Violation of PRIMARY KEY constraint 'PKtblmembeDD7012648BA5EC8B' When insert in DataBase *** ASP.Net Query

Question

i create A page for insert users .

but when i run the the page show me this error

ASP Code

protected void Page_Load(object sender, EventArgs e)
{
    System.Data.SqlClient.SqlConnection con = new System.Data.SqlClient.SqlConnection();
    con.ConnectionString = System.Configuration.ConfigurationManager.ConnectionStrings["shopDBConnectionString"].ConnectionString;
    System.Data.SqlClient.SqlCommand cmd = new System.Data.SqlClient.SqlCommand();
    cmd.CommandText = "insert into tblmember values ('" + txtemail.Text + "','" + txtname.Text + "','" + txtfamily.Text + "','" + txtpass.Text + "','','" + DropDownList1.SelectedValue + "') ";
    cmd.CommandType = System.Data.CommandType.Text;
    cmd.Connection = con;
    con.Open();
    cmd.ExecuteNonQuery();
    con.Close();
    Response.Redirect("Default.aspx");
}

My DataBase

It clearly says you are inserting duplicate value into the primary key column. — It's a trap, Jul 11 '16 at 12:41
Are you trying to insert duplicate entry into the primary key column of datatable? — sowjanya attaluri, Jul 11 '16 at 12:42
Please change your query to a parameterized query unless you want to expose yourself to sql injection attacks. — Zohar Peled, Jul 11 '16 at 12:46
You desperately need to read about, understand, and start using parameters. What you have is a textbook example of sql injection. — Sean Lange, Jul 11 '16 at 13:00
you should also check against `this.IsPostBack` unless you want database interaction on `GET`s ... and sql injection galore ... #people — , Jul 11 '16 at 14:39

score 2 · Answer 1 · edited May 23 '17 at 11:51

2

It seems you're not passing the primary key in your query, as the duplicate key is shown as Empty (). The Email column Uid (Name is confusing for me) must be unique. You can't have two rows with the same Primary Key.

Secondly and more important, do not concatenate strings from input to build up your query. This can be easily injected with harmful queries that might drop your database.

Check this example on how to use parameterized queries.

edited May 23 '17 at 11:51

Community

1
1

answered Jul 11 '16 at 12:44

Zein Makki

29,485
6
52
63

i'm Beginner . I do not understand what you mean – Kianoush Jul 11 '16 at 12:50
@Kianoush I provided links for this purpose. – Zein Makki Jul 11 '16 at 12:51
you mean i used the strored procedure ? – Kianoush Jul 11 '16 at 12:53
@Kianoush You're not providing a value for column `Uid` which is the identifier for your row. You need to pass a value in your query for `Uid` or update your database table and set it to be auto generated by SQL-Server – Zein Makki Jul 11 '16 at 12:54
@Kianoush Stored Procedures, Or c# parameters as in this link : http://stackoverflow.com/questions/38285464/c-sharp-generate-query-to-compare-datetime-with-sql-nvarchar-date-column/38285521#38285521 – Zein Makki Jul 11 '16 at 12:54
U id is Email . i can't identifier it – Kianoush Jul 11 '16 at 12:55
@Kianoush you're passing the email as empty from your UI ? put a breakpoint on the query line to debug and check what value is inside `txtemail.Text` – Zein Makki Jul 11 '16 at 12:58
i dont enter value in text box but in database Enter value – Kianoush Jul 11 '16 at 13:01
@Kianoush You must specify a value from the UI for the Email since it is the primary key. The Primary key can't be *NULL* and it can't be duplicated in 2 rows. – Zein Makki Jul 11 '16 at 13:05
this code in pageload . i think put thiis code in button – Kianoush Jul 11 '16 at 13:07

Violation of PRIMARY KEY constraint 'PK__tblmembe__DD7012648BA5EC8B' When insert in DataBase *** ASP.Net Query

1 Answers1

Violation of PRIMARY KEY constraint 'PKtblmembeDD7012648BA5EC8B' When insert in DataBase *** ASP.Net Query