import java.io.*;
import java.util.*;
import javax.servlet.*;
import javax.servlet.http.*;
import java.sql.*;
import java.security.*;
public class CheckRecords extends HttpServlet {
private Connection dbConnection;
public void init() {
dbConnection = DBInfo.connectToDatabase();
}
public void destroy() {
if(dbConnection != null) {
try {
dbConnection.close();
}
catch(Exception e) { }
}
}
synchronized private String getManager(String person)
{
String manager=null;
try {
Statement stmt = dbConnection.createStatement ();
String selectcommand =
"Select * from Manages where EMPLOYEE='" + person + "'";
ResultSet rset = stmt.executeQuery(selectcommand );
if(rset.next()) {
manager = rset.getString("Manager");
}
stmt.close();
}
catch(Exception e) { }
return manager;
}
public void doPost (HttpServletRequest request,
HttpServletResponse response)
throws ServletException, IOException
{
String person = request.getParameter("ENAME");
if(person==null) {
response.sendRedirect("/combo/BadData.html");
return;
}
String client = request.getRemoteUser();
if(client.equals(person)) {
generateReport(client,response);
return;
}
if(!request.isUserInRole("manager")) {
response.sendRedirect("/combo/NoAccess.html");
return;
}
String mm = getManager(person);
if(!client.equals(mm)) {
response.sendRedirect("/combo/NoAccess.html");
return;
}
generateReport(person,response);
}
synchronized public void generateReport(String name,
HttpServletResponse response)
throws ServletException, IOException
{
try {
PrintWriter out = response.getWriter();
out.println("Check records" );
out.println("" );
out.println("Records for " + name + "
");
int count = 0;
double total= 0.0;
ServletContext ctx = getServletContext();
RatesRecord rates = (RatesRecord)
ctx.getAttribute("RatesTable");
if(rates==null) {
rates = new RatesRecord();
ctx.setAttribute("RatesTable", rates);
}
Statement stmt = dbConnection.createStatement ();
String selectsql =
"Select * from Work where NAME='" + name + "'";
ResultSet rset = stmt.executeQuery(selectsql);
while(rset.next()) {
if(count==0) {
out.println("
");
out.println("Recorded work");
out.println("| Activity | ");
out.println("Hours | ");
out.println("Amount | ");
out.println("
|---|
");
}
count++;
String key = rset.getString("activity");
double val = rset.getDouble("hours");
double rate = rates.getRate(key);
double amount = val*rate;
out.println("| "+ key + " | ");
out.println(""+val+" | ");
out.println("$"+amount+" | ");
out.println("
");
total+=amount;
}
stmt.close();
if(count==0) out.println("No work records available");
else out.println("
Total earnings $"+total);
out.println("");
}
catch(Exception e) {
response.sendRedirect("/combo/NoDB.html");
}
}
private void generatePrompt(HttpServletResponse response)
throws ServletException, IOException
{
PrintWriter out = response.getWriter();
out.println("
Check records" );
out.println("" );
out.println("");
}
public void doGet (HttpServletRequest request,
HttpServletResponse response)
throws ServletException, IOException
{
if(request.isUserInRole("manager"))
generatePrompt(response);
else
generateReport(request.getRemoteUser(), response);
}
}