com.ibatis.sqlmap.client.SqlMapException: There is no statement named User.login in this SqlMap.
SqlMapConfig.xml代码如下:
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE sqlMapConfig
PUBLIC "-//ibatis.apache.org//DTD SQL Map Config 2.0//EN"
"http://ibatis.apache.org/dtd/sql-map-config-2.dtd">
<sqlMapConfig>
<settings cacheModelsEnabled="true" enhancementEnabled="true" lazyLoadingEnabled="true"
maxRequests="32" maxSessions="10" maxTransactions="5" useStatementNamespaces="true" />
<sqlMap resource="com/lhq/prj/bms/po/xml/User.xml" />
</sqlMapConfig>
UserDao.java 代码如下:
package com.lhq.prj.bms.dao.impl;
import java.util.List;
import org.springframework.orm.ibatis.support.SqlMapClientDaoSupport;
import com.lhq.prj.bms.core.Page;
import com.lhq.prj.bms.dao.IUserDao;
import com.lhq.prj.bms.po.User;
/**
* 用户管理持久层实现
* @author Administrator
*
*/
public class UserDao extends SqlMapClientDaoSupport implements IUserDao {
public Integer deleteById(Integer userId) {
// TODO Auto-generated method stub
return getSqlMapClientTemplate().delete("User.deleteById", userId);
}
public int findByCount(Page page) {
// TODO Auto-generated method stub
return (Integer) getSqlMapClientTemplate().queryForObject("User.findByCount", page);
}
public List findByExample(User user) {
// TODO Auto-generated method stub
return getSqlMapClientTemplate().queryForList("User.findByExample", user);
}
public Object saveUser(User user) {
// TODO Auto-generated method stub
return getSqlMapClientTemplate().insert("User.save", user);
}
public Integer update(User user) throws Exception {
// TODO Auto-generated method stub
return getSqlMapClientTemplate().update("User.update", user);
}
public List findByPage(Page page) {
// TODO Auto-generated method stub
return getSqlMapClientTemplate().queryForList("User.findByPage", page);
}
public User login(User user) {
// TODO Auto-generated method stub
return (User) getSqlMapClientTemplate().queryForObject("User.login", user);
}
}
User.xml代码如下:
<?xml version="1.0" encoding="UTF-8" ?>
<!DOCTYPE sqlMap
PUBLIC "-//ibatis.apache.org//DTD SQL Map 2.0//EN"
"http://ibatis.apache.org/dtd/sql-map-2.dtd">
<sqlMap namespace="User">
<typeAlias alias="user" type="com.lhq.prj.bms.po.User" />
<typeAlias alias="page" type="com.lhq.prj.bms.core.Page" />
<parameterMap class="user" id="pm_user_without_id">
<parameter property="emplName" javaType="string" jdbcType="VARCHAR" />
<parameter property="emplNo" javaType="string" jdbcType="VARCHAR" />
<parameter property="mobilePhone" javaType="string" jdbcType="VARCHAR" />
<parameter property="sex" javaType="string" jdbcType="VARCHAR" />
<parameter property="age" javaType="integer" jdbcType="NUMBER" />
<parameter property="userName" javaType="string" jdbcType="VARCHAR" />
<parameter property="password" javaType="string" jdbcType="VARCHAR" />
<parameter property="companyId" javaType="integer" jdbcType="NUMBER" />
<parameter property="companyName" javaType="string" jdbcType="VARCHAR" />
<parameter property="deptId" javaType="integer" jdbcType="NUMBER" />
<parameter property="deptName" javaType="string" jdbcType="VARCHAR" />
<parameter property="dutyId" javaType="integer" jdbcType="NUMBER" />
<parameter property="dutyName" javaType="string" jdbcType="VARCHAR" />
<parameter property="manager" javaType="boolean" jdbcType="BIT" />
<parameter property="remark" javaType="string" jdbcType="VARCHAR" />
</parameterMap>
<sql id="byUserIdCondition">
<![CDATA[
userId = #userId:NUMBER#
]]>
</sql>
<insert id="save" parameterMap="pm_user_without_id">
<![CDATA[
INSERT INTO t_user
