tags:

views:

234

answers:

3
+2  Q: 

DataContext. Is there a single method where I can add an extra WHERE?

So basically I have an application that works with just one user, but I'd like to make it multi-user. This would involve me logging a user in, and keeping the user ID in session, plus adding a user id column to my database tables. no biggy.

I'd like to change my dbml, or use it's partial, so that any query I throw through it also gets 

.WHERE(user=>user.id=MYPARAM)

added to it, to return just records for the logged in user.

Is there a quick win to be had? A single place where I can specify this in the .dbml?

+1  A: 

Hi,

I would perhaps create a lambda expression dynamically.

The Where clause takes an object of type Expression>

You can then create an expression using the following.

Expression<Func<User,bool>> func = null;

Then

ParameterExpression xParam = Expression.Parameter(typeof(User), "u");

You would then create an expression for u.id = "test" by using a binary expression.

BinaryExpression uidTest = Expression.Equal(Expression.Property(xParam, "id"),
                                                               Expression.Constant("test");

and then attaching it to the Expression as follows:

func = Expression.Lambda<Func<User, bool>>(uidTest, xParam)

In effect this is building a lambda expression u=> u.id = "test"

The func object can then be used in the .Where as follows: .Where(func)

Obviously, you can dynamically build this to any criteria you need at any time in your application.

Kinlan  2009-04-02 15:54:11
A: 

I am not sure if there is something like that.

If there isn't, you can expose already filtered properties for all the tables in the partial class. You would then receive the user id as a parameter to the data context.

You can combine that with a dynamic expression so that those properties are as simple as possible to define.

eglasius  2009-04-02 16:30:15
A: 

If you are still having trouble implementing this functionality using LINQ to SQL, then you may want to solve the problem at the database level using row level security. Essentially you could wrap each table with a view which implements a dynamic predicate:

WHERE user_id = SUSER_SNAME()

This requires you to dynamically set each user's connection properties before a connection is made to the database (i.e. each database user has a specific SQL username and password). If this not a viable solution, you may want to consider building a framework around the L2S context so that you can inject your own logic. If you would like further inspiration, havea read here: http://www.west-wind.com/WebLog/posts/160237.aspx

Rohland  2009-04-04 22:56:50

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?