sql server - Best practice for dynamically building variable length IN SQL clause in C# -

-

Recently I found myself in C #, some SQL is doing. It really is not my area of ​​expertise. Some code is written which looks very ugly, and failed to find a better solution. Here, many answers present SQL injection risks, and essentially I am doing one or the other in the same way. The situation is, I have a form that a user provides a list in a form of store ID. When they click on a button, CRV export will be generated using those stores which provide the exclusion criterion for the query. The way in which I have completed it is setting my SQL string as a constant, then using a string builder in @ x in the IN clause Dynamically attach. This code looks pretty bad, but uses a quick snippet to better explain. For example, the SQL query is that 

  private readonly string _SELECT_UNEXPECTED_TOTES = "select table where the table is stored.";

I do the following (store is an array of strings, SB string builder is): 

  // Get enough space for all stores Var sqlParams = New SQLParamator [Store. Length]; Conn.Open (); // Attach our query sb.Append (_SELECT_UNEXPORTED_TOTES); // open these lists sb.Append ("(" "); // list int int = 0; foreach (string in stores) {sb.Append (" @ "); sb.Append (I); Sb. Append (","); I ++;} // trailing simulation, sb.Length - = 1; sb.Append (")"); // actual parameter I = 0; foreign currency (string in stores) {sqlParams [I] = new escapemater ("@" + I, Skldb type variant); sql param [ii] value = s; i ++;}

later in code I am using these SQL parameters in a SqlStatement object. Is there a better way to accomplish the net? ? I do not know a lot about .NET SQL objects, and for everyone I know that this solution can be screwed as a simple string ... any advice is welcome.

I do not believe there is an easy way to do this with ADO.NET, but as some other users have access to the Entity Framework Mentioned, make it quite cleaner Received and it is not really difficult to set up, especially on a small app. This will convert your above mentioned code to: 

  var data = context. TABLE.Where (t = & gt; Store Canton (T. Store)). ToList ();

Comments

Post a Comment

Popular posts from this blog

apache - 504 Gateway Time-out The server didn't respond in time. How to fix it? -

-
Using a form submission on an embedded iframe , the customer downloads a compressed log file Requested. The request was sent to the server, which is the compressed log files, perform some database operations and returns a compressed file. After just 2 minutes, 504 gateway time-out server did not respond timely message on browser net panel How to fix this error? The log files were taking a long time to compress, and timeout was set to 2min The error was fixed by extending the file file: # # timeout: The number of seconds before getting the time out. # # # Timeout 120 timeout 600
Read more

c# - .net WebSocket: CloseOutputAsync vs CloseAsync -

-
We have a working ASP.NET Web API REST service, which is one of the methods of our controller, HTTPTTEX. .) Socket handler code looks something like this ... Public async task socket handler (AspNetWebSocketContext context) {_webSocket = context.WebSocket; ... while (! Cts.IsCancellationRequested) {WebSocketReceiveResult Results = _webSocket.ReceiveAsync (Input Segment, cts.Token) .Result; WebSocketsStateCollusocketState = _webSocket.State; If (result.MessageType == WebSocketMessageType.Close || currentSocketState == WebSocketState.CloseReceived) {// What should I use. CloseAysnc () or. CloseOutputAsync ()? _webSocket.CloseOutputAsync (WebSocketCloseStatus.NormalClosure, "Client Requested", cts.Token). Wait (); } If (currentSocketState == WebSocketState.Open) {...}}} .What is the difference between .CooseAsync () and CloseOutputAysnc ()? I tried both of them and they both seemed to work fine but some difference should be the same they both describe very similar to...
Read more

c++ - How to properly scale qgroupbox title with stylesheet for high resolution display? -

-
I am trying to apply a stylesheet for QGroupBox (QT4.8), which works on the normal screen ( 96 dpi) high resolution screen (Yoga 2 Pro, 3200x1800, 275 dpi, windows 8.1). The following style looks good on the 275 dpi screen, but the top margins on a regular 96 dpi screen are far too big. QGroupBox {border: 1px solid red; Range radius: 7px; Margin-top: 12x; } QGroupBox :: Title {subcontrol-origin: margin; Subcontrol-position: left above; Padding-left: 10px; Padding-right: 10px; } Changing the top-margin has an effect, but I did not get a proper setting which works on both screens. If I shorten the value, the content of the group box overlaps with the title on 275 dpi screen. I was also playing with units "East", "PX", "MX", "PT". Reading the document I would have guessed, "2 X" was the correct solution, which should be scaled with different screen resolutions. Without the stylesheet, the groupbox works well on both screens. ...
Read more