asp.net login web page using sql server

Question

i am stuck in my login page..my button click event is as follows:

protected void Button1_Click(object sender, EventArgs e)         
{               
    string cs = "Data Source=ims-aab46237892;Initial Catalog=Inventory;Integrated          Security=True";                      

    string SelectString = "SELECT COUNT(*) FROM user WHERE username = @Username AND password = @Password";           

    SqlConnection con = new SqlConnection(cs);         
    SqlCommand cmd = new SqlCommand(SelectString,con);         
    cmd.Connection = con;         
    cmd.CommandType = CommandType.Text;         
    cmd.CommandText = SelectString;          

    SqlParameter username = new SqlParameter("@Username",SqlDbType.VarChar,50);                   
    username.Value = TextName.Text.Trim().ToString();                   
    cmd.Parameters.Add(username);           

    SqlParameter password = new SqlParameter("@Password", SqlDbType.VarChar, 50);                      
    password.Value = TextPass.Text.Trim().ToString();                      

    cmd.Parameters.Add(password);                      
    con.Open();  

    if(cmd.ExecuteScalar() != null)                 
        Response.Redirect("Home.aspx");            
     else                
        Response.Redirect("wrongpasspage.aspx");              

    con.Close(); 
}

and my data table has the required username and password fields.. error i am getting is incorrect syntax near keyword user... plz help

Potential duplicate. Please see my post here: - [ASP.NET Login with SQL Server Database - LINQ-To-SQL, Entity Framework, and Publish/Subscribe event pattern][1] [1]: stackoverflow.com/questions/13397268/… — devinbost
– devinbost, Commented Dec 15, 2013 at 2:15

Facio Ratio · Accepted Answer · 2013-04-11 22:32:38Z

3

user is a reserved keyword in SQL server. Try [user] or rename your table to Users.

answered Apr 11, 2013 at 22:32

Facio Ratio

3,3931 gold badge18 silver badges18 bronze badges

Sign up to request clarification or add additional context in comments.

2 Comments

user2140084 Over a year ago

its working now. but regardless of any username or password. i am directed to home.aspx

Facio Ratio Over a year ago

Copy and paste the value of SelectString from your debugging window into SQL server and run the query, see what happens.

user704988 · Accepted Answer · 2013-04-11 22:33:18Z

0

use [user] instead of user in SelectString statement.

answered Apr 11, 2013 at 22:33

user704988

4361 gold badge9 silver badges24 bronze badges

Collectives™ on Stack Overflow

asp.net login web page using sql server

2 Answers 2

2 Comments

Comments

Your Answer

Linked

Hot Network Questions

Collectives™ on Stack Overflow

2 Answers 2

2 Comments

Comments

Your Answer

Sign up or log in

Post as a guest

Linked

Related