tags:

views:

69

answers:

3
+2  Q: 

Catch the error from Stored Procedure in C#

I have a stored procedure that is called to validate a user during login. If success it returns the user entity, and that works good! My question is if it doesn't work, I'll raise an error in the SP, How do I catch this error and use it in the best way? Right now I'm getting nullrefference, this is the code: Store procedure: 

ALTER PROCEDURE getEmployee
    (
    @username nvarchar(50),
    @password nvarchar(50)
    )
AS
DECLARE @Error_MSG nvarchar(50)
BEGIN

IF EXISTS (select * from Employee where eUsername = @username AND pword = @password)
begin
    select * from Employee where eUsername = @username AND pword = @password

    END

    ELSE
    BEGIN
    SET @Error_MSG = 'Wrong password, or user doesnt exist'
    RAISERROR (@Error_MSG, 11,1)
    END
END

And in the code it looks like this, the SP is getEmployee

ActivityDatabaseDataContext dc = new ActivityDatabaseDataContext();
        Employee emp;
        public bool logIn(string piUsername, string piPassword)
        {
            try
            {
                emp = dc.getEmployee(piUsername, piPassword).Single();
            }
            catch (Exception ex)
            {
                errorMsg = ex.Message + ex.InnerException.Message;
            }
            if (emp != null)
            {
                AppHelper.AppHelper.setUser(emp);
                return true;
            }
            else
            {
                return false;
            }

My question is how I should handle the exception?

+1  A: 

Your InnerException is probably null.

You should try to catch and deal with specific exceptions, in this case SqlExceptions.

Noel Abrahams  2010-10-21 17:42:08
+4  A: 

I wouldn't generally raise an error from a SP unless it was actually a system problem with the operation. Entering the wrong username and password is a user problem, and one you need only deal with at the interface level, so I'd throw most of that SP away and deal with the two use cases (1 row or 0 rows returned) in the business layer or interface code. If 0 rows, throw up the "Wrong username or password" message to the client and if 1, log in.

ALTER PROCEDURE getEmployee 
( 
    @username nvarchar(50), 
    @password nvarchar(50) 
) 
AS
BEGIN
    select * from Employee where eUsername = @username AND pword = @password
END
Kendrick  2010-10-21 17:47:03
Agreed! This is not really an "error" and it certainly shouldn't be raised from the database.
Chris Conway  2010-10-21 17:50:37
Yes, you are right, it's not an error, so I should change it, but how should I then wright the SP, I still want to return the full entity from the db if success, but let's say 0 if nothing, how should I change my SP? /Thanks
Fore  2010-10-21 19:13:58
From the above proc, you should be able to examine the returned value to see how many items it contains. If it's an empty set, you know there's an issue with the username/password. If it has 1 item in it, they're good to log in, and if there are more than one items (assuming you feel the OCD need to check, since the DB should ensure this case) then there's a serious problem :-)
Kendrick  2010-10-21 19:26:32
hehe, true that! Thanks for the help, To make it clear, if someone reads this later, I now removed the RAISERROR from my SP, and now only select * , and in my code I did I count as follows: var getemp = dc.getEmployee1(piUsername, piPassword); if (getemp.Count() > 0) { AppHelper.AppHelper.setUser(emp); return true; } else { return false; }
Fore  2010-10-21 19:41:50
A:  
   ALTER PROCEDURE getEmployee
        (
        @username nvarchar(50),
        @password nvarchar(50)
        )
    AS
    BEGIN

    select * from Employee where eUsername = @username AND pword = @password

    END

...

SqlCommand cmd = new SqlCommand("getEmployee", conn);
cmd.AddWithValue('@username', name);
cmd.AddWithValue('@password', pass);

SqlAdapter da = new SqlAdapter(cmd);
DataSet ds= new DataSet();
da.Fill(ds);

if (ds.Table.Count > 0 && ds.Table.Rows.Count == 1)  {
    // success
} else {
    // fail
}
signetro  2010-10-21 18:36:48
Just a note: The "top 1" is redundant if eUsername is unique (and it should be) in a column that does not allow duplicates. An alternate way of looking at it: If the column is not constrained and there are more than 1 row returned, then this truly is a system error.
Kendrick  2010-10-21 19:11:13
You are right about top and the other things.
signetro  2010-10-22 05:34:39

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?