string id = "zawp";
string name = "wwwwwww";
string strCon = @"Data Source=(local);Integrated Security=SSPI;Initial Catalog =northwind";
// 直接在sql语句中写添加的参数名,这里没有做任何类型验证,在定义参数时需要准确的类型定义和长度设置
string delegeSql = "insert into Customers(CompanyName,CustomerID) values(@Name,@id)";
SqlConnection strConn = new SqlConnection(strCon);
strConn.Open();
SqlDataAdapter thisAdapter = new SqlDataAdapter(delegeSql, strCon);
SqlCommandBuilder thisBuilder = new SqlCommandBuilder(thisAdapter);
Console.WriteLine(thisAdapter.SelectCommand.CommandText);
SqlCommand strComm = new SqlCommand(delegeSql, strConn);
//生成一个名字为@Id的参数,在这里必须要准确设定参数类型和类型长度,并且必须以@开头表示是添加的参数
//注意可以用一个SqlParameter对像来添加多个参数,并且这里的参数定义、添加可以不安照sql语句里参数值的顺序(如果是存储过程的话,要注意顺序)
SqlParameter para = new SqlParameter("@id", SqlDbType.NChar, 5);
para.Value = id;
strComm.Parameters.Add(para);
para = new SqlParameter("@name", SqlDbType.NVarChar, 40);
para.Value = name;
strComm.Parameters.Add(para);
strComm.ExecuteNonQuery();
strConn.Close();