stackoom
  简体   繁体   中英

MS Access to sql server searching

 原文  2010-02-11 04:47:32       c#/ sql-server

Question

How to use this code if we are going to use sql server database becaUSE in this code we used MS Access as the database 

private void btnSearch_Click(object sender, System.EventArgs e) {
  String pcode = txtPcode.Text;
  int ctr = productsDS1.Tables[0].Rows.Count;
  int x;
  bool found = false;

  for (x = 0; x<ctr; x++) {
    if (productsDS1.Tables[0].Rows[x][0].ToString() == pcode) {
      found = true;
      break;
    }
  }

  if (found == true) {
    txtPcode.Text = productsDS1.Tables[0].Rows[x][0].ToString();
    txtDesc.Text = productsDS1.Tables[0].Rows[x][1].ToString();
    txtPrice.Text = productsDS1.Tables[0].Rows[x][2].ToString();
  } else {
    MessageBox.Show("Record Not Found");
  }

  private void btnNew_Click(object sender, System.EventArgs e) {
    int cnt = productsDS1.Tables[0].Rows.Count;
    string lastrec = productsDS1.Tables[0].Rows[cnt][0].ToString();
    int newpcode = int.Parse(lastrec) + 1;

    txtPcode.Text = newpcode.ToString();
    txtDesc.Clear();
    txtPrice.Clear();
    txtDesc.Focus();

here's the connectionstring

Jet OLEDB:Global Partial Bulk Ops=2;Jet OLEDB:Registry Path=;Jet OLEDB:Database Locking Mode=0;Data Source="J:\\2009-2010\\1st sem\\VC#\\Sample\\WindowsApplication_Products\\PointOfSales.mdb"

1 answers

solution1
 1  2010-02-11 17:40:19

It would be total abuse of a SQL Server to implement code like this against a server. My C# is a bit rusty, but it looks like this code walks through every row in productsDS1 , comparing the "Pcode", "Desc" and "Price" to those entered into the text box.

The proper way to implement this is via either a stored procedure on the SQL Server that is passed those three values and returns either a recordset of matching record(s) (or possibly a RecordID to be used in a separate retreival process) OR at least to form a SQL statement to retreive the data (ie "SELECT * FROM productsDS1 where Pcode = '" & txtPcode.Text & "' AND Desc = '" & txtDesc.Text & "' AND Price = " & txtPrice.Text ). I would recommend the first method since the second is susceptible to SQL injection.

(This methodology would also have been more appropriate against the Access db.)

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question MS Access, SQL Server image field Mimic MS Access or SQL Server ODBC server from .NET Searching with SQL Server database c# query ms access against sql server Case Statement - using BETWEEN. Ms Access to SQL Server C# Sync MS Access database to sql server Importing Data from Mulitple access database files to Ms Sql Server Copy table from SQL Server 2008 to MS Access 2007 comparing data type of sql server and ms access in c# C# import MS-Access database into SQL Server?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM