asp.net - select Query with AND Condition -


i want select user cant . here's query

        sqlcommand mycommand = new sqlcommand("select * users email=" + useremailpass.email + "and password=" + useremailpass.password, conn);         sqldatareader detailsreader = mycommand.executereader();

is query correct or not>? please help

if email , password string fields need encapsulate values used comparison in single quotes, correct way use parameterized query

sqlcommand mycommand = new sqlcommand("select * users " +                             "where email=@mail , password=@pwd" conn); mycommand.parameters.addwithvalue("@mail",useremailpass.email); mycommand.parameters.addwithvalue("@pwd",useremailpass.password); sqldatareader detailsreader = mycommand.executereader();

if use parameterized query avoid sql injection problem , don't have worry encapsulate string values quotes, doubling them if values contain quote, not mention appropriate decimal separator numerics , correct formatting of dates.

an overlooked benefit of parameterized query clear , understandable text of query. pointed out mr tim schmelter below, query has syntax error missing space between , and previous value in clause. kind of errors more difficult if write parameterized query.

give me parameterized query or give me death


Comments

Post a Comment

Popular posts from this blog

jquery - isAjaxRequest always return false -

i got error message 404,'model has not been saved' following code my action controller public function actionextend($id) { $model=$this->loadmodel($id); if(yii::app()->request->isajaxrequest) { $model->todate = date('y-m-d h:i:s a',(strtotime('next month',strtotime(date('y-01-d'))))); if($model->save()) { yii::app()->end(); } else { throw new chttpexception(404,'model has not been saved'); } } } the jquery call $("#buttonextend<?php echo $this->post_row;?>").click(function(e){ $.ajax({ type: "post", url: "<?php echo yii::app()->createurl('post/extend', array('id' => $data['id'])); ?>", }); }); why not ajax call ? thank help i found response, missed } , function ...
Read more

php - SPIP: From Tag directly to an article -

i work spip , plugin called tagsphere works fine tags in spip. have tag groupe put 1 article tag. when click on tag in tagsphere send me before menu can see articles linked tag. want send me directly article without see tag menu before. here code model of thagsphere: <div id="tagsphere-#env{id_article}"> <ul> <boucle_mot(mots){id_groupe ?}> <li>[<a href="#url_mot">(#titre)</a>]</li> </boucle_mot> </ul> </div> anybody idea? if want skip tag page, have link directly article. <b_article> block prevents display tag if no article linked. <div id="tagsphere-#env{id_article}"> <ul> <boucle_mot(mots){id_groupe ?}> <b_article> <li> <a<boucle_article(articles){...
Read more