stackoom
  简体   繁体   中英

How to show related category of buttons in C# Windows Form?

 原文  2016-05-03 19:10:53       c#

Question

I'm building a C# Windows Form application that I would like to allow user to click the category button, and then show the related category product buttons. But I tried many times but it occurs error again. Image 1 , Image 2

public void DisplayCategories()
{
    var cmd = new SqlCommand("SELECT DISTINCT category FROM Products ORDER BY category ASC", con);
    con.Open();
    try
    {
        var da = new SqlDataAdapter(cmd);
        var dt = new DataTable();
        da.Fill(dt);

        foreach (DataRow dr in dt.Rows)
        {
            var b = new Button();

            b.Size      = new Size(180, 36);
            b.BackColor = SystemColors.Control;
            b.FlatStyle = FlatStyle.Flat;
            b.UseVisualStyleBackColor = false;
            b.Text   = dr["category"].ToString();
            b.Click += new EventHandler(UpdateList);

            flpCategory.Controls.Add(b);
        }
    }
    catch (Exception ex)
    {
        MessageBox.Show(ex.Message, "Error");
    }
    con.Close();
}

private void UpdateList(object sender, EventArgs e)
{
    var b = (Button)sender;
    SqlCommand subcmd = new SqlCommand("SELECT itemName FROM Products WHERE description = " + b.Text, con);

    var subda = new SqlDataAdapter(subcmd);
    var subdt = new DataTable();
    subda.Fill(subdt);

    foreach (var subdr in subdt.Rows)
    {
        var b2 = new Button();
        
        b2.Size      = new Size(180, 50);
        b2.BackColor = SystemColors.Control;
        b2.FlatStyle = FlatStyle.Flat;
        b2.UseVisualStyleBackColor = false;
        b2.Text = subdr["itemName"].ToString();
        
        flpItems.Controls.Add(b2);
    }
}

1 answers

solution1
 1  2016-05-03 19:17:47

When you want to search a field of type text like your description field then you need to put the value to search for between single quotes.

SELECT itemName FROM Products WHERE description = 'Bakery'

However this would be wrong because the best way to create this query is through a parameterized approach

string cmdText = "SELECT itemName FROM Products WHERE description = @desc";
Button b = (Button)sender;
SqlCommand subcmd = new SqlCommand(cmdText, con);
subCmd.Parameters.Add("@desc", SqlDbType.NVarChar).Value = b.Text;
SqlDataAdapter subda = new SqlDataAdapter(subcmd);
DataTable subdt = new DataTable();
subda.Fill(subdt);

A parameterized query avoids the Sql Injection hack and remove the need to check if your string value contains a single quote. (Syntax error without doubling the quote)

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to Get all the websites related to the keyword in Windows Form C# c# Show Windows Form inheritance between buttons C# - windows form Multiple buttons inside loop doesn't hide and show with .hide() in windows form c# application How to receive data from a port and show in a C# windows form? How to always show underline character? (C# Windows Form) How do you show animated GIFs on a Windows Form (c#) Show Google Calendar in C# Windows Form How to hide/show buttons c# Windows From with C# - creating a List with the buttons in the parent form
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM