRedirect("admin.jsp?isErr=" + response.encodeURL("Error occured, try some time later"));
		}*/
%>