stackoom
  简体   繁体   中英

How do I do a SQL from a textbox and display in a datagridview?

 原文  2011-08-15 18:18:38       c#/ asp.net/ oledb

Question

Here is the code snippet

string search = textBox1.Text;
int s = Convert.ToInt32(search);
string conn="Provider=Microsoft.ACE.OLEDB.12.0;Data Source=E:\\Data.accdb";
string query="SELECT playerBatStyle FROM Player where playerID='" + s + ";
OleDbDataAdapter dAdapter=new OleDbDataAdapter (query ,conn );
OleDbCommandBuilder cBuilder=new OleDbCommandBuilder (dAdapter );
DataTable dTable=new DataTable ();
dAdapter .Fill (dTable );
dataGridView1.DataSource = dTable;

6 answers

solution1
 1  2011-08-15 18:55:15

You had an unclosed single quote in your where clause. Try this instead:

string query = String.Format("SELECT playerBatStyle FROM Player where playerID={0}", s);

solution2
 1  2011-08-15 18:57:00

As the others have mentioned, s is of type int so quotes are not needed in the query and you do need the databind line.

Also, if you're not already, you'll want to check that a value actually exists in the text box before attempting to convert it to an integer. You don't need the OleDbCommandBuilder as the DataAdapter is handling the command internally as the SelectCommand property. Definitely consider using a parameterized query, which will reduce sql injection vulnerabilities.

The below combines my suggestions:

if (textBox1.Text != "")
{
    string search = textBox1.Text;
    int s = Convert.ToInt32(search);
    string conn = "Provider=Microsoft.ACE.OLEDB.12.0;Data Source=C:\\Local Docs\\Temp\\Data.accdb";
    string query = "SELECT playerBatStyle FROM Player where playerID=@playerID";
    OleDbDataAdapter dAdapter = new OleDbDataAdapter(query, conn);
    dAdapter.SelectCommand.Parameters.AddWithValue("@playerID", s);
    DataTable dTable = new DataTable();
    dAdapter.Fill(dTable);
    dataGridView1.DataSource = dTable;
    dataGridView1.DataBind(); 
}

solution3
 0  2013-11-06 10:16:20

Use this query to retrieve data related to user search

"Select playerBatStyle from Player where Player like %'"+s+"'";

solution4
 0  2011-08-15 18:31:35

The code you posted looks okay. A few corrections though:

    ...
    //fix lots of missing quotation marks 
    string query="SELECT playerBatStyle FROM Player where playerID='" + s + "' "; 
    ...
    dataGridView1.DataBind(); //yes, we should call DataBind

solution5
 0  2011-08-15 18:32:20

PlayerID looks int type to me which means you don't need to put single quotes around it 

string query = "SELECT playerBatStyle FROM Player where playerID=" + s + ";

At the end you would have to do dataGridView1.DataBind(); if you want to show results in DataGridView

On the side note it is always recommended to user parametrized query instead of concatinating values in the query, it's not safe

solution6
 0  2011-08-15 19:00:19

see if this example can help you,

Regards.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How do I save info from an unbound datagridview to SQL database Read sql string from textbox and display in datagridview How do I read data from a database and display it in a TextBox? How do I make the number “0” display in a textbox? How do I display the value in the Textbox How do I place data from the SQL Server database into a TextBox? How do I display data in a DataGridView based on a selected value from a combo box? How do I display time column as hh:mm tt in datagridview which is retrieved from MYSQL time field? How do i display a progress bar while loading a datatable to DataGridview? how do I display time in a windows forms dataGridView bound to a datatable
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM