ansaurus

Question

Passing sql statements as strings to mssql with C#?

Answer 1

+1 A:

One uses the SqlCommand class to execute commands (either stored procedures or sql) on SQL Server using ado.net. Tutorials abound.

Ken Browning 2009-03-03 02:21:10

Thanks - I attempted to search for it but was getting a wide range of results, none of which seemed to be what I was looking for. the SqlCommand class certainly narrows down my search. Thanks

Chance 2009-03-03 02:22:31

Answer 2

+1 A:

Here's an example from http://www.csharp-station.com/Tutorials/AdoDotNet/Lesson07.aspx

public void RunStoredProcParams()
    {
     SqlConnection conn = null;
     SqlDataReader rdr  = null;

     // typically obtained from user
     // input, but we take a short cut
     string custId = "FURIB";

     Console.WriteLine("\nCustomer Order History:\n");

     try
     {
      // create and open a connection object
      conn = new 
       SqlConnection("Server=(local);DataBase=Northwind;Integrated Security=SSPI");
      conn.Open();

      // 1.  create a command object identifying
      //     the stored procedure
      SqlCommand cmd  = new SqlCommand(
       "CustOrderHist", conn);

      // 2. set the command object so it knows
      //    to execute a stored procedure
      cmd.CommandType = CommandType.StoredProcedure;

      // 3. add parameter to command, which
      //    will be passed to the stored procedure
      cmd.Parameters.Add(
       new SqlParameter("@CustomerID", custId));

      // execute the command
      rdr = cmd.ExecuteReader();

      // iterate through results, printing each to console
      while (rdr.Read())
      {
       Console.WriteLine(
        "Product: {0,-35} Total: {1,2}",
        rdr["ProductName"],
        rdr["Total"]);
      }
     }
     finally
     {
      if (conn != null)
      {
       conn.Close();
      }
      if (rdr != null)
      {
       rdr.Close();
      }
     } 
    }

John Boker 2009-03-03 02:22:21

Thanks man, thats exactly what I was looking for.

Chance 2009-03-03 02:23:06

An improvement to this example is to use the "using" keyword to automatically dispose of Connection, Command and Reader instances.

Ken Browning 2009-03-03 02:23:26

Also: setting explicit data types for the query parameters.

Joel Coehoorn 2009-03-03 03:06:59

Answer 3

+3 A:

using (SqlConnection conn = new SqlConnection(databaseConnectionString))
{
    using (SqlCommand cmd = conn.CreateCommand())
    {
        cmd.CommandText = "StoredProcedureName";
        cmd.CommandType = CommandType.StoredProcedure;

        cmd.Parameters.AddWithValue("@ID", fileID);

        conn.Open();
        using (SqlDataReader rdr =
                   cmd.ExecuteReader(CommandBehavior.CloseConnection))
        {
            if (rdr.Read())
            {
                // process row from resultset;
            }
        }
    }
}

Mitch Wheat 2009-03-03 02:26:19

Answer 4

+1 A:

3 things no one else has shown you yet:

"Stacking" using statements
Setting an explicit parameter type rather than letting .Net try to pick one for you
"var" keyword

.

string sql = "MyProcedureName";

using (var cn = new SqlConnection(databaseConnectionString))
using (var cmd = new SqlCommand(sql, cn))
{
    cmd.CommandType = CommandType.StoredProcedure;
    cmd.Parameters.Add("@ParameterName", SqlDbType.VarChar, 50)
        .Value = "MyParameterValue";

    conn.Open();
    using (SqlDataReader rdr =
               cmd.ExecuteReader(CommandBehavior.CloseConnection))
    {
        if (rdr.Read())
        {
            // process row from resultset;
        }
    }
}

Joel Coehoorn 2009-03-03 03:13:18

ansaurus

tags:

views:

answers:

Passing sql statements as strings to mssql with C#?

related questions