EF Core - Pass parameter with integer list

Asked

Viewed 134 times

3

I am trying to execute a query by passing as clause an 'in' with integers, this is the code so far:

public List<Pedido> GetByUsuario(List<GestorVendedor> gestorVendedor)
{
    int[] seller_id = new int[gestorVendedor.Count];

    for (int i = 0; i < gestorVendedor.Count; i++)
    {
        seller_id[i] = gestorVendedor[i].id;
    }

    return _dbContext.Pedido.FromSql("select * from dbo.vendas where seller_id in ({0})", String.Join(",", seller_id)).ToList();
}

With this code problem occurs in the conversion as shows the error message:

'Conversion failed when Converting the nvarchar value '1,2,3' to data type int.'

How to get around this problem?

c# sql-server entity-framework

  • Do a test: string query = $"select * from dbo.sales Where seller_id in ({String.Join(",", seller_id)})" You are giving a . Tolist() in Fromsql(). Tolist()

  • 1

    Hello Geilton, executed as you passed, however it gives an injection vulnerability alert! Sorry to stretch but there’s a right way to do this?

2 answers

5


Two questions I can consider in your code:

int[] seller_id = new int[gestorVendedor.Count];

Change to:

var seller_ids = gestorVendedor.Select(x => x.Id).ToArray();

To make the query I would not use the FromSql and yes would pass the consultation via linq that gets a lot easier:

return _dbContext.Pedido.Where(x => seller_ids.Contains(x.seller_id)).ToList();

The EF will already mount the query with the in parameters and passes to the database.

  • 1

    I’m getting used to EF...hehe, it worked perfectly! Thank you...

4

You don’t need to wear one query SQL if you are already using EF.

public List<Pedido> GetByUsuario(List<GestorVendedor> gestorVendedor)
{ 
    return _dbContext.Pedido.Where(p=> gestorVendedor.Select(x => x.GestorVendedorId).ToArray().Contains(p.SellerId)).ToList()
}

You transform the list into Array and use the Contains

BS: I don’t know if your property calls SellerId, maybe you have to adjust

  • 1

    I don’t know if I’ll pass the list gestorVendedor.ToArray() directly to the command will work, because what you pass in Where the EF will turn into SQL for the database. So I think it’s important to build the array list with the ids first.

  • 1

    I didn’t notice it was a list of objects, I adjusted the answer

Browser other questions tagged c# sql-server entity-framework

You are not signed in. Login or sign up in order to post.