[JSP] Login en redirect afhankelijk van gebruiker

[anoniem]

Ik heb m.b.v. Dreamweaver MX een loginpagina gemaakt in JSP. De tabel CLIENTS heeft de volgende waarden: Client Password Level Nu wil ik dat als een bepaalde klant inlogt, deze geredirect wordt naar een eigen pagina afhankelijk van het Level dat is opgeslagen in de database. De code die ik nu heb ziet er als volgt uit: [code:1:039d9b9e6d]<%@ page contentType="text/html; charset=iso-8859-1" language="java" import="java.sql.*" errorPage="" %> <%@ include file="Connections/MAM.jsp" %> <% // *** Validate request to log in to this site. String MM_LoginAction = request.getRequestURI(); if (request.getQueryString() != null && request.getQueryString().length() > 0) MM_LoginAction += "?" + request.getQueryString(); String MM_valUsername=request.getParameter("user"); if (MM_valUsername != null) { String MM_fldUserAuthorization=""; String MM_redirectLoginSuccess="/fx-web-demo/src/index.jsp"; String MM_redirectLoginFailed="/fx-web-demo/src/login.jsp"; String MM_redirectLogin=MM_redirectLoginFailed; Driver MM_driverUser = (Driver)Class.forName(MM_MAM_DRIVER).newInstance(); Connection MM_connUser = DriverManager.getConnection(MM_MAM_STRING,MM_MAM_USERNAME,MM_MAM_PASSWORD); String MM_pSQL = "SELECT CLIENT, PASSWORD"; if (!MM_fldUserAuthorization.equals("")) MM_pSQL += "," + MM_fldUserAuthorization; MM_pSQL += " FROM FX_DEMO.CLIENTS WHERE CLIENT=\'" + MM_valUsername.replace('\'', ' ') + "\' AND PASSWORD=\'" + request.getParameter("password").toString().replace('\'', ' ') + "\'"; PreparedStatement MM_statementUser = MM_connUser.prepareStatement(MM_pSQL); ResultSet MM_rsUser = MM_statementUser.executeQuery(); boolean MM_rsUser_isNotEmpty = MM_rsUser.next(); if (MM_rsUser_isNotEmpty) { // username and password match - this is a valid user session.putValue("MM_Username", MM_valUsername); if (!MM_fldUserAuthorization.equals("")) { session.putValue("MM_UserAuthorization", MM_rsUser.getString(MM_fldUserAuthorization).trim()); } else { session.putValue("MM_UserAuthorization", ""); } if ((request.getParameter("accessdenied") != null) && false) { MM_redirectLoginSuccess = request.getParameter("accessdenied"); } MM_redirectLogin=MM_redirectLoginSuccess; } MM_rsUser.close(); MM_connUser.close(); response.sendRedirect(response.encodeRedirectURL(MM_redirectLogin)); return; } %> <html> <head> <title>Untitled Document</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> </head> <body> <p>LOG IN</p> <form action="<%=MM_LoginAction%>" method="POST" name="form" id="form"> <table width="50%" border="0"> <tr> <td width="32%">&nbsp;</td> <td colspan="2">&nbsp;</td> <td width="41%">&nbsp;</td> </tr> <tr> <td>Gebruikersnaam:</td> <td colspan="2"> <input name="user" type="text" id="user"></td> <td>&nbsp;</td> </tr> <tr> <td>Wachtwoord:</td> <td colspan="2"> <input name="password" type="password" id="password"></td> <td>&nbsp;</td> </tr> <tr> <td>&nbsp;</td> <td colspan="2">&nbsp;</td> <td>&nbsp;</td> </tr> <tr> <td>&nbsp;</td> <td width="16%"> <input type="submit" name="Submit" value="Log in!"> </td> <td width="11%"> <input type="submit" name="Submit2" value="Reset"></td> <td>&nbsp;</td> </tr> </table> <p>&nbsp;</p></form> <p>&nbsp;</p> </body> </html>[/code:1:039d9b9e6d] Hoe en waar kan ik de juiste code plaatsen ?