trying to insert data into a database using asp.net and c#
Question
I am trying to insert data into a table when a button on my asp.net page is clicked. I don't get any errors, but when I try to redirect the user to a new page after the information is inserted, it stays on the same page. Below is my code.
SqlConnection db = new SqlConnection();
db.ConnectionString = System.Configuration.ConfigurationManager.ConnectionStrings["AboutYouEntities"].ConnectionString;
db.Open();
SqlCommand insertUser = new SqlCommand();
SqlCommand insertContact = new SqlCommand();
insertUser.CommandText = "INSERT into USER (Email, Name, Gender, BirthDate, LinuxDistro) VALUES ('" + userInfo.Email + "','" + userInfo.Name + "','" + userInfo.Gender + "','" + userInfo.BirthDate + "','" + userInfo.LinuxDistro + "')";
insertContact.CommandText = "INSERT into CONTACT (Phone, Zip, Comments) VALUES ('" + userContact.Phone + "','" + userContact.Zip + "','" + userContact.Comments + "')";
insertUser.ExecuteNonQuery();
insertContact.ExecuteNonQuery();
db.Close();
Response.Redirect("ThankYou.aspx");
1 answers
solution1
1 2014-04-10 20:12:01
Few problems with your code:
- You haven't attached connection with your commands.
- USER is reserve word and should be enclosed in square brackets like
[USER] - You should parametrized your query, you are prone to SQL Injection .
- Consider enclosing
SqlConnectionandSqlCommandobject inusingstatement as it will ensure disposal of the resources.
Code:
using (SqlConnection db = new SqlConnection())
{
db.ConnectionString = System.Configuration.ConfigurationManager.ConnectionStrings["AboutYouEntities"].ConnectionString;
db.Open();
using (SqlCommand insertUser = new SqlCommand())
{
insertUser.Connection = db;
insertUser.CommandText = "INSERT into [USER] (Email, Name, Gender, BirthDate, LinuxDistro) VALUES (@Email, @Name, @Gender,@BirthDate, @LinuxDistro);";
insertUser.Parameters.AddWithValue("@Email", userInfo.Email);
insertUser.Parameters.AddWithValue("@Name", userInfo.Name);
insertUser.Parameters.AddWithValue("@Gender", userInfo.Gender);
insertUser.Parameters.AddWithValue("@BirthDate", userInfo.BirthDate);
insertUser.Parameters.AddWithValue("@LinuxDistro", userInfo.LinuxDistro);
insertUser.ExecuteNonQuery();
}
using (SqlCommand insertContact = new SqlCommand())
{
insertContact.Connection = db;
insertContact.CommandText = "INSERT into CONTACT (Phone, Zip, Comments) VALUES (@Phone, @Zip, @Comments);";
insertContact.Parameters.AddWithValue("@Phone", userContact.Phone);
insertContact.Parameters.AddWithValue("@Zip", userContact.Zip);
insertContact.Parameters.AddWithValue("@Comments", userContact.Comments);
insertContact.ExecuteNonQuery();
}
}
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Trying to insert data into a table of a database through c#/asp.net
How to insert data from database into a table using c# asp.net?
insert data into sql database using jquery ajax in asp.net c#
ASP.NET Core MVC & C# : insert data into database using Entity Framework
Insert Data Using jQuery Ajax in Asp.net C# [Database MySQL]
How to insert foreign key data into database using c# asp.net
Insert data into MySql using Asp.Net in C#
Adding data to a database using C# in asp.net
inserting data into database using asp.net c#
asp.net c# data to a database
Related Tags