ansaurus

Question

C# guid and SQL uniqueidentifier

Answer 1

+5 A:

There is a SQL type for this: uniqueidentifier.

mjv 2009-09-16 22:50:31

Yep, its in the question :) I'm asking how you make uniqueidentifier play well with C# Guid.NewGuid()

Daniel 2009-09-16 22:51:22

Didn't you say in your question that you're using nvarchar as the field's data type?

Jay Riggs 2009-09-16 22:53:46

You will use the uniqueidentifier type in SQL Server, then do as Peter demontrates above to store values to it.

Tor Haugen 2009-09-16 22:54:16

Perfect, thanks Tor

Daniel 2009-09-16 22:56:44

Have to agree with Pierre-Alain Vigeant - the method in Peter's answer is *not* the best way to do this.

MusiGenesis 2009-09-16 23:04:40

Answer 2

+5 A:

SQL is expecting the GUID as a string. The following in C# returns a string Sql is expecting.

"'" + Guid.NewGuid().ToString() + "'"

Something like

INSERT INTO TABLE (GuidID) VALUE ('4b5e95a7-745a-462f-ae53-709a8583700a')

is what it should look like in SQL.

Peter Oehlert 2009-09-16 22:50:41

If you use SqlParameter, you don't have to convert the GUID into a string.

Pierre-Alain Vigeant 2009-09-16 22:58:08

To be clearer to everyone, I'm not suggesting that the sql specified should be used as demonstrated from C# with string concatenation. The crux of the question, I believe, is what form does a SQL UNIQUEIDENTIFIER LITERAL look like. The literal looks just like a string but with a special format. The two code snippets demonstrate what the literal looks like in 2 languages. I agree with DLKG that using a parameterized query and passing the guid as a typed parameter is both more performant as well as preventing potential SQL Injection attacks.

Peter Oehlert 2009-09-16 23:52:49

@Peter: the question was literally "Is there a good/preferred way to make C# and SQL Server guids play well together?" In your code sample, C# is stealing SQL Server's lunch money. :P

MusiGenesis 2009-09-18 00:31:53

Answer 3

+5 A:

Store it in the database in a field with a data type of uniqueidentifier.

Jay Riggs 2009-09-16 22:51:01

Answer 4

A:

It's far better to use stored procedures to communicate with your SQL database, in which case you'd declare the parameter type as OleDbType.Guid and pass a C# value of type Guid.

If you must construct SQL strings, you can surround it with single quotes as previously mentioned.

Jared 2009-09-16 22:59:15

Answer 5

+8 A:

Here's a code snipit showing how to insert a Guid using a parametrised query:

    using(SqlConnection conn = new SqlConnection(connectionString))
    {
        conn.Open();
        using(SqlTransaction trans = conn.BeginTransaction())
        using (SqlCommand cmd = conn.CreateCommand())
        {
            cmd.Transaction = trans;
            cmd.CommandText = @"INSERT INTO [MYTABLE] ([GuidValue]) VALUE @guidValue;";
            cmd.Parameters.AddWithValue("@guidValue", Guid.NewGuid());
            cmd.ExecuteNonQuery();
            trans.Commit();
        }
    }

DLKJ 2009-09-16 23:16:35

guidValue should be @guidValue

Peter Oehlert 2009-09-16 23:53:23

Fixed the typo, cheers.

DLKJ 2009-09-17 08:28:04

+1 for demonstrating the correct way to do it, rather than just answering the question literally.

Christian Hayter 2009-10-14 09:44:08

Very useful. I was trying to parse a string etc... inside the database. This works great. Cheers, ~ck

Hcabnettek 2010-09-21 23:25:08

ansaurus

tags:

views:

answers:

C# guid and SQL uniqueidentifier

related questions