ansaurus

Question

Answer 1

+2 A:

[Edit: added "select" before references to last_insert_id()]

What about running "select last_insert_id();" after your insert?

MySqlCommand comm = connect.CreateCommand();
comm.CommandText = insertInvoice;
comm.CommandText += "\'" + invoiceDate.ToString("yyyy:MM:dd hh:mm:ss") + "\', "  
    + bookFee + ", " + adminFee + ", " + totalFee + ", " + customerID +  ");";
    + "select last_insert_id();"

int id = Convert.ToInt32(comm.ExecuteScalar());

Edit: As duffymo mentioned, you really would be well served using parameterized queries like this.

Edit: Until you switch over to a parameterized version, you might find peace with string.Format:

comm.CommandText = string.Format("{0} '{1}', {2}, {3}, {4}, {5}); select last_insert_id();",
  insertInvoice, invoiceDate.ToString(...), bookFee, adminFee, totalFee, customerID);

Michael Haren 2009-01-02 02:48:54

Oh, and thanks for the link, I will put it to use.

Elie 2009-01-02 03:07:28

I'd try the query without it. Are the records actually being inserted?

Michael Haren 2009-01-02 03:10:04

yes, the records are getting inserted.

Elie 2009-01-02 03:23:14

OK, how about "SELECT last_insert_id();" at the end?

Michael Haren 2009-01-02 03:26:21

Answer 2

A:

It bothers me to see anybody taking a Date and storing it in a database as a String. Why not have the column type reflect reality?

I'm also surprised to see a SQL query being built up using string concatenation. I'm a Java developer, and I don't know C# at all, but I'd wonder if there wasn't a binding mechanism along the lines of java.sql.PreparedStatement somewhere in the library? It's recommended for guarding against SQL injection attacks. Another benefit is possible performance benefits, because the SQL can be parsed, verified, cached once, and reused.

duffymo 2009-01-02 02:55:20

OP might be using a date column in the DB--we can't see that part. I agree that you should use parameterized queries, though. Thankfully it doesn't look like you are inserting any text so strictly speaking you're probably safe on this one (though performance could be better).

Michael Haren 2009-01-02 02:57:56

column is actually a date, but if I try inserting the date object directly, I had issues with it resetting the date to a set of 0s. I'm new to C#, but I agree with you, there likely is a version of PreparedStatement for C#, and I will change that.

Elie 2009-01-02 02:59:49

If the column is indeed a date, what's that "toString" call with the formatting pattern doing in the code?

duffymo 2009-01-02 13:52:32

Answer 3

A:

Actually, the ExecuteScalar method returns the first column of the first row of the DataSet being returned. In your case, you're only doing an Insert, you're not actually querying any data. You need to query the scope_identity() after you're insert (that's the syntax for SQL Server) and then you'll have your answer. See here:

Linkage

EDIT: As Michael Haren pointed out, you mentioned in your tag you're using MySql, use last_insert_id(); instead of scope_identity();

BFree 2009-01-02 03:11:29

My answer includes the scope_identity version for Mysql, as per the tags.

Michael Haren 2009-01-02 03:14:56

Oh, my mistake, I didn't notice the MySql tag. I'll edit my post.

BFree 2009-01-02 03:16:12

No problem--i miss them often enough myself.

Michael Haren 2009-01-02 03:17:14

ansaurus

tags:

views:

answers:

Get the id of inserted row using C#

related questions