Delete From does not work on C#

Question

Delete From does not work on C#

Asked 10 years ago

Viewed 65 times

1

Why the code below does not work (does not delete)?

using (Banco db = new Banco()) { 
    String strSql = "Delete from Cliente where codcliente=" + Session["_uiUserID"];
    db.Cliente.SqlQuery(strSql);
    db.SaveChanges();
}

You’re not throwing any Exception and catching the string within the variable strSql and running directly on the bank works normal.

These other methods, in this case, db.Savechanges() it executes Executenonquery?

– f.fujihara

2014/06/24 at 17:52
1

It is necessary to give more details. What exactly is this class Banco. I imagine, but it may be that the problem lies precisely in being something other than what I imagine. Where does it come from Session["_uiUserID"]? There is the element _uiUserID in this dictionary? What is the value of this variable at the moment? There is a row with the column codcliente with exactly the same value as the variable? No difference at all? The SaveChanges() Is that correct? I’m not even going to discuss the security flaw you have there, I’m going to consider that it’s just an example that will never run in production.

– Maniero

2014/06/24 at 17:53
From what I’m seeing, there are missing quotation marks('') on this _uiUserID. Your Where clause is probably empty.

– f.fujihara

2014/06/24 at 18:15
1

@bigown has never seen such a big case of vulnerability.. Just change my cookie and I can delete all BD clients...

– dcastro

2014/06/24 at 18:15
If you’re using Entity Framework ? Because, that’s unnecessary if what I asked you is affirmative !!! Use your own method for this!.

– user6026

2014/06/24 at 18:22
Hey, guys, I changed the method to the way Maia posted it and it worked. This project is only of study even then ta the reason of vulnerabilities. @bigown answering your questions: Session["_uiUserID"] is the User id and was coming normally (filled), the codclient line exists in the same way and Savechanges was not working and the reason I do not know, but using Remove worked cool. Thank you for all your answers.

– Junior Dias

2014/06/24 at 18:27
The questions were to/ help you find the solution.

– Maniero

2014/06/24 at 18:33
I know @bigown, thanks for that ^^

– Junior Dias

2014/06/24 at 18:36

Show 3 more comments

1 answer

Browser other questions tagged c# asp.net

You are not signed in. Login or sign up in order to post.

by anmaia • **2,420** points · Answer 1 · 2014-06-24T17:57:43+00:00

Possible mind the where is not finding any record.

To test better, put a break point on the line String strSql = "Delete from Cliente where codcliente=" + Session["_uiUserID"]; and take the result of querystring and run directly into the database.

It may be that Session["_uiUserID"] is not empty or no longer exists in the table Cliente

Another way to delete with EF

using (Banco db = new Banco()) { 
    var c = db.Cliente.First(x => x.codcliente == Session["_uiUserID"]);
    db.Cliente.Remove(c);
    db.SaveChanges();
}

This way, you will be sure that the customer with the Session["_uiUserID"] exists in the Client table and, if it exists, it will be deleted. If it does not exist, the method First will fire an exception.