在.NET中如何执行带参数的sql语句
我是这样写的
private static string add_book = "insert into wb_addressbook(tname,phone,ttypeid,userid,tid) values(:tname,:phone,:ttypeid,:userid,wb_tid.nextval)";
OleDbConnection con = new OleDbConnection(ConfigurationManager.AppSettings["conString"].ToString());
OleDbCommand cmd = new OleDbCommand(add_book, con);
cmd.Parameters.Add("tname", OleDbType.VarChar, 30);
cmd.Parameters["tname"].Value = this.TextBox1.Text;
cmd.Parameters.Add("phone", OleDbType.VarChar, 20);
cmd.Parameters["phone"].Value = this.TextBox2.Text;
cmd.Parameters.Add("ttypeid", OleDbType.Integer);
cmd.Parameters["ttypeid"].Value = Convert.ToInt32(this.TextBox3.Text);
cmd.Parameters.Add("userid", OleDbType.Integer);
cmd.Parameters["userid"].Value = Convert.ToInt32(this.TextBox4.Text);
try
{
con.Open();
cmd.ExecuteNonQuery();
Response.Write("<script>alert('操作成功')</script>");
}
catch
{
Response.Write("<script>alert('操作失败')</script>");
}
有什么错误吗?该怎么写才对?