import javax.servlet.*;
import javax.servlet.http.*;
import java.io.*;
import java.util.*;
import java.sql.*;
import com.brainysoftware.java.StringUtil;

public class RegistrationServlet extends HttpServlet {

  private String firstName = "";
  private String lastName = "";
  private String userName = "";
  private String password = "";

  public void init() {
    try {
      Class.forName("sun.jdbc.odbc.JdbcOdbcDriver");
      System.out.println("JDBC driver loaded");
    }
    catch (ClassNotFoundException e) {
      System.out.println(e.toString());
    }
  }

  /**Process the HTTP Get request*/
  public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
    sendPageHeader(response);
    sendRegistrationForm(request, response, false);
    sendPageFooter(response);
  }

  /**Process the HTTP Post request*/
  public void doPost(HttpServletRequest request, 
    HttpServletResponse response) 
    throws ServletException, IOException {
    sendPageHeader(response);

    firstName = request.getParameter("firstName");
    lastName = request.getParameter("lastName");
    userName = request.getParameter("userName");
    password = request.getParameter("password");

    boolean error = false;
    String message = null;
    try {
      Connection con = DriverManager.getConnection("jdbc:odbc:JavaWeb");
      System.out.println("got connection");

      Statement s = con.createStatement();

      String sql = "SELECT UserName FROM Users" +
        " WHERE userName='" + StringUtil.fixSQLFieldValue(userName) + "'";
      ResultSet rs = s.executeQuery(sql);
      if (rs.next()) {
        rs.close();
        message = "The user name <B>" + StringUtil.encodeHtmlTag(userName) +
          "</B> has been taken. Please select another name.";
        error = true;
      }
      else {
        rs.close();
        sql = "INSERT INTO Users" +
          " (FirstName, LastName, UserName, Password)" +
          " VALUES" +
          " ('" +  StringUtil.fixSQLFieldValue(firstName) + "'," +
          " '" +  StringUtil.fixSQLFieldValue(lastName) + "'," +
          " '" +  StringUtil.fixSQLFieldValue(userName) + "'," +
          " '" +  StringUtil.fixSQLFieldValue(password) + "')";
        int i = s.executeUpdate(sql);
        if (i==1) {
          message = "Successfully added one user.";
        }
      }
      s.close();
      con.close();
    }
    catch (SQLException e) {
      message = "Error." + e.toString();
      error = true;
    }
    catch (Exception e) {
      message = "Error." + e.toString();
      error = true;
    }
    if (message!=null) {
      PrintWriter out = response.getWriter();
      out.println("<B>" + message + "</B><BR>");
      out.println("<HR><BR>");
    }
    if (error==true)
      sendRegistrationForm(request, response, true);
    else
      sendRegistrationForm(request, response, false);
    sendPageFooter(response);
  }

  /**
   * Send the HTML page header, including the title
   * and the <BODY> tag
   */
  private void sendPageHeader(HttpServletResponse response)
    throws ServletException, IOException {
    response.setContentType("text/html");
    PrintWriter out = response.getWriter();
    out.println("<HTML>");
    out.println("<HEAD>");
    out.println("<TITLE>Registration Page</TITLE>");
    out.println("</HEAD>");
    out.println("<BODY>");
    out.println("<CENTER>");
  }

  /**
   * Send the HTML page footer, i.e. the </BODY>
   * and the </HTML>
   */
  private void sendPageFooter(HttpServletResponse response)
    throws ServletException, IOException {
    PrintWriter out = response.getWriter();
    out.println("</CENTER>");
    out.println("</BODY>");
    out.println("</HTML>");
  }

  /**Send the form where the user can type in
   * the details for a new user
   */
  private void sendRegistrationForm(HttpServletRequest request,
    HttpServletResponse response, boolean displayPreviousValues)
    throws ServletException, IOException {

    PrintWriter out = response.getWriter();
    out.println("<BR><H2>Registration Page</H2>");
    out.println("<BR>Please enter the user details.");
    out.println("<BR>");
    out.println("<BR><FORM METHOD=POST>");
    out.println("<TABLE>");
    out.println("<TR>");
    out.println("<TD>First Name</TD>");
    out.print("<TD><INPUT TYPE=TEXT Name=firstName");

    if (displayPreviousValues)
      out.print(" VALUE=\"" + StringUtil.encodeHtmlTag(firstName) + "\"");

    out.println("></TD>");
    out.println("</TR>");
    out.println("<TR>");
    out.println("<TD>Last Name</TD>");
    out.print("<TD><INPUT TYPE=TEXT Name=lastName");

    if (displayPreviousValues)
      out.print(" VALUE=\"" + StringUtil.encodeHtmlTag(lastName) + "\"");

    out.println("></TD>");
    out.println("</TR>");
    out.println("<TR>");
    out.println("<TD>User Name</TD>");
    out.print("<TD><INPUT TYPE=TEXT Name=userName");

    if (displayPreviousValues)
      out.print(" VALUE=\"" + StringUtil.encodeHtmlTag(userName) + "\"");
    out.println("></TD>");
    out.println("</TR>");
    out.println("<TR>");
    out.println("<TD>Password</TD>");
    out.print("<TD><INPUT TYPE=PASSWORD Name=password");

    if (displayPreviousValues)
      out.print(" VALUE=\"" + StringUtil.encodeHtmlTag(password) + "\"");

    out.println("></TD>");
    out.println("</TR>");
    out.println("<TR>");
    out.println("<TD><INPUT TYPE=RESET></TD>");
    out.println("<TD><INPUT TYPE=SUBMIT></TD>");
    out.println("</TR>");
    out.println("</TABLE>");
    out.println("</FORM>");
    out.println("<BR>");
    out.println("<BR>");
  }
}