sql server 2005 deleting problem

Question

0.00/5 (No votes)

See more:

Hi,
I want to delete a record in sql with c# , it's my code but it has problem :

C#

private void button1_Click(object sender, EventArgs e)
        {
            SqlConnection s = new SqlConnection(@"DataSource=.\SQLEXPRESS;AttachDbFilename=C:\Users\mm\Documents\Visual Studio 2008\Projects\LAS\LAS\mm.mdf;Integrated Security=True;Connect Timeout=30;User Instance=True");
            string delstring = textBox1.Text;
            SqlCommand com = new SqlCommand("DELETE bookInfo WHERE bookName=" + delstring, s);
            s.Open();
            com.ExecuteNonQuery();
            s.Close();
        }

please tell me how can I solve it's problem.

Posted 25-Feb-11 23:38pm

mehdi_k

Updated 26-Feb-11 1:15am

thatraja

v2

Add a Solution

2 solutions

Solution 1

If it gives you an error, that is normally a clue.
If it doesn't, then you need to look at your data.

The chances are it is your data that is the problem. Does your book name contain any spaces or punctuation? If so, then it will muck up the SQL command. To avoid that (and accidental or deliberate SQL Injection attacks) use parametrized queries instead:

C#

private void button1_Click(object sender, EventArgs e)
        {
            SqlConnection s = new SqlConnection(@"DataSource=.\SQLEXPRESS;AttachDbFilename=C:\Users\mm\Documents\Visual Studio 2008\Projects\LAS\LAS\mm.mdf;Integrated Security=True;Connect Timeout=30;User Instance=True");
            string delstring = textBox1.Text;
            SqlCommand com = new SqlCommand("DELETE bookInfo WHERE bookName=@BN", s);
            com.AddWithValue("@BN", delstring);
            s.Open();
            com.ExecuteNonQuery();
            s.Close();
        }

Posted 25-Feb-11 23:51pm

OriginalGriff

Comments

Sandeep Mewara 26-Feb-11 5:58am

His query is wrong.. just posted it. :)

Espen Harlinn 26-Feb-11 9:34am

My 5 for using: com.AddWithValue("@BN", delstring);
I guess that's what you actually wanted to show :)

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Sandeep Mewara · Accepted Answer · 2011-02-25T23:57:00

Solution 2

Don't you think you missed something here:
("DELETE bookInfo WHERE bookName=" + delstring, s);

Which table you are referring to?
Try:
("DELETE FROM bookInfo WHERE bookName=" + delstring, s);
Assuming, 'bookInfo' is the table name.

UPDATE:
I also notice that bookname value is not surrounded by a quote here. It looks like a string, varchar in DB it should be and thus quotes would be needed.

Thus, try:
("DELETE FROM bookInfo WHERE bookName='" + delstring+"'", s);

Posted 25-Feb-11 23:57pm

Sandeep Mewara

Updated 26-Feb-11 0:17am

v2

Comments

OriginalGriff 26-Feb-11 6:01am

Good point! I missed that - I suspect it may be a combination of the two...:laugh:

Sandeep Mewara 26-Feb-11 6:03am

:)

Sandeep Mewara 26-Feb-11 6:07am

BTW, I just noticed you too crossed 100K barrier. Congrats! :)

OriginalGriff 26-Feb-11 7:10am

Thanks! I hadn't noticed myself...:blush:

mehdi_k 26-Feb-11 6:14am

Even with this code the problem message is "Invalid column name".
please help!

Sandeep Mewara 26-Feb-11 6:15am

Which means, 'bookName' is not a valid column name in your table 'bookInfo'

Sandeep Mewara 26-Feb-11 6:15am

BTW, bookName looks a string. Give me 2 min to update my answer.

Sandeep Mewara 26-Feb-11 6:17am

Updated. Check.

mehdi_k 26-Feb-11 6:27am

I'm sorry to say but new problem : "The data types text and varchar are incompatible in the equal to operator."

Sandeep Mewara 26-Feb-11 6:31am

Oh boy! This means your 'bookName column is of 'text' type. Why would you do that?

You can't use text columns in an equal operation of a WHERE clause, hence the error.

Out here, you don't need a text field. Change your column type from text to either varchar(max) or nvarchar(max) or infact varchar (100) (as book name won't be more than 100 characters.)

mehdi_k 26-Feb-11 6:36am

Thank you for your time.
it's working now, i've changed it to varchar(MAX).

Sandeep Mewara 26-Feb-11 6:37am

Ok. Good to know issue resolved. :)

Espen Harlinn 26-Feb-11 9:33am

Good effort - OP should probably use parameters as the ' is quite common in book names - my 5

Sandeep Mewara 27-Feb-11 5:20am

Thanks.
BTW, paramterized thing, agreed. I also suggested using a varchar(100) kind of for bookname... but he uses varchar(max)

Espen Harlinn 27-Feb-11 5:29am

You're right, using an nvarchar(100) makes quite a bit more sense :)

Sandeep Mewara 27-Feb-11 5:32am

OT: Interested in Cricket?

Currently Ind Vs Eng going on.. watching that.

Espen Harlinn 27-Feb-11 5:36am

No - I’m more into sculling – feeling right at home 7 cm above sea level, have fun though :)

Sandeep Mewara 27-Feb-11 5:37am

Thanks. :)

You too enjoy. :thumbs up: