Improve my code thanks

Question

Farhan_B 0 Junior Poster in Training

12 Years Ago

"UPDATE cg_security_user_right  SET user_id, right_id ,enable_flag  WHERE LastName= " & tuser.Text & " right_id = " & tright.Text & " enable_flag = " & CheckBox1.Enabled & ""

How can i improve this code thanks in advance

vb.net

7 Contributors
31 Replies
356 Views
1 Week Discussion Span
Latest Post 12 Years Ago Latest Post by cyberdaemon

Jx_Man 987 Nearly a Senior Poster

12 Years Ago

How can i improve this code thanks in advance

Your sql statement is not right

UPDATE table_name
SET column1=value, column2=value2,...
WHERE some_column=some_value

Edited 12 Years Ago by Jx_Man because: n/a

M.Waqas Aslam commented: nice work +5

M.Waqas Aslam 67 Posting Pro in Training

12 Years Ago

hello !
check this

"UPDATE cg_security_user_right  SET user_id=@user_id, right_id=@right_id ,enable_flag=@enable_flag  WHERE LastName= " & tuser.Text & " right_id = " & tright.Text & " enable_flag = " & CheckBox1.Enabled & ""
'@name they are the variables and you can also replace them with you textboxes or using command parameters to give values.

Reagrds

M.Waqas Aslam 67 Posting Pro in Training

12 Years Ago

yes farhan , these are variables , you can replace with them with your controls like this

username = @username 
'--------------
username = txtusername.text

i can better help you if you provide some more code :)

Mitja Bonca 557 Nearly a Posting Maven

12 Years Ago

Then do:

Dim query As String = "UPDATE cg_security_user_right  SET user_id, right_id ,enable_flag  WHERE LastName = @param1 AND right_id = @param2 AND enable_flag = @param3"
Dim conn As New SqlConnection("connString")
Dim cmd As SqlComamnd = New SqlCommand(query, conn)
cmd.Parameters.Add("@param1", SqlDbType.VarChar, 50).Value = tuser.Text
cmd.Parameters.Add("@param2", SqlDbType.Int).Value = Integer.Parse(tright.Text)
'check if its not an integer, if its string, do as in line before
cmd.Parameters.Add("@param3", SqlDbType.Bit).Value = If(CheckBox1.Checked, 1, 0)
cmd.ExecuteNonQuery()

Mitja Bonca 557 Nearly a Posting Maven

12 Years Ago

Who voted -1 for me and why?
damn thx, really appreciate it.

About your error: Check the TYPE of your column before we continue. Is it a bit type, is it a varchar, or what?
No need to vote -1, if the error is yours!!!

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

Farhan_B 0 Junior Poster in Training · Answer 1 · 2012-03-06T20:42:07+00:00

hey i just got this error

"Must declare the scalar variable "@user_id"."

Farhan_B 0 Junior Poster in Training · Answer 2 · 2012-03-06T20:52:01+00:00

Dim scon As New SqlConnection
        Dim cmd As New SqlCommand

        scon.ConnectionString = ""
        scon.Open() 'open the connection to the database

        cmd.Connection = scon
        cmd.CommandText = " INSERT INTO [cg_security_right] (right_name)VALUES('" & txtRight.Text & "')"

        cmd.ExecuteNonQuery()

        Try
        Catch ex As Exception
            MessageBox.Show("Error while inserting user.")

        End Try
        Me.Cg_security_userTableAdapter.Fill(Me.DataSet.cg_security_user)

Thanks mate really appreciate help

M.Waqas Aslam 67 Posting Pro in Training Featured Poster · Answer 3 · 2012-03-06T20:57:06+00:00

M.Waqas Aslam 67 Posting Pro in Training

12 Years Ago

you always welcome :),bro

M.Waqas Aslam 67 Posting Pro in Training Featured Poster · Answer 4 · 2012-03-06T21:00:53+00:00

thanks for the reputation :P , i was sad because some one vote me down twice :P thanks

Farhan_B 0 Junior Poster in Training · Answer 5 · 2012-03-06T21:02:09+00:00

code u send me the modified version of code please

Farhan_B 0 Junior Poster in Training · Answer 6 · 2012-03-06T21:10:27+00:00

sorry i just realised i given the wrong code

Dim scon As New SqlConnection
        Dim cmd As New SqlCommand

        scon.ConnectionString = ""
        scon.Open() 'open the connection to the database

        cmd.Connection = scon


        cmd.CommandText = "UPDATE cg_security_user_right  SET user_id=@user_id, right_id=@right_id ,enable_flag=@enable_flag  WHERE user_id= " & tuser.Text & " right_id = " & tright.Text & " enable_flag = " & CheckBox1.Enabled & ""
        cmd.ExecuteNonQuery()

        cmd.Dispose() 'Performs application-defined tasks associated with freeing, releasing, or resetting unmanaged resources
        MsgBox("Update Sucessfull")

        Try
        Catch ex As Exception
            MessageBox.Show("Error while updating  record.")

