<%@ page language = "java" import = "java.sql.*,java.io.*,java.util.*" %> <%! public String dirPath = "../"; public String mandatory = "*"; public final String SITE_NAME = "Guest Book"; public static int parseInt(String source) { return parseInt(source, 0); } public static int parseInt(String source,int dInt) { try { return Integer.parseInt(source); } catch(Exception e) { return dInt; } } public static String parseString(String source) { return parseString(source, "", true); } public static String parseString(String source, String dString) { return parseString(source, dString, true); } public static String parseString(String source, String dString, boolean allowNullString) { try { if(source == null) return dString; if(source.equals("") && !allowNullString) return dString; return source; } catch(Exception e) { return dString; } } public static String replace(String s, String s1, String s2) { while(s.indexOf(s1)>=0) { s = s.substring(0, s.indexOf(s1)) + s2 + s.substring(s.indexOf(s1) + s1.length(), s.length()); } return s; } %> <% String FirstName = replace( parseString(request.getParameter("FirstName") ,""), "\'", "'"); String MiddleName = replace( parseString(request.getParameter("MiddleName") ,""), "\'", "'"); String LastName = replace( parseString(request.getParameter("LastName") ,""), "\'", "'"); String Email = replace( parseString(request.getParameter("Email") ,""), "\'", "'"); String Comments = replace( parseString(request.getParameter("Comments") ,""), "\'", "'"); if(FirstName.equals("") || LastName.equals("") || Email.equals("") || Comments.equals("")) response.sendRedirect("guestbook.jsp?isErr=" + response.encodeURL("Incomplete form, fill again")); Class.forName("org.hsqldb.jdbcDriver"); //String conStr = "jdbc:hsqldb:/members/V0kIH8fZ9e4iM5SIWVenHOAoMPOTd91/GuestBook/db/GuestBook"; //String conStr = "jdbc:hsqldb:GuestBook"; String conStr = "jdbc:hsqldb:" + application.getRealPath("/~smhumayun/GuestBook/GuestBook"); final String GuestBookDBUser = "sa"; final String GuestBookDBPwd = ""; Connection con = DriverManager.getConnection(conStr,GuestBookDBUser,GuestBookDBPwd); /*try {*/ Statement st = con.createStatement(); int MaxID = 0; ResultSet rs = st.executeQuery("select max(UID) from GuestBook"); if(rs.next()) MaxID = parseInt(rs.getString(1)); MaxID++; rs.close(); rs = null; Calendar c = Calendar.getInstance(); String curdate = "" + c.get(Calendar.YEAR) + "-" + c.get(Calendar.MONTH) + "-" + c.get(Calendar.DATE) + " " + c.get(Calendar.HOUR) + ":" + c.get(Calendar.MINUTE) + ":" + c.get(Calendar.SECOND); st.execute(" insert into Guestbook (UID, FirstName, MiddleName, LastName, Email, Comments, Status, EntryDate) values (" + MaxID + ", '" + FirstName + "', '" + MiddleName + "', '" + LastName + "','" + Email + "', '" + Comments+ "', 0, '" + curdate + "')"); st.close(); st = null; con.close(); con = null; /*} catch(Exception e) { System.out.println("\n\nError : \n\n" + e.toString() + "\n\n"); response.sendRedirect("GuestBook.jsp?isErr=" + response.encodeURL("Error occured, try some time later")); }*/ response.sendRedirect("GuestBook.jsp?isErr=" + response.encodeURL("Thank you for posting your comments. It will be checked very soon by the admin staff!")); %>