110,536
社区成员
发帖
与我相关
我的任务
分享
private static void ReadOrderData(string connectionString)
{
string queryString =
"SELECT OrderID, CustomerID FROM dbo.Orders;";
using (SqlConnection connection = new SqlConnection(
connectionString))
{
SqlCommand command = new SqlCommand(
queryString, connection);
connection.Open();
SqlDataReader reader = command.ExecuteReader();
try
{
while (reader.Read())
{
Console.WriteLine(String.Format("{0}, {1}",
reader[0], reader[1]));
}
}
finally
{
// Always call Close when done reading.
reader.Close();
}
}
}
SqlCommand cmd = ...略;
cmd.Parameters.AddRange(new SqlParameter[]{
new System.Data.SqlClient.SqlParameter("@name",SqlDbType.NVarChar)
});
cmd.ExecuteNonQuery();
string password = "";
string name="你要查询的名字";
string sql=select UserPassword from Users where UserName='"+name+"';
string sql="select UserPassword from Users where UserName=@name"
SqlParameter[] sp = new SqlParameter[] {
new SqlParameter("@UserID",SqlDbType.VarChar),
new SqlParameter("@Password",SqlDbType.VarChar)
};
sp[0].Value = UserID;
sp[1].Value = Password;
SqlDataReader dr = SqlHelper.ExecuteReader(SqlHelper.ConnectionStringLocalTransaction, CommandType.Text, sql, sp);
if(dr.Read())
{
....
}