sql - MySQL statement to save password to Database? -


i have sql statement saves username mysql database on phpmyadmin works charm:

dim sqlstatement string = "insert accountinfodb(`usernames`) values ('" & txtusername.text & "')"

however

i ask users password, i'd store well, though make sense:

dim sqlstatement string = "insert accountinfodb(`usernames`, `passwords`) values ('" & txtusername.text & txtpasswd.text & "')"

unfortunately code not work, errors valid , open connection, or syntax error in mysql syntax. wondering if knew correct way store username , password db?

here full vb.net code.

imports mysql.data.mysqlclient   public class frmsignup dim serverstring string = "server=localhost;user id=root;password=;database=accountinfo" dim sqlconnection mysqlconnection = new mysqlconnection  private sub form3_load(sender object, e eventargs) handles mybase.load     sqlconnection.connectionstring = serverstring      try         if sqlconnection.state = connectionstate.closed             sqlconnection.open()             msgbox("successfully connected db")          else             sqlconnection.close()             msgbox("failed connect db")         end if     catch ex exception         msgbox(ex.tostring)      end try end sub  public sub saveaccountinformation(byref sqlstatement string)     dim cmd mysqlcommand = new mysqlcommand      cmd         .commandtext = sqlstatement         .commandtype = commandtype.text         .connection = sqlconnection         .executenonquery()     end     sqlconnection.close()     sqlconnection.dispose() end sub  private sub btnsignup_click(sender object, e eventargs) handles btnsignup.click     if txtpasswd.text = txtpasswd2.text         messagebox.show("passwords match!")          dim sqlstatement string = "insert accountinfodb(`usernames`, `passwords`) values ('" & txtusername.text & txtpasswd.text & "')"         saveaccountinformation(sqlstatement)            messagebox.show("account registered")     else         messagebox.show("passwords not match!")         txtpasswd.text = focus()         txtpasswd.clear()         txtpasswd2.text = focus()         txtpasswd2.clear()      end if end sub end class

edit 1

@rahul

i added sql statement code , given following error when input random username/passwd

an unhandled exception of type 'mysql.data.mysqlclient.mysqlexception' occurred in mysql.data.dll

additional information: have error in sql syntax; check manual corresponds mariadb server version right syntax use near 'test')' @ line 1

look @ sql insert statement, it's missing , comma in values section

values ('" & txtusername.text & txtpasswd.text & "')                              ^... here

your statement should like

"insert accountinfodb(`usernames`, `passwords`)  values ('" & txtusername.text & "','" & txtpasswd.text & "')"

edit: must mentioned current code vulnerable sql injection attack due fact passing user input directly concatenated values. should rather use sqlparameter , pass values parameter instead accordingly. sample be

dim sqlstatement string = "insert accountinfodb(`usernames`, `passwords`) values (@username, @password)"      cmd.parameters.addwithvalue("@username", txtusername.text.trim())     cmd.parameters.addwithvalue("@password", txtpasswd.text.trim())

Comments

Post a Comment

Popular posts from this blog

get url and add instance to a model with prefilled foreign key :django admin -

Image
i have page in each contest shown in row. each row contains contest id , link other model names have foreign key contest. news model: class news(models.model): title = models.charfield(max_length=50, null=true) description = models.textfield() time = models.timefield( default= datetime.datetime.now().time()) contest = models.foreignkey(contest) i want use admin adding , changing these models. want when user clicks on 'news' has foreign key contest id=1, shows list of news value foreign key. use {% instance in instances %} <tr class="{% cycle 'row1' 'row2' %}"> <td>{{ instance.title }}</td> <td>{{ instance.starttime }}</td> <td>{{ instance.timespan }}</td> <td>{{ instance.date }}</td> <td><a href="/adm
Read more

css - Make div keyboard-scrollable in jQuery Mobile? -

from can tell, although jquery-mobile-powered pages can contain divs overflow set scroll or auto, , these divs can scrolled one-screen bar or mouse wheel, cannot scrolled using arrow keys, page-up/page-down, or home/end. instead, official "page" div (with data-role="page") absorbs input. perhaps other divs can't acquire focus, i'm not sure. is there way around this? edit: jsfiddle of simple example: https://jsfiddle.net/qogz0shx/ <script src="https://ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js"></script> <script src="https://ajax.googleapis.com/ajax/libs/jquerymobile/1.4.5/jquery.mobile.min.js"> </script> <link rel="stylesheet" href="https://code.jquery.com/mobile/1.4.5/jquery.mobile-1.4.5.css"/> <style> #outer { overflow:scroll; height: 50vh; width: 50vw; } #inner { height: 500vh; width: 500vw; } &l
Read more

ruby on rails - Seeing duplicate requests handled with Unicorn -

recently upgraded our ec2 instances c3.large in order boost more unicorn workers handle increased traffic our site. (6xworkers per machine - 2 ec2 instances). when did this, started seeing duplicate records being created! looks somehow, maybe 2 unicorn workers attempting process same request? in nginx logs see 1 [post] request particular rails controller - yet 2 records being created in database. i'm hitting kind of race condition issue - have no idea how debug this. doesn't happen time, when it's frustrating well. noticed 2 database records within 5 seconds of each other. (and yes disable button when user clicks submit button). unicorn 4.8.2 ruby 1.9.3 rails 3.2.14 any great! thanks! although may not fix problem, upgrade ruby 2.0.0. there blog mentioning idea upgrade ruby 2.0.0 if using unicorn. for example: https://www.digitalocean.com/community/articles/how-to-optimize-unicorn-workers-in-a-ruby-on-rails-app specifically: if using ruby 1.9,
Read more