Newer
Older
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
<%@ page language="java" contentType="text/html; charset=UTF-8"
pageEncoding="UTF-8"%>
<%@ page import ="java.sql.Connection" %>
<%@ page import ="java.sql.DriverManager" %>
<%@ page import ="java.sql.PreparedStatement" %>
<%@ page import ="java.sql.ResultSet" %>
<%@ page import ="java.util.UUID" %>
<!DOCTYPE html>
<html>
<head>
<meta charset="UTF-8">
<title>Insert title here</title>
</head>
<body>
<%
UUID loanToDelete = UUID.fromString(request.getParameter("loan"));
Class.forName("org.postgresql.Driver");
String url = "jdbc:postgresql://localhost/Aebi1?port=5432&user=postgres&password=123456";
Connection c = DriverManager.getConnection(url);
//WICHTIHG PART!!--> PreparedStatement
PreparedStatement pst= c.prepareStatement("DELETE FROM books_users WHERE id = ?");
pst.setObject(1, loanToDelete);
pst.execute();
//es gibt eine andere Variante nicht zu vervenden!! Weil wir müssen nicht user data mit Sql mischen!
//Statement s = c.createStatement();
//s.execute("DELETE FROM books WHERE id ="+ request.getParameter("book"));
//wenn du ein neues Buch hinzufügst, dann bist du sofort zu dem index.jsp Seite redirect
response.sendRedirect("index.jsp");
%>
<!-- <p>Book </%//=bookToDelete %> was deleted.</p>
<p><a href="index.jsp">Go back.</a>-->
</body>
</html>