M.Waqas Aslam 67 Posting Pro in Training Featured Poster · Answer 7 · 2012-03-06T21:22:22+00:00

please use this code :)

Try
            Dim con As New SqlConnection("conn-string")
            Dim cmd As New SqlCommand
            con.Open()
            cmd.Connection = con
cmd.commandtext = 
"UPDATE cg_security_user_right  SET user_id=@user_id, right_id=@right_id ,enable_flag=@enable_flag  WHERE user_id= " & tuser.Text & " right_id = " & tright.Text & " enable_flag = " & CheckBox1.Enabled & ""
            cmd.Parameters.AddWithValue("@user_id", txtuserid.text) 'user val(txtuserid.text) if userid is integer
            cmd.Parameters.AddWithValue("@right_id", txtrightid.text) 'user val(txtrightid.text) if userid is integer
            cmd.Parameters.AddWithValue("@enable_flag", checkbox1.checked) 'i assume that you have a chk box 
            cmd.ExecuteNonQuery()
            con.Close()
        Catch ex As Exception
            MsgBox(Err.Description)
        End Try

Best Regards

Farhan_B 0 Junior Poster in Training · Answer 8 · 2012-03-06T21:27:12+00:00

brother i have a small error with this code

it says " Incorrect syntax near 'right_id'."

M.Waqas Aslam 67 Posting Pro in Training Featured Poster · Answer 9 · 2012-03-06T21:31:28+00:00

yes , sorry i just not read your code carefully , use this code

Try
            Dim con As New SqlConnection("conn-string")
            Dim cmd As New SqlCommand
            con.Open()
            cmd.Connection = con
cmd.commandtext = 
"UPDATE cg_security_user_right  SET user_id=@user_id, right_id=@right_id ,enable_flag=@enable_flag  WHERE user_id= " & tuser.Text & "and right_id = " & tright.Text & " and enable_flag = " & CheckBox1.Enabled & ""
            cmd.Parameters.AddWithValue("@user_id", txtuserid.text) 'user val(txtuserid.text) if userid is integer
            cmd.Parameters.AddWithValue("@right_id", txtrightid.text) 'user val(txtrightid.text) if userid is integer
            cmd.Parameters.AddWithValue("@enable_flag", checkbox1.checked) 'i assume that you have a chk box 
            cmd.ExecuteNonQuery()
            con.Close()
        Catch ex As Exception
            MsgBox(Err.Description)
        End Try

Farhan_B 0 Junior Poster in Training · Answer 10 · 2012-03-06T21:34:27+00:00

That has solved the syntax error pra but now it saying

"Invalid column name 'True'."

so sorry about this

Mitja Bonca 557 Nearly a Posting Maven · Answer 11 · 2012-03-06T21:41:05+00:00

Use parametreized query:

Dim query As String = "UPDATE cg_security_user_right  SET user_id, right_id ,enable_flag  WHERE LastName = @param1 AND right_id = @param2 AND enable_flag = @param3"
Dim conn As New SqlConnection("connString")
Dim cmd As SqlComamnd = New SqlCommand(query, conn)
cmd.Parameters.Add("@param1", SqlDbType.VarChar, 50).Value = tuser.Text
cmd.Parameters.Add("@param2", SqlDbType.Int).Value = Integer.Parse(tright.Text)
'check if its not an integer, if its string, do as in line before
cmd.Parameters.Add("@param3", SqlDbType.[Boolean]).Value = CheckBox1.Checked
'?? you want to use TRUE/FALSE - checked/unchecked?
cmd.ExecuteNonQuery()

M.Waqas Aslam 67 Posting Pro in Training Featured Poster · Answer 12 · 2012-03-06T21:42:12+00:00

can you please tell me about this field enable_flag what is this , what is the datatype of this field ?

M.Waqas Aslam 67 Posting Pro in Training Featured Poster · Answer 13 · 2012-03-06T21:43:50+00:00

@Mitja Bonca sir, with due respect you are giving wrong code , please check again ,

M.Waqas Aslam 67 Posting Pro in Training Featured Poster · Answer 14 · 2012-03-06T21:45:20+00:00

farhan please use this code , as i assume that enable_flag is bit in your db .