(emplName,emplNo,mobilePhone,sex,age,userName,password,companyId,companyName,deptId,deptName,dutyId,dutyName,manager,remark)
VALUES (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)
]]>
<selectKey resultClass="int">
<![CDATA[
SELECT @@IDENTITY AS ID
]]>
</selectKey>
</insert>
<delete id="deleteById" parameterClass="integer">
<![CDATA[
delete t_user
]]>
<dynamic prepend="WHERE">
<include refid="byUserIdCondition" />
</dynamic>
</delete>
<update id="update" parameterClass="user">
<![CDATA[
UPDATE t_user
]]>
<dynamic prepend="SET">
<isNotNull property="emplName" prepend=",">
<![CDATA[
emplName = #emplName:VARCHAR#
]]>
</isNotNull>
<isNotNull property="emplNo" prepend=",">
<![CDATA[
emplNo = #emplNo:VARCHAR#
]]>
</isNotNull>
<isNotNull property="mobilePhone" prepend=",">
<![CDATA[
mobilePhone = #mobilePhone:VARCHAR#
]]>
</isNotNull>
<isNotNull property="sex" prepend=",">
<![CDATA[
sex = #sex:VARCHAR#
]]>
</isNotNull>
<isNotNull property="age" prepend=",">
<![CDATA[
age = #age:NUMBER#
]]>
</isNotNull>
<isNotNull property="userName" prepend=",">
<![CDATA[
userName = #userName:VARCHAR#
]]>
</isNotNull>
<isNotNull property="password" prepend=",">
<![CDATA[
password = #password:VARCHAR#
]]>
</isNotNull>
<isNotNull property="companyId" prepend=",">
<![CDATA[
companyId = #companyId:NUMBER#
]]>
</isNotNull>
<isNotNull property="companyName" prepend=",">
<![CDATA[
companyName = #companyName:VARCHAR#
]]>
</isNotNull>
<isNotNull property="deptId" prepend=",">
<![CDATA[
deptId = #deptId:NUMBER#
]]>
</isNotNull>
<isNotNull property="deptName" prepend=",">
<![CDATA[
deptName = #deptName:VARCHAR#
]]>
</isNotNull>
<isNotNull property="dutyId" prepend=",">
<![CDATA[
dutyId = #dutyId:NUMBER#
]]>
</isNotNull>
<isNotNull property="dutyName" prepend=",">
<![CDATA[
dutyName = #dutyName:VARCHAR#
]]>
</isNotNull>
<isNotNull property="manager" prepend=",">
<![CDATA[
manager = #manager:BIT#
]]>
</isNotNull>
<isNotNull property="remark" prepend=",">
<![CDATA[
remark = #remark:VARCHAR#
]]>
</isNotNull>
</dynamic>
<dynamic prepend="WHERE">
<include refid="byUserIdCondition" />
</dynamic>
</update>
<sql id="findUserByPageCondition">
<isNotEmpty property="conditions">
<iterate property="conditions" open="(" close=")" conjunction="OR">
<![CDATA[
upper(emplName) LIKE '%' + upper(#conditions[]:VARCHAR#) + '%'
OR upper(emplNo) LIKE '%' + upper(#conditions[]:VARCHAR#) + '%'
OR upper(mobilePhone) LIKE '%' + upper(#conditions[]:VARCHAR#) + '%'
OR upper(sex) LIKE '%' + upper(#conditions[]:VARCHAR#) + '%'
OR upper(userName) LIKE '%' + upper(#conditions[]:VARCHAR#) + '%'
OR upper(companyName) LIKE '%' + upper(#conditions[]:VARCHAR#) + '%'
OR upper(deptName) LIKE '%' + upper(#conditions[]:VARCHAR#) + '%'
OR upper(dutyName) LIKE '%' + upper(#conditions[]:VARCHAR#) + '%'
OR upper(remark) LIKE '%' + upper(#conditions[]:VARCHAR#) + '%'
]]>
</iterate>
</isNotEmpty>
</sql>
<select id="findByPage" parameterClass="page" resultClass="user">
<![CDATA[
SELECT * FROM t_user
]]>
<dynamic prepend="WHERE">
<include refid="findUserByPageCondition" />
</dynamic>
<![CDATA[
]]>
<dynamic prepend="AND">
<include refid="findUserByPageCondition" />
</dynamic>
<![CDATA[
ORDER BY userId limit $start$,$limit$
]]>
</select>
<select id="findByCount" parameterClass="page" resultClass="int">
<![CDATA[
SELECT COUNT(*) FROM t_user
]]>
<dynamic prepend="WHERE">
<include refid="findUserByPageCondition" />
</dynamic>
</select>
<select id="login" parameterClass="user" resultClass="user">
<![CDATA[
SELECT * FROM t_user
WHERE userName = #userName:VARCHAR# and password = #password:VARCHAR#
]]>
