Well, 1st up, look at that HORRIBLE, DANGEROUS SQL - please dont do this - please use paramterized SQL
SqlCommand cmd = new SqlCommand(
"select field from table where value = @Value", conn);
SqlParameter param = new SqlParameter();
param.ParameterName = "@Value";
param.Value = *********;
cmd.Parameters.Add(param);
reader = cmd.ExecuteReader();
while(reader.Read())
{
string colValue = reader["Column/Field Name"].ToString();
}
2nd, you should use a 'using block' where possible, and forget the manual
macierzConn.Close();
so :-
using SqlConnection maConn = new SqlConnection("Data Source=xxx;Initial Catalog=xx;User ID=xx;Password=xxx")
{
using SqlCommand cmd = new SqlCommand(
"select field from table where value = @Value", conn);
{
SqlParameter param = new SqlParameter();
param.ParameterName = "@Value";
param.Value = *********;
cmd.Parameters.Add(param);
using SqlDataReader reader = cmd.ExecuteReader()
{
while(reader.Read())
{
string colValue = reader["Column/Field Name"].ToString();
}
}
}
}
That's pretty rough and needs tidying up, but its the 'more correct' way
You havnt actually said what you mean by
Quote:
results in one string.
maybe you use a StringBuilder and add to the string in the while(reader.Read() loop