如何在C#中使用SqlDataAdapter
的WHERE
语句?
我想在查询时从文本框中获取名称并将其用作条件,但它不起作用。
SqlConnection sqlconnection = new SqlConnection("Server=Behnam\\Accounting;Initial Catalog=Accounting;Integrated Security=TRUE");
DataTable dt = new DataTable();
string _search_name = txt_search.Text;
SqlDataAdapter SDA = new SqlDataAdapter("SELECT dbo.tbl_user.field1,dbo.tbl_user.field2 FROM tbl_user WHERE dbo.tbl_user.name=_search_name ", sqlconnection);
SDA.Fill(dt);
dataGridView1.DataSource = dt;
addwithvalue
如何防止SQL注入,请参考此答案:https://dev59.com/Rk_Sa4cB1Zd3GeqP8w1m#3243210 - Jason Down