I am trying to delete two items in two different tables but it is not working.
my code:
protected void btnRemove(object sender, EventArgs e)
{
conn.Open();
SqlCommand cmd = new SqlCommand("delete from Car where CarID=" + lstCar.SelectedValue, conn);
SqlCommand cmd1 = new SqlCommand("delete from Orders where OrderID=" + lstOrders.SelectedValue, conn);
cmd.ExecuteNonQueryAsync();
cmd1.ExecuteNonQueryAsync();
conn.Close();
}
Use parameters and DO NOT concatenate values into your SQL, Try something like.....
protected void btnRemove(object sender, EventArgs e)
{
conn.Open();
SqlCommand cmd = new SqlCommand("delete from Car where CarID= @CarID", conn);
cmd.Parameters.AddWithValue("@CarID", lstCar.SelectedValue);
SqlCommand cmd1 = new SqlCommand("delete from Orders where OrderID= @OrderID" , conn);
cmd1.Parameters.AddWithValue("@OrderID", lstOrders.SelectedValue);
cmd.ExecuteNonQuery();
cmd1.ExecuteNonQuery();
conn.Close();
}
Something like that
protected void btnRemove(object sender, EventArgs e) {
// Do not use external connection, create your own instead
// Put IDisposable into using
using (SqlConnection c = new SqlConnection(YourConnectionString)) {
c.Open();
// Make SQL Readable
String sql =
@"delete
from Car
where CarID = @prm_CarId; -- Note ';'
delete
from Orders
where OrderID = @prm_OrderId";
// Put IDisposable into using
using (SqlCommand cmd = new SqlCommand(sql, c)) {
// use parameters
cmd.Parameters.AddWithValue("@prm_CarId", lstCar.SelectedValue);
cmd.Parameters.AddWithValue("@prm_OrderId", lstOrders.SelectedValue);
// Your error:
// No "Async"!: wait for query completion and only then close the connection
// ... or use await
cmd.ExecuteNonQuery();
}
}
}
I fixed it.
conn.Open();
string sql1 = "delete from Orders where OrderID='" + lstOrders.SelectedValue + "'";
SqlCommand cmd1 = new SqlCommand(sql1, conn);
cmd1.ExecuteNonQuery();
string sql = "Delete from Car where CarID='" + lstCar.SelectedValue + "'";
SqlCommand cmd = new SqlCommand(sql, conn);
cmd.ExecuteNonQuery();
conn.Close();
