#!/usr/bin/env python
# encoding: utf-8
# Date: 2018/6/24
import pymysql
username = input('username:')
password = input('password:')
conn = pymysql.connect(
host='127.0.0.1',
port=3306,
user='root',
password='123',
db='stu_system',
charset='utf8'
)
# 拿到游标
cursor = conn.cursor()
# 执行sql语句
if username.isdigit():
username = int(username)
sql = 'select * from stu_teacher where tid = %s and tname = "%s" ' % (username, password)
rows = cursor.execute(sql)
# 防止sql注入方式
# sql = 'select * from stu_teacher where tid = %s and tname = %s '
# rows = cursor.execute(sql, (username, password))
cursor.close()
conn.close()
if rows:
print('success!!!')
else:
print('xxxxxxxxxxx')