.ExecuteNonQuery() sql asp.net error -


this first time working sql , asp.net. working on few examples ensure have basics need. walking though tutorial , should working fine, getting .executenonquery() error. sqlexception unhandled user code // incorrect syntax near keyword 'table'.

if have pointers, let me know. worked tutorial twice, i'm sure i'm doing wrong here. -thanks

.cs code:

using system; using system.collections.generic; using system.linq; using system.web; using system.web.ui; using system.web.ui.webcontrols; using system.data.sqlclient; using system.configuration;  namespace website { public partial class _default : system.web.ui.page {     sqlconnection con = new sqlconnection(configurationmanager.connectionstrings["connectionstring"].connectionstring);      protected void page_load(object sender, eventargs e)     {         con.open();     }      protected void button1_click(object sender, eventargs e)     {         sqlcommand cmd = new sqlcommand("insert table values('" + txtfname.text + "','" + txtlname.text + "','" + txtpnumber.text + "')", con);         cmd.executenonquery();         con.close();         label1.visible = true;         label1.text = "your data has been submitted";         txtpnumber.text = "";         txtlname.text = "";         txtfname.text = "";     }   } }

.aspx file:

<form id="form1" runat="server"> <div class="auto-style1">      <strong>insert data database<br />     <br />     </strong>  </div>     <table align="center" class="auto-style2">         <tr>             <td class="auto-style3">first name:</td>             <td class="auto-style4">                 <asp:textbox id="txtfname" runat="server" width="250px"></asp:textbox>             </td>         </tr>         <tr>             <td class="auto-style3">last name:</td>             <td class="auto-style4">                 <asp:textbox id="txtlname" runat="server" width="250px"></asp:textbox>             </td>         </tr>         <tr>             <td class="auto-style3">phone number:</td>             <td class="auto-style4">                 <asp:textbox id="txtpnumber" runat="server" width="250px"></asp:textbox>             </td>         </tr>         <tr>             <td class="auto-style3">&nbsp;</td>             <td class="auto-style4">                 <asp:button id="button1" runat="server" onclick="button1_click" text="submit" width="150px" />             </td>         </tr>     </table>     <br />     <br />     <asp:label id="label1" runat="server" forecolor="#663300" style="text-align: center" visible="false"></asp:label>     <br />     <asp:sqldatasource id="sqldatasource1" runat="server" connectionstring="<%$ connectionstrings:connectionstring %>" selectcommand="select * [table]"></asp:sqldatasource> </form>

sql database:

create table [dbo].[table] ( [id]      int          identity (1, 1) not null, [fname]   varchar (50) not null, [lname]   varchar (50) not null, [pnumber] varchar (50) not null, primary key clustered ([id] asc) );

usually error message caused single quote present in input textboxes or use of reserved keyword. both problems present in query. table word reserved keyword sql server , should encapsulate square brackets, while possible presence of single quote in input text correct approach use parameterized query this

sqlcommand cmd = new sqlcommand("insert [table] values(@fnam, @lnam, @pnum)", con); cmd.parameters.addwithvalue("@fnam", txtfname.text ); cmd.parameters.addwithvalue("@lnam", txtlname.text ); cmd.parameters.addwithvalue("@pnum", txtpnumber.text); cmd.executenonquery();

with approach shift work parse input text framework code , avoid problems parsing text , sql injection

also, suggest not use global variable keep sqlconnection reference. expensive resource and, if forget close , dispose it, have significant impact on performance , stability of application.
kind of situations using statement need

using(sqlconnection con = new sqlconnection(configurationmanager.connectionstrings                              ["connectionstring"].connectionstring)); {     con.open();     sqlcommand cmd = new sqlcommand("insert [table] values(@fnam, @lnam, @pnum)", con);     cmd.parameters.addwithvalue("@fnam", txtfname.text );     cmd.parameters.addwithvalue("@lnam", txtlname.text );     cmd.parameters.addwithvalue("@pnum", txtpnumber.text);     cmd.executenonquery(); }

of course remove global variable , open in page_load


Comments

Post a Comment

Popular posts from this blog

SPSS keyboard combination alters encoding -

my question not have programming practical issue on spss. accident keyword combination cannot remember because did not intend press changed encoding in spss , text in data in different language english shown small boxes. nevertheless, when kind of analysis performed different language text shown in output. does know reason? tried change encoding did not produce result. first, @ edit > options , see whether setting unicode or locale. might fix it. if have text in multiple languages, want unicode. otherwise, may have specific locale set wrong. can change set locale, need know locale want use.
Read more

Add new record to the table by click on the button in Microsoft Access -

in ms access form want implement separate button, adds new record table. in order added button , attached button event: private sub btnaddrec_click() refresh codecontextobject on error resume next docmd.gotorecord , , acnewrec if err.number <> 0 btnaddrec.enabled = false end if end end sub everything ok when open window , click btnaddrec button, problem when first of perform navigation through existed records , after click on button. got runtime error: 2105: «you can't go specified record. may @ end of recordset» . how solve issue, need have ability add new record on click on specific button, no matter, have walked or not walked through records before. thanks. i created simple form field call description (and autonumber) , created button code follows click event. filled number of records , navigated through them, clicked addnewrec button. form navigated new record without issues. able click addnewrec button directly after
Read more

javascript - jQuery .height() return 0 when visible but non-0 when hidden -

i have problem here right opposite others: in jquery cannot height of element when it's visible, when hidden. have html code: <div id="filtering-filter-holder"> <div id="filtering-filter-holder-inner"></div> </div> basic css it: #filtering-filter-holder { display: none; position: absolute; width: 420px; min-height: 100px; padding: 5px 5px 5px 5px; background-color: #ffffff; border: 1px solid #164372; } and finally, js in document.ready(): $('div.filtering-filter-headline').mouseenter(function() { var el = $(this).parent().find('div.filtering-filter-content'); if ($('div#filtering-filter-holder').is(':visible')) { $('div#filtering-filter-holder-inner').stop(true, true).fadeout(300, function() { $('div#filtering-filter-holder-inner').html($(el).html()); var height = $('div#filtering-filter-holder-inner&#
Read more