String id = request.getParameter("id"); String dname = request.getParameter("dname"); String btime= request.getParameter("btime"); String title= request.getParameter("title"); Class.forName("com.mysql.jdbc.Driver"); Connection conn=DriverManager.getConnection("jdbc:mysql://127.0.0.1:3306/library","root","123456"); Statement stat=conn.createStatement(); String sql="update books set count=count-1 where id="+id; stat.executeUpdate(sql); stat.close(); conn.close(); response.sendRedirect("borrow.jsp");使用批出理技术同时实现String sql=insert into borrow(dname,id,title,btime) values('"+dname+"','"+id+"','"+title+"','"+btime+"',);语句
时间: 2023-07-19 21:11:02 浏览: 46
可以使用PreparedStatement实现批量处理和参数化查询,代码如下:
```
String id = request.getParameter("id");
String dname = request.getParameter("dname");
String btime= request.getParameter("btime");
String title= request.getParameter("title");
Class.forName("com.mysql.jdbc.Driver");
Connection conn=DriverManager.getConnection("jdbc:mysql://127.0.0.1:3306/library","root","123456");
String updateSql="update books set count=count-1 where id=?";
String insertSql="insert into borrow(dname,id,title,btime) values(?,?,?,?)";
PreparedStatement updateStmt = conn.prepareStatement(updateSql);
updateStmt.setString(1, id);
PreparedStatement insertStmt = conn.prepareStatement(insertSql);
insertStmt.setString(1, dname);
insertStmt.setString(2, id);
insertStmt.setString(3, title);
insertStmt.setString(4, btime);
conn.setAutoCommit(false);
updateStmt.executeUpdate();
insertStmt.executeUpdate();
conn.commit();
conn.setAutoCommit(true);
updateStmt.close();
insertStmt.close();
conn.close();
response.sendRedirect("borrow.jsp");
```
注意这里使用了参数化查询,可以避免SQL注入的问题。同时使用了批量处理技术,将两个SQL语句同时执行,可以提高效率。