i am passing the query to function name select_query which is avilable in class name admin.
like i have a class named admin where i have a function named
public int insert_query(string insert_query)
{
cmd.CommandType = CommandType.Text;
cmd.Connection = con.con_pass();
cmd.CommandText = insert_query;
try
{
con.open_connection();
cmd.ExecuteNonQuery();
return 1;
}
catch (Exception ex)
{
string msg = ex.Message.ToString();
}
finally
{
con.close_connection();
cmd.Dispose();
}
return 0;
}
and insert query on the click event of button which is passed to this insert function.
click event code
string insert_tarin_query = "Insert into tarin (train_no,train_name,train_type,source_id,destination_id,mon_avilable,tue_avilable,wed_avilable,thu_avilable,fri_avilable,sat_avilable,sun_avilable,sleeper_seat, ac_seat, cc_seat, sleeper_fare_per_km, ac_fare_per_km, cc_fare_per_km,arival_time, dept_time)"
+ "values('" + txt_trainid.Text.ToString() + "','" + txt_trainname.Text.ToString() + "','" + drp_train_type.Text.ToString() + "','" + "1" + "','" + "2" + "','" + drp_mon.Text + "','" + drp_tue.Text + "','" + drp_wed.Text + "','" + drp_thrus.Text + "','" + drp_friday.Text + "','" + drp_sat.Text + "','" + drp_sun.Text + "','" + txt_sl.Text.ToString() + "','" + txt_ac.Text.ToString() + "','" + txt_cc.Text.ToString() + "','" + txt_fare_ac.Text.ToString() + "','" + txt_fare_sl.Text.ToString() + "','" + Int32.Parse(txt_fare_cc.Text) + "','" + drp_hr.Text + ":" + drp_min.Text + "','" + drp_dep_hr.Text + ":" + drp_dep_min.Text + "')";
and this string insert_tarin_query is passed to function named insert_query like
int check_insert_satus = ad.insert_query(insert_train_status);
how can is use parameterized query here because sqlcommand is avilable on admin class and query is written on click event of button.
