Add Invalid Username/Password to users sample

gh-49
2014-11-17 14:48:58 -06:00
parent 495d19982d
commit 3cd4364566
4 changed files with 28 additions and 1 deletions
--- a/samples/users/src/main/java/sample/LoginServlet.java
+++ b/samples/users/src/main/java/sample/LoginServlet.java
@@ -32,10 +32,13 @@ public class LoginServlet extends HttpServlet {
        String username = req.getParameter("username");
        String password = req.getParameter("password");

-        if(username != null && username.equals(password)) {
+        if(username != null && !"".equals(username) && username.equals(password)) {
            req.getSession().setAttribute("username", username);
            String url = resp.encodeRedirectURL(req.getContextPath() + "/");
            resp.sendRedirect(url);
+        } else {
+            String url = resp.encodeRedirectURL(req.getContextPath() + "/?error");
+            resp.sendRedirect(url);
        }
    }