An exception of type 'System.Data.SqlClient.SqlException' occurred in System.Data.dll An exception of type 'System.Data.SqlClient.SqlException' occurred in System.Data.dll sql sql

An exception of type 'System.Data.SqlClient.SqlException' occurred in System.Data.dll


c# .net sql sql-server visual-studio-2013

There are some problems with your code. First I advise to use parametrized queries so you avoid SQL Injection attacks and also parameter types are discovered by framework:

var cmd = new SqlCommand("SELECT EmpName FROM Employee WHERE EmpID = @id", con);cmd.Parameters.AddWithValue("@id", id.Text);

Second, as you are interested only in one value getting returned from the query, it is better to use ExecuteScalar:

var name = cmd.ExecuteScalar();if (name != null){   position = name.ToString();   Response.Write("User Registration successful");}else{    Console.WriteLine("No Employee found.");}

The last thing is to wrap SqlConnection and SqlCommand into using so any resources used by those will be disposed of:

string position;using (SqlConnection con = new SqlConnection("server=free-pc\\FATMAH; Integrated Security=True; database=Workflow; ")){  con.Open();  using (var cmd = new SqlCommand("SELECT EmpName FROM Employee WHERE EmpID = @id", con))  {    cmd.Parameters.AddWithValue("@id", id.Text);      var name = cmd.ExecuteScalar();      if (name != null)    {       position = name.ToString();       Response.Write("User Registration successful");    }    else    {        Console.WriteLine("No Employee found.");    }  }}

c# .net sql sql-server visual-studio-2013

I think your EmpID column is string and you forget to use ' ' in your value.

Because when you write EmpID=" + id.Text, your command looks like EmpID = 12345 instead of EmpID = '12345'

Change your SqlCommand to

SqlCommand cmd = new SqlCommand("SELECT EmpName FROM Employee WHERE EmpID='" + id.Text +"'", con);

Or as a better way you can (and should) always use parameterized queries. This kind of string concatenations are open for SQL Injection attacks.

SqlCommand cmd = new SqlCommand("SELECT EmpName FROM Employee WHERE EmpID = @id", con);cmd.Parameters.AddWithValue("@id", id.Text);

I think your EmpID column keeps your employee id's, so it's type should some numerical type instead of character.

c# .net sql sql-server visual-studio-2013

Try this

SqlCommand cmd = new SqlCommand("SELECT EmpName FROM Employee WHERE EmpID=@id", con);cmd.Parameters.AddWithValue("id", id.Text);

Recent Posts
How can I color dots in a xy scatterplot according to column value?
How to update a claim in ASP.NET Identity?
What does {0} mean when initializing an object?
Accessing members of items in a JSONArray with Java
How to log SQL statements in Spring Boot?
Powershell Get-WebSite name parameter is ignored
How to detect scroll to bottom of html element
Java synchronized method
How to test controllers with CodeIgniter?
Detect Visual Composer
Matplotlib: Specify format of floats for tick labels
Rails join a list of strings with commas and "and" before the last