JDBC api study notes (4) - PreparedStatement precompilation

News 2023-06-12 08:24:30 views: null

PreparedStatement

Precompiled

Function: Prevent Sql injection
[Notes] The real pre-compilation function needs to be manually enabled. This method is only to pre-input the parameter
template code

String user_name = "def";  
String user_password = "ddeeff";  

//4、定义Sql  
String sql = "SELECT * FROM user WHERE user_name = ? and user_password = ? ";  

//5、获取pstsm对象  
PreparedStatement pstmt = conn.prepareStatement(sql);  

//设置值  
pstmt.setString(1,user_name);//问号1,参数值  
pstmt.setString(2,user_password);//问号2,参数值  

//6、执行Sql  
ResultSet rs = pstmt.executeQuery();  

//7、处理结果  
if(rs.next()){
    
      
    System.out.println("成功");  
}  
else {
    
      
    System.out.println("失败");  
}

Guess you like

Origin blog.csdn.net/m0_56170277/article/details/129722575
Recommended
Ranking
Linux关机和重启详解(shutdown、halt、poweroff、reboot、init)
Netty work notes 0007---NIO's three core component relationships
Knife4j tutorial
2021.10.29,内容:什么时候用接口和抽象类
How to solve the problem that changing the memory frequency causes the computer to become unusable?
SpringMVC Tutorial - Controller
linux learning skills -Linux 25 transport Vega paid special privileges and facl extension
Financial quarterly report evaluation report data automatic generation 1.0
Agile Development Series - The Values of Agile Development
scrapy achieve browsercookie Middleware
Daily
More
2024-05-19(0)
2024-05-18(31)
2024-05-17(6)
2024-05-16(23)
2024-05-15(5)
2024-05-14(9)
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)

Code World

© 2018 codetd.com