existing data

Question

airesh 0 Newbie Poster

13 Years Ago

guys,

how to check data if it is already in the database?

i am using sql server..

thanks

vb.net

6 Contributors
8 Replies
93 Views
1 Week Discussion Span
Latest Post 13 Years Ago Latest Post by kvprajapati

All 8 Replies

Pgmer 50 Master Poster

13 Years Ago

Hi you can use IF EXISTS(Select * from table where condition is)

kvprajapati 1,826 Posting Genius

13 Years Ago

Hi guys!

If you are not aware of "SQL Injection" please read this article or just google it.

Do not use SQL query by concatenating hard-coded strings because this way malicious code is inserted into sql strings.

Do use Type-Safe SQL Parameters.

Dim Cnn as New SqlConnection()
Dim Cmd as New SqlCommand()

Cnn.ConnectionString="Connection_string"

Cmd.CommandText="SELECT field1 from tableName  WHERE field1 = @para1"
Cmd.Connection=Cnn
Cmd.Parameters.AddWithValue("@para1",TextBox1.Text)

Dim isFound as boolean=false

Dim reader as SqlDataReader

Cnn.Open()
reader=Cmd.ExecuteReader()
If reader.Read() Then
    isFound=true
End If
reader.Close()
Cnn.Close()

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

airesh 0 Newbie Poster · Answer 1 · 2011-02-01T10:55:56+00:00

can u give me a full example?..im really a noob..:)

Pgmer 50 Master Poster Featured Poster · Answer 2 · 2011-02-02T18:01:28+00:00

what exactly you want to search for? can you please give me the table and column name? so that i can write query

bLuEmEzzy 0 Junior Poster in Training · Answer 3 · 2011-02-09T12:24:13+00:00

what i did, is first i search the record on the database....
then use sqlCommand.ExecuteScalar()

SELECT field1 from tableName  WHERE field1 = '" & txtbox1.text & "'

Dim ReturnValue as  integer
ReturnValue = SqlCommand.executeScalar

if executeScalar returns 1 then its existing....

DONPAWPAW 0 Newbie Poster · Answer 4 · 2011-02-10T20:02:43+00:00

'try this 
'open th connection to the database
'cmd is the variable of the sqlcommand
'cnn is the variable of sqlconnection

cnn.open
Dim ReturnValue as  string
cmd=new sqlcommand("SELECT field1 from tableName  WHERE field1 = '" & txtbox1.text & "'",cnn)
ReturnValue =cmd.executeScalar
if ReturnValue  <> "" then
msgbox("Record Already Exist"):exit sub
end if
cnn.close

jlego 15 Posting Pro · Answer 5 · 2011-02-12T09:33:57+00:00

Hi guys!
If you are not aware of "SQL Injection" please read this article or just google it.
Do not use SQL query by concatenating hard-coded strings because this way malicious code is inserted into sql strings.
Do use Type-Safe SQL Parameters.
Dim Cnn as New SqlConnection()
Dim Cmd as New SqlCommand()

Cnn.ConnectionString="Connection_string"

Cmd.CommandText="SELECT field1 from tableName  WHERE field1 = @para1"
Cmd.Connection=Cnn
Cmd.Parameters.AddWithValue("@para1",TextBox1.Text)

Dim isFound as boolean=false

Dim reader as SqlDataReader

Cnn.Open()
reader=Cmd.ExecuteReader()
If reader.Read() Then
    isFound=true
End If
reader.Close()
Cnn.Close()

adatapost, i have a question for you about paramiterized queries.
do you mind if i PM you a question, or if i start a thread would u reply to it ?

kvprajapati 1,826 Posting Genius Team Colleague · Answer 6 · 2011-02-12T09:37:46+00:00

kvprajapati 1,826 Posting Genius

13 Years Ago

Hi jlego,

Please start a new thread.

existing data

Recommended Answers Collapse Answers

All 8 Replies

Recommended Answers