</select>
<select id="findByExample" parameterClass="user" resultClass="user">
<![CDATA[
SELECT * FROM t_user
]]>
<dynamic prepend="WHERE">
<isNotNull property="userId" prepend="AND">
userId = #userId:NUMBER#
</isNotNull>
<isNotNull property="emplName" prepend="AND">
emplName LIKE '%' + #emplName:VARCHAR# + '%'
</isNotNull>
<isNotNull property="emplNo" prepend="AND">
emplNo LIKE '%' + #emplNo:VARCHAR# + '%'
</isNotNull>
<isNotNull property="mobilePhone" prepend="AND">
mobilePhone LIKE '%' + #mobilePhone:VARCHAR# + '%'
</isNotNull>
<isNotNull property="sex" prepend="AND">
sex = #sex:VARCHAR#
</isNotNull>
<isNotNull property="age" prepend="AND">
age = #sex:NUMBER#
</isNotNull>
<isNotNull property="userName" prepend="AND">
userName = #userName:VARCHAR#
</isNotNull>
<isNotNull property="password" prepend="AND">
password = #password:VARCHAR#
</isNotNull>
<isNotNull property="companyId" prepend="AND">
companyId = #companyId:NUMBER#
</isNotNull>
<isNotNull property="companyName" prepend="AND">
companyName LIKE '%' + #companyName:VARCHAR# + '%'
</isNotNull>
<isNotNull property="deptId" prepend="AND">
deptId = #deptId:NUMBER#
</isNotNull>
<isNotNull property="deptName" prepend="AND">
deptName LIKE '%' + #deptName:VARCHAR# + '%'
</isNotNull>
<isNotNull property="dutyId" prepend="AND">
dutyId = #dutyId:NUMBER#
</isNotNull>
<isNotNull property="dutyName" prepend="AND">
dutyName LIKE '%' + #dutyName:VARCHAR# + '%'
</isNotNull>
<isNotNull property="manager" prepend="AND">
manager = #manager:BIT#
</isNotNull>
</dynamic>
</select>
</sqlMap>
错误原因:User.xml中没有定义命名空间
<sqlMap namespace="User">
分享到:
相关推荐
./sqlmap.py –h //查看帮助信息 ./sqlmap.py –u “http://www.anti-x.net/inject.asp?id=injecthere” //get注入 ./sqlmap.py –u “http://www.anti-x.net/inject.asp?id=injecthere” --data “DATA”//post...
./sqlmap.py -u http://www.evil0x.com/ test.php?p=2 -f -b –current-user –current-db –users –passwords –dbs -v 0 2. ./sqlmap.py -u http://www.evil0x.com/ test.php?p=2 -b –passwords -U root –union...
sqlmap v1.4 用户手册中文版.pdf
SQLmap压缩包
基于SQLmap的SQL注入工具源码.。基于SQLmap,使用Java开发 安装教程 安装JDK(需要有javafx) 安装Python 安装SQLmap 基于SQLmap的SQL注入工具源码.。基于SQLmap,使用Java开发 安装教程 安装JDK(需要有javafx)...
ibatis-sqlmap_2.3.4.jar 和 ibatis-sqlmap_2.jar 两个jar包的下载
sqlmap命令中文详解,2018.5.13更新 sqlmap命令中文详解,2018.5.13更新 sqlmap命令中文详解,2018.5.13更新 sqlmap命令中文详解,2018.5.13更新 sqlmap命令中文详解,2018.5.13更新
sqlmap非常好用的数据库渗透工具,请合理使用。
ibatis-sqlmap ibatis-sqlmap-2 ibatis-sqlmap-2.jar.zip
Sqlmap&python2;.7.3.,sqlmap注入平台,用于常见的sql注入,集成了常见的sql注入工具
-- Configure a built-in transaction manager. If you're using an app server, you probably want to use its transaction manager and a managed datasource --> ...
sql注入漏洞扫描工具,209最新版,1.3.7-19dev开发版。配合python2.7使用。
SqlMap.xsd SqlMap.xsd
Python 和 SQLMAP 依赖 将repo拷贝到你的机器 编辑sqlmap/inc/config.php配置文件...启动sqlmap API服务(python /home/user/tools/sqlmap/sqlmapapi.py -s) 通过浏览器访问Web应用 (http://127.0.0.1/sqlmap/index.php)
sqlmap
[Build Status](https://api.travis-ci.org/sqlmapproject/sqlmap.svg?branch=master)](https://travis-ci.org/sqlmapproject/sqlmap) [![Python 2.6|2.7|3.x](https://img.shields.io/badge/python-2.6|2.7|3.x-...
sqlmap -u http://url 列数据库信息 sqlmap -u http://url --dbs 指定库名列出所有表 sqlmap -u http://url -D dbname --tables 指定库名表名列出所有字段 sqlmap -u ...
SqlMap的配置是iBatis中应用的核心。这部分任务占据了iBatis开发的70的工作量。Sql Map配置文件是iBatis配置的核心,从数据库连接到执行SQL时使用的sqlMap文件都是通过此文件中的配置提供给框架的,它通常命名为...
Here is a list of major features implemented in sqlmap: * Full support for MySQL, Oracle, PostgreSQL and Microsoft SQL Server database management system back-end. Besides these four DBMS, sqlmap ...
burpsuite 插件 sqlmap.jar