在c#中执行sql语句时传递参数
采用SqlClient方式连接数据库:
采用OleDb方式连接数据库:
int Id =1;
string Name="lui";
//语句中直接在sql语句中写添加的参数名,不论参数类型都是如此.
SqlCommand cmd = new SqlCommand("",connection1);
cmd.CommandText="insert into TUserLogin values(@Id,@Name)";
cmd.Parameters.Clear();
cmd.Parameters.Add("@Id",SqlDbType).Value = Id;
cmd.Parameters.Add("@Name",SqlDbType.VarChar).Value = Name;
cmd.ExecuteNonQuery();
string Name="lui";
//语句中直接在sql语句中写添加的参数名,不论参数类型都是如此.
SqlCommand cmd = new SqlCommand("",connection1);
cmd.CommandText="insert into TUserLogin values(@Id,@Name)";
cmd.Parameters.Clear();
cmd.Parameters.Add("@Id",SqlDbType).Value = Id;
cmd.Parameters.Add("@Name",SqlDbType.VarChar).Value = Name;
cmd.ExecuteNonQuery();
采用OleDb方式连接数据库:
int Id =1;
string Name="lui";
//语句中直接在sql语句中写添加的参数名,不论参数类型都是如此.
OleDbCommandcmd = new OleDbCommand("",connection1);
cmd.CommandText="insert TUserLogin (Id,Name) values(?,?)";
cmd.Parameters.Clear();
cmd.Parameters.Add("Id",OleDbType).Value = Id;
cmd.Parameters.Add("Name",OleDbType.VarChar).Value = Name;
cmd.ExecuteNonQuery();
string Name="lui";
//语句中直接在sql语句中写添加的参数名,不论参数类型都是如此.
OleDbCommandcmd = new OleDbCommand("",connection1);
cmd.CommandText="insert TUserLogin (Id,Name) values(?,?)";
cmd.Parameters.Clear();
cmd.Parameters.Add("Id",OleDbType).Value = Id;
cmd.Parameters.Add("Name",OleDbType.VarChar).Value = Name;
cmd.ExecuteNonQuery();