stackoom
  简体   繁体   中英

checking null value in database through sqlquery C#

 原文  2013-05-09 08:53:21       c#/ asp.net/ sql-server-2008

Question

I have entered a user's name that exists in the DB. The name has only first and last name. so the middle name is empty and it is stored in the DB as null . To get the employee id of the user, i have used the following query. but the value of obj after executing the query is null . The first and last names are stored in an array. I have checked their values. Their values are ok.

Can you please tell me why the object is not fetching nay value. 

SqlCommand cmm1= new SqlCommand ();
cmm1.CommandText = ("Select empID from empPersonalInfo where empFirstName= '" + arr[0].ToString() + "' and empMiddleName= '" + System.DBNull.Value + "' and empLastName= '" + arr[2].ToString() + "' ");            
cmm1.Connection = conn;
obj = cmm1.ExecuteScalar();

5 answers

solution1
 3 ACCPTED  2013-05-09 08:55:30

You can't compare NULL using equals '=', use 'IS NULL' instead: 

cmm1.CommandText = ("Select empID from empPersonalInfo where empFirstName= '" + 
              arr[0].ToString() + "' and empMiddleName IS NULL and empLastName= '" + 
              arr[2].ToString() + "' ");

BTW, that query really doesn't make a lot of sense. Perhaps : 

empMiddleName IS NULL OR empMiddleName =  @somevalue

Plus, please note : you are possibly open to SQL Injection attacks. Use parameters rather than concatenating user input values.

solution2
 2  2013-05-09 08:56:30

For comparing a field against null use empMiddleName IS NULL

You should use Parameterized queries to prevent SQL injection .

solution3
 1  2013-05-09 08:56:17

empMiddleName= '" + System.DBNull.Value + "' is incorrect. There is no = operator for NULL value.

Change it to empMiddleName is null .

solution4
 0  2013-05-09 08:58:45

Use SQLParameter object for passing parameters to the query as below: 

SqlCommand command = 
        new SqlCommand("SELECT * FROM Users WHERE Username = @Username", conn);

    command.Parameters.Add(new SqlParameter("@Username", "Justin Niessner"));
    obj = command.ExecuteScalar();

solution5
 0  2013-05-09 09:41:51

You need to check that middle name should be equal null or middle name should be equal to value you have passed in query.

I hope blow query query can full fill your requirement. 

cmm1.CommandText = ("Select empID from empPersonalInfo where empFirstName= '" + 
                  arr[0].ToString() + "' and ((empMiddleName IS NULL) or(empMiddleName='"+arr[1].ToString()+"')) and empLastName= '" + 
                  arr[2].ToString() + "' ");

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Checking database for null rows C# C# checking if next value in array is null Null checking for if then in C# Problem with db.Database.SqlQuery() usage in C# Checking for null value in c# var with LINQ & Entity framework What is the best syntax for checking for null value objects in C# Re-direct loop when checking if value is null C# C# - Methods for null checking Checking for a null pointer in C# Checking if an object is null in C#
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM