|
The OP said it wasn't important because it was a test. I was referring in the context of the interview tests my company uses. I would be concerned that a person did not account for SQL Injection attacks when they go through that test.
|
|
|
|
|
falles01 wrote: because they are purely testing me on the ability to search with sql queries
Obviously, they're testing you, not us. What's the point of giving your managers our answers?? Sure, "we" might pass this test for you, but "you'll" fail in the real world when you can't apply the concepts yourself.
|
|
|
|
|
falles01 wrote: why are you all even on the forum. they should have people on who do care
We are here to help when we can. We are not paid to be on these forums.
falles01 wrote: I have got two hours to finish this project and my managers don't care about injection attacks
That is not anyone's problem around here. Maybe you need a new manager.
"Try asking what you want to know, rather than asking a question whose answer you know." - Christian Graus
|
|
|
|
|
Gosh - didn't they even give you a book on SQL ? Have you not had time to read about SQL using google or something ?
I suggested a few days ago that any SQL you write, you should test directly against your database to get the best possible error info. In this case, your SQL is plain wrong. To combine two conditions, use 'and', and to combine two tables, use joins. Something like ( this won't work )
select e.firstname from employees e inner join roles r on e.roleId = r.RoleId where e.FirstName = 'fred' and r.roleId = 4
Not sure if you have a role table, what you need it for, if you're not looking anything up in it. I mean, if you cannot join the two tables, then you can't use them together, and odds are that it's a lookup table for role names, so you can then expect the role id to be in both tables, and you can look it up in the employee table.
Christian Graus - Microsoft MVP - C++
"I am working on a project that will convert a FORTRAN code to corresponding C++ code.I am not aware of FORTRAN syntax" ( spotted in the C++/CLI forum )
|
|
|
|
|
Thank you. I know it sounds like I'm really dumb, but I have researched the Internet and yes I find many sql sites, but I'm not finding an axample that exactly matches my situation. I want to basically get all rows from employees table and one row from role table where the user has made a selection in the employee combobox and/or role combobox. so they might choose Siann Falleti and Business Analayst, the search should return only Siann Falleti's who are also BA's.
I advised them I need more time but they said no..it should only take you half a day. Maybe my brain is just not adequate for this type of thinking thats why I'm slow. 
|
|
|
|
|
Okay I have tried the inner join like this but it keep returning an error that all the rows don't exist in the current context.
string sql = "select employees.Firstname,employees.Lastname,employees.Role, employees.Division,employees.Manager,employees.TechnicalSkills,employees.Applications,Role.Description from employees inner join Role on employees.RoleID = Role.RoleID where employees.employeeID = '" + empNamecomboBox.SelectedValue.ToString() + "' and RoleID = '" + rolecomboBox.SelectedValue.ToString() + "'"; 
|
|
|
|
|
OK - given that your sample SQL returns what is passed in, I assume this is a dummy example. If you want us to help you, you need to tell us the schema of the two tables, and what you hope to pull out of there.
Christian Graus - Microsoft MVP - C++
"I am working on a project that will convert a FORTRAN code to corresponding C++ code.I am not aware of FORTRAN syntax" ( spotted in the C++/CLI forum )
|
|
|
|
|
I have panel(100*100) and picture box(300*300) inside. Picture box is bigger than panel so scrollbars r visible at panel. i set picture box location to -100,-100 .Now i want to change scrollbars location at center, how do?
|
|
|
|
|
SOLVED,
I never see .Verticalscroll.Value before 
|
|
|
|
|
hi,
i want to know how C# pass collection type method......wanna to knw C# code for this!
Public Shared Function GetQuestionIDsForSurvey(ByVal id As Integer) As Collection<br />
Try<br />
Dim dsQuestions As DataSet = GetQuestionsForSurvey(id)
Dim dtQuestions As DataTable = dsQuestions.Tables(0)<br />
Dim mQuestionCollection As New Collection<br />
For Each dr As DataRow In dtQuestions.Rows<br />
mQuestionCollection.Add(dr.Item("ID").ToString())<br />
Next<br />
Return mQuestionCollection<br />
Catch ex As Exception<br />
Throw<br />
End Try<br />
End Function
Thanks in Advance!
|
|
|
|
|
I don't understand what you want to know exactly, but here's the C# version of your code snippet generated with http://labs.developerfusion.co.uk/convert/vb-to-csharp.aspx[^]:
public static Collection GetQuestionIDsForSurvey(int id)
{
try {
DataSet dsQuestions = GetQuestionsForSurvey(id);
DataTable dtQuestions = dsQuestions.Tables(0);
Collection mQuestionCollection = new Collection();
foreach (DataRow dr in dtQuestions.Rows) {
mQuestionCollection.Add(dr.Item("ID").ToString());
}
return mQuestionCollection;
}
catch (Exception ex) {
throw;
}
}
|
|
|
|
|
hi chopeen,
Thnkz lot for ur effort! but there were errors in ur code also like,
Tables(0),Item("ID")......so on..!
hey actually i want to know which namespace provide Collection class or is it the actual usual way using that something like Collection<t> ,,any Enumarable type..........
the thing is i am not having idea off using these techniques,...
plz give some resources also.........!
|
|
|
|
|
|
You're right. I did not check the code and I forgot that this converter cannot tell a method call from an indexer - it should be Tables[0], Item["ID"], etc.
|
|
|
|
|
The Collection class is in the Microsoft.VisualBasic namespace. It's an untyped list, pretty much like ArrayList.
Use List<string> instead.
If you absolutely have to use the Collection class, add a reference to Microsoft.VisualBasic.dll, and use Microsoft.VisualBasic.Collection.
---
single minded; short sighted; long gone;
|
|
|
|
|
Hi Guffa,
Thankz lot!wow, thats was de thing i want.......Excellant!
thankz everybuddy who tried to solve my problem! Good Luck!
Have a nice Day!
|
|
|
|
|
I have two questions I hope you can help with.
How can I display my combobox display default to blank when I have a bound data source. (I need it that way).
I have tried combobox.selectedIndex = -1 but doesn't work.
Have also added the column of blank manually like this
DataRow newemployeesRow = dataSet1.Tables["employees"].NewRow();
newemployeesRow["Fullname"] = "";
newemployeesRow["Fullname"] = -1;
dataSet1.Tables["employees"].Rows.Add(newemployeesRow);
It shows a column of -1 in my combobox but it is not set to the default though. the user has to select it. If I remove the combobox.selectedIndex = -1 it displays blank which I want, but it's still not the default.
Can someone please help.
|
|
|
|
|
newemployeesRow["Fullname"] = "";
newemployeesRow["Fullname"] = -1;
dataSet1.Tables["employees"].Rows.Add(newemployeesRow);
after this try by using this code.
dataSet1.AcceptChanges();
VanithaVasu
|
|
|
|
|
This unfortunately does the same thing as before. It displays -1 in the list instead of a blank, and isn't set as the default anyway.
ahhhh
|
|
|
|
|
hii
at starting u asked that u wanna have blank in the combox fro default. whaen u remove combobox.selectedIndex=-1 from code u get that then what do u mean by it's not default!
please clear the point
Thanks
Avinob Roy
|
|
|
|
|
I worked it out thanks. 
|
|
|
|
|
Hi
I would like to know How to Embedd Winform Tracker control in Infragistics Ultragrid?
Could you please provide source code or some hint on smae. Many thanks in advance.
|
|
|
|
|
in vb i knew Isdate funciton to check the date is valid or not.
What is the syntax in c#
Sonia Gupta
Soniagupta1@yahoo.co.in
Yahoo messengerId-soniagupta1
Love is Friendship and Friendship is Love....
|
|
|
|
|
DateTime.TryParse ? What is the date coming in as that you need to check, a string ?
Christian Graus - Microsoft MVP - C++
"I am working on a project that will convert a FORTRAN code to corresponding C++ code.I am not aware of FORTRAN syntax" ( spotted in the C++/CLI forum )
|
|
|
|
|
The textbox contains date.So wanted to check , whether the date is valid or not.
Sonia Gupta
Soniagupta1@yahoo.co.in
Yahoo messengerId-soniagupta1
Love is Friendship and Friendship is Love....
|
|
|
|
General 
News 
Suggestion 
Question 
Bug 
Answer 
Joke 
Praise 
Rant 
Admin 
Submit an article or tip