Try
            Dim con As New SqlConnection("conn-string")
            Dim cmd As New SqlCommand
            con.Open()
            cmd.Connection = con
cmd.commandtext = 
"UPDATE cg_security_user_right  SET user_id=@user_id, right_id=@right_id ,enable_flag=@enable_flag  WHERE user_id= " & tuser.Text & "and right_id = " & tright.Text & " and enable_flag = " & CheckBox1.checked & ""
            cmd.Parameters.AddWithValue("@user_id", txtuserid.text) 'user val(txtuserid.text) if userid is integer
            cmd.Parameters.AddWithValue("@right_id", txtrightid.text) 'user val(txtrightid.text) if userid is integer
            cmd.Parameters.AddWithValue("@enable_flag", checkbox1.checked) 'i assume that you have a chk box 
            cmd.ExecuteNonQuery()
            con.Close()
        Catch ex As Exception
            MsgBox(Err.Description)
        End Try

hope this will works fine

Farhan_B 0 Junior Poster in Training · Answer 15 · 2012-03-06T21:45:53+00:00

the enable _flag is like a yes and no for the users waqas bhai

Mitja Bonca 557 Nearly a Posting Maven · Answer 16 · 2012-03-06T21:49:27+00:00

and its y type of boolean? But in your database is type of what? bit? if so, then you need 1 or 0.

Farhan_B 0 Junior Poster in Training · Answer 17 · 2012-03-06T21:50:11+00:00

i still gave the problem
the error says

"Invalid column name 'True'."

Farhan_B 0 Junior Poster in Training · Answer 18 · 2012-03-06T21:51:36+00:00

Farhan_B 0 Junior Poster in Training

12 Years Ago

yes in my bd the results show as 1 and 0

M.Waqas Aslam 67 Posting Pro in Training Featured Poster · Answer 19 · 2012-03-06T21:55:16+00:00

well , please check your database column names and columns names in your code , and match them , i hope prob will solved , please check them carefully .

Regards

Farhan_B 0 Junior Poster in Training · Answer 20 · 2012-03-06T22:02:13+00:00

the true error has gone now it become false

"Invalid column name 'False'"

sadiaali 0 Newbie Poster Banned · Answer 21 · 2012-03-07T12:28:19+00:00

me want to learn developing a site but my logic is too poor in this field how can me improve this,,,,,,,,,

M.Waqas Aslam 67 Posting Pro in Training Featured Poster · Answer 22 · 2012-03-07T12:54:45+00:00

please start new thread sadia , in it discussion forum ,http://www.daniweb.com/community-center/it-professionals-lounge/5 here is a link of it , post your question there ,hope so you will find some helpful tips.

Regards

Farhan_B 0 Junior Poster in Training · Answer 23 · 2012-03-07T20:04:08+00:00

can anyone spot the syntax error
iv been tryng to find it and i am not having any luck thanks

it says Incorrect syntax near ' & tuser.Text & '."
"

cmd.CommandText = "INSERT INTO cg_security_user_right(user_id, right_id, enable_flag)VALUES "" & tuser.Text & "" & right_id.Text & "" & CheckBox2.Enabled & """

Farhan_B 0 Junior Poster in Training · Answer 24 · 2012-03-08T00:11:27+00:00

i am having an error which says
"The error i get is : "An expression of non-boolean type specified in a context where a condition is expected, near '_id'" "
my code is

cmd.Connection = con
        cmd.CommandText =
"UPDATE cg_security_user_right  SET user_id=@user_id, user_name=@user_name, right_name=@right_name,enable_flag=@enable_flag  WHERE  user _id " & Val(Cg_security_user_rightDataGridView.Item(0, Cg_security_user_rightDataGridView.CurrentRow.Index).Value.ToString) & " user _name " & Val(Cg_security_user_rightDataGridView.Item(1, Cg_security_user_rightDataGridView.CurrentRow.Index).Value.ToString) & "  right_name = " & Val(Cg_security_user_rightDataGridView.Item(2, Cg_security_user_rightDataGridView.CurrentRow.Index).Value.ToString) & " and enable_flag = '" & Cg_security_user_rightDataGridView.Item(3, Cg_security_user_rightDataGridView.CurrentRow.Index).Value.ToString & "'"

        cmd.Parameters.AddWithValue("@user_id", TextBox3.Text)
        cmd.Parameters.AddWithValue("@user_name", tuser.Text) 'user val(txtuserid.text) if userid is integer
        cmd.Parameters.AddWithValue("@right_name", tright.Text) 'user val(txtrightid.text) if userid is integer
        cmd.Parameters.AddWithValue("@enable_flag", CheckBox1.Checked)

why is it happening