Wrox Home  
Search P2P Archive for: Go
Shopping CartView Cart  |  My Account  |  Support
Home Browse Titles

P2P Archives
 

Archive Index
Back to Active P2P Forum

 


Wrox Chapters on Demand - Download the chapters you need and take them on the go!
Wrox First - Instant Access online to new Wrox books

New Titles for ASP.NET

Cover image for product 0470190647
DotNetNuke Websites Problem Design Solution
Cover image for product 0470391847
Jumping from ASP to ASP.NET
Sign Up for the Free Wrox Newsletter
  Return to Index  

sql_language thread: SELECT on SQLServer using C#

Message #1 by "Gary Liptak" <gary_liptak@y...> on Mon, 17 Dec 2001 03:36:04
Hi Gary,

Use a stored procedure that you can call from a COM object passing the
value of the "Login Name" to the stored procedure.
An Alternative is, of course, to build the whole Select statement in C#
and then pass that to the SQL server.

Example (In VB) using a stored procedure

Dim Username as String, Password as String
Username = Request("Username")
Password = Request("Password")

Dim LoggedIn as Boolean = False

---------------------
If (Len(Username) > 0) and (Len(Password) > 0) then
	Dim myConnection as New
SQLConnection(ConfigurationSettings.AppSettings("DSN"))
	Dim myCommand as New
SQLCommand("STOREDPROCEDURE_NAME",myConnection)
	myCommand.CommandType = CommandType.StoredProcedure

	Dim paramUsername as New
SQLParameter("@Username",SQLDBType.varchar,100)
	paramUsername.Value = Username
	myCommand.parameters.add(paramUsername)

	Dim paramPassword as New
SQLParameter("@Password",SQLDBType.varchar,100)
	paramPassword.Value = Password
	myCommand.parameters.add(paramPassword)

	Dim paramLoginOk as New SQLparameter("@LoginOk",SQLDBType.Bit)
	paramLoginOk.Direction = ParameterDirection.Output
	myCommand.parameters.add(paramLoginOk)

	Try
		myConnection.Open()
		myCommand.ExecuteNonQuery()
		LoggedIn = Cbook(paramLoginOk.Value)
	Catch e as exception
		Throw e
	Finally
		if myConnection.State = ConnectionState.Open
			myConnection.Close()
		end if
	End Try

	If LoggedIn = True then
		' Code to welcome the user
	Else
		' Code to tell the user to get lost :)
	End if
Else
	' Code to tell the user he/she needs to enter username/password
End if
----------------------------

Example in VB Using Select Statement

Dim Username as String, Password as String
Username = Request("Username")
Password = Request("Password")

Dim LoggedIn as Boolean = False

-- Same declarations as before.

	Dim SQLString as String
	SQLString = "SELECT * FROM USERS WHERE USERNAME=" & Username & "
AND PASSWORD=" & Password
	Dim myCommand as New SQLCommand(SQLString,myConnection)

Hope this helps.

Amir Meskovic
meskovic@e...

-----Original Message-----
From: Gary Liptak [mailto:gary_liptak@y...]
Sent: Monday, December 17, 2001 7:36 AM
To: sql language
Subject: [sql_language] SELECT on SQLServer using C#


In the books on C# it only shows Select statements with "hard" coded
where
clauses.
How about a REAL LIFE EXAMPLE...
I want to "SELECT OPERATROR_ID FROM TABLE WHERE OPERATOR_ID = "entered
value". The entered value is a string field that was entered on a logon
dialog box. NOT A HARD CODED VALUE in the program. HOW REAL IS THAT. NO
POINT IN SQL if you have to HARD CODE all the valid entered DATA!!!

Any suggestions!!!

gary


$subst('Email.Unsub').

  Return to Index  
About Wrox  |  Contact Us  |  Subscribe to an RSS Feed of New Wrox Titles
Copyright © 2000-2004 by John Wiley & Sons, Inc. or related companies. All rights reserved. Please read our Privacy Policy