/* Java Servlet example - Netprog Pizza Server
Uses a HttpSession to track the user
*/
import java.io.*;
import java.text.*;
import java.util.*;
import javax.servlet.*;
import javax.servlet.http.*;
public class PizzaSession extends HttpServlet {
HttpServletRequest request;
HttpServletResponse response;
PrintWriter out;
HttpSession session;
static String path="c:\\jdk1.3\\tomcat\\webapps\\Root\\PizzaSession\\";
// we only either GET or POST requests
public void doPost(HttpServletRequest rq,
HttpServletResponse resp)
throws IOException, ServletException {
doGet(rq,resp);
}
public void doGet(HttpServletRequest rq,
HttpServletResponse resp)
throws IOException, ServletException {
request = rq;
response = resp;
// tell the browser we are sending back HTML
response.setContentType("text/html");
// grab a writer back to the browser
out = response.getWriter();
// now go handle this request
HandleRequest();
}
// Inside HandleRequest we grab exceptions and deal with them
// If we just thow them upward - we end up sending the Java
// call stack to the browser (probably not a good idea!)
void HandleRequest() throws IOException {
try {
// get any session info, or create one if there is none.
session = request.getSession(true);
// send back our logo (always)
SendFile(path+"logo.html");
// First - find out what kind of a request this is.
// Each form has a hidden field named formname that
// tells us which form the request comes from.
// Possible values:
// nothing - send back login screen
// "login" - this is a login attempt
// "order" - this is a pizza order
String form = request.getParameter("formname");
// If there is no field named "formname" we should
// check for an ongoing session
if (form==null) {
// First attempt a session based automatic login
if (! SessionLogin()) {
// no valid session - send login form
SendFile(path+"loginform.html");
}
} else if (form.equals("login")) {
// this is a login attempt
Login();
} else if (form.equals("order")) {
// this is a pizza order
Order();
} else {
// who knows?
SendFile(path+"badrequest");
}
} catch (Exception e) {
// Any exception is handled by punting...
SendFile(path+"error");
}
}
// Order() handles orders for pizza.
//
void Order() throws IOException {
// Order request - we expect to get a sesion variable
// named "pizzasession"
// Check before worrying about the pizza and size
String name=getNameSession();
// Validate is based on name only
// we got the password earlier
// In "real life" this needs to be more robust, perhaps
// using a session key
if (ValidateName(name)) {
String pizza = request.getParameter("pizza");
String size = request.getParameter("size");
// First make sure we got a complete order
if (ValidateOrder(pizza,size)) {
// Everything looks good - print a receipt
Receipt(name,pizza,size);
} else {
// Bad order
SendFile(path+"nicetry.html");
}
} else {
// Invalid login - flame the loser
SendFile(path+"baduser.html");
SendFile(path+"loginform.html");
}
}
// Login() takes care of login requests. If everything is OK
// (valid name and password) we send back an order form with
// and create a session
void Login() throws IOException {
// Login request - we expect "name" and "password"
String name = request.getParameter("name");
String pass = request.getParameter("password");
if (ValidateUser(name,pass)) {
// Valid login - set session variable to remember username
session.setAttribute("pizzasession",name);
// Send back message and the order form
out.println("Hello ");
out.println(""+name+", place your order
");
SendFile(path+"orderform.html");
} else {
// Invalid login - flame the loser
SendFile(path+"baduser.html");
SendFile(path+"loginform.html");
}
}
// SessionLogin() takes care of a returning visitor
boolean SessionLogin() throws IOException {
String name = getNameSession();
if (ValidateName(name)) {
// Send back message and the order form
out.println("Hello ");
out.println(""+name+", place your order
");
SendFile(path+"orderform.html");
return(true);
} else {
// no valid session - return false
return(false);
}
}
// Receipt() sends an HTML receipt back to the browser
// Should probably use the Calendar class instead of
// Date here...
void Receipt(String name, String pizza, String size) throws IOException {
Date d = new Date();
// create a string that holds current date
SimpleDateFormat f = new SimpleDateFormat("EEEE, MMMM d, yyyy");
String ds = f.format(d);
// create a string that holds current time
SimpleDateFormat f1 = new SimpleDateFormat("hh:mm a");
String ts = f1.format(d);
// pizza will be ready in 45 minutes:
Date dout = new Date(d.getTime()+1000*60*45);
String ts1 = f1.format(dout);
// create a string that holds time pizza is ready
out.println("Thanks for your order ");
out.println(name+"
");
out.println("\n");
out.println("
| RECEIPT |
|---|
");
out.println("| Name: | "+name+" |
|---|
");
out.println("| Date: | ");
out.println(""+ds+" |
|---|
");
out.println("| Time: | ");
out.println(""+ts+" |
|---|
");
out.println("| Pizza: | ");
out.println(""+pizza+" |
|---|
");
out.println("| Size: | ");
out.println(""+size+" |
|---|
");
out.println("Time Ready: | ");
out.println(""+ts1+" | ");
out.println("| Amount Due: | ");
if (size.equals("small"))
out.println("$6.50 |
|---|
");
else if (size.equals("medium"))
out.println("$8.50 | ");
else
out.println("$10.50 | ");
out.println("
\n");
}
// Send the named file to the browser
void SendFile(String filename) throws IOException,FileNotFoundException {
BufferedReader f = new BufferedReader(new FileReader(filename));
String line;
while ((line=f.readLine())!=null) {
out.println(line);
}
f.close();
}
// Method that checks the rinky-dink password file for
// the name/password we got
boolean ValidateUser(String name,String pass) throws IOException {
BufferedReader f = new BufferedReader(new FileReader(path+"pw"));
String n,p;
while ((n=f.readLine())!=null) {
if ((p=f.readLine())!=null) {
if ((n.equals(name))&&(p.equals(pass))) {
f.close();
return(true);
}
} else {
f.close();
return(false);
}
}
f.close();
return(false);
}
boolean ValidateName(String name) throws IOException {
BufferedReader f = new BufferedReader(new FileReader(path+"pw"));
String n,p;
while ((n=f.readLine())!=null) {
if ((p=f.readLine())!=null) {
if (n.equals(name)) {
f.close();
return(true);
}
} else {
f.close();
return(false);
}
}
f.close();
return(false);
}
// Method that checks to make sure the pizza order is valid.
// Here we just have hard-coded constants...
// (would be nice to read valid pizza names/sizes from a file)
boolean ValidateOrder(String pizza,String size) throws IOException {
if ((pizza==null)||(size==null)) {
return(false);
}
if (pizza.equals("Cheese") ||
pizza.equals("Veggie") ||
pizza.equals("Pepperoni") ||
pizza.equals("Sausage")) {
// so far so good - check the size
if (size.equals("large") ||
size.equals("medium") ||
size.equals("small")) {
// good order - this is a grat customer!
return(true);
}
}
// wise-guy - invalid order
return(false);
}
// Get username from session variable
String getNameSession() {
String name=(String) session.getAttribute("pizzasession");
return(name);
}
}