Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!
Course Of The Month
6 days, 11 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
SQL search query
Posted on 2013-01-04
I have a sql query - somewhere in here I have to add a search feature - i have a text box I call txtSearch - i want to pass this string value into this and have it return those results from this query can anyone help please
SELECT DISTINCT qci.id
AS
qcuid,
t.uid
AS taskuid,
t.polinekey,
cf.factoryuid,
Cast(Cast(ponumber AS INT) AS VARCHAR)
AS ponumber,
Upper(Isnull(custid, ''))
AS custid,
Upper(COALESCE(NULLIF(custname, ''), shiptoname))
AS custname,
Isnull(t.selectedtask, 1)
AS selectedtask,
CASE
WHEN t.qctestsampleuid > 0 THEN (SELECT
Upper(COALESCE(masitemno, uniqueid))
FROM ideas
WHERE
ideauid = (SELECT ideauid
FROM task
WHERE uid = st.parentuid))
ELSE Upper(itemid)
END
AS itemid,
CASE
WHEN t.qctestsampleuid > 0 THEN (SELECT Upper(itemdesc)
FROM ideas
WHERE
ideauid = (SELECT ideauid
FROM task
WHERE uid = st.parentuid))
ELSE Upper(vpo.description)
END
AS itemdescription,
Cast(COALESCE(rh.taskuid, 0) AS BIT)
AS Uploaded,
dbo.Kkgetallowsubmitbypass(t.uid)
AS enableBypass,
Cast(COALESCE(t.resultsid, 0) AS BIT)
AS uploadcompeted,
t.resultsid,
CASE
WHEN t.qctestsampleuid > 0 THEN Upper(
COALESCE (st.designer, ''))
ELSE Upper(factory)
END
AS factory,
companyid,
NULLIF (promisedate, '01/01/1900')
AS POShipdate,
vpo.polinekey,
vpo.pokey,
purchamt,
qtyleft,
sumqtytoload,
sumqtyloaded,
qtyord,
qtyopentorcv,
companyid,
qci.id
AS qcInspectionUID,
qci.customeritem,
qci.customerpo,
qci.custbatchdatecode,
CASE Rtrim(Ltrim(qci.batchcode))
WHEN '' THEN Cast (Cast(vpo.ponumber AS INT) AS VARCHAR)
+ '/' + vpo.itemid + '/'
+ Cast (Datepart(wk, vpo.promisedate) AS VARCHAR)
ELSE Rtrim(Ltrim(qci.batchcode))
END
AS batchcode,
qci.label_needsilversticker,
qci.label_needbranding,
qci.label_needcarbsticker,
qci.label_needfabriclabel,
qci.label_needenginewarning,
t.designer
AS Inspectorname,
t.comments
AS inspectorinstructions,
t.designeruid
AS inspectorUID,
t.daterequested,
NULLIF (t.datetobecomplete, '01/01/1900')
AS inspectiondate,
dbo.Kktaskdisablewithoutsignoff(t.polinekey, t.parentuid, t.datetobecomplete) AS
TaskDisableWithoutSignOff,
qci.label_needflyer,
NULLIF (t.completeddate, '01/01/1900') AS
completeddate,
NULLIF (t.downloaddate, '01/01/1900') AS
DownloadDate,
t.successfuldownload,
t.isxmlreleased,
Isnull(uc.elevateflag, 0) AS
elevateflag,
Isnull(uc.commentuid, 0) AS
commentuid,
Isnull((SELECT 1
FROM task
WHERE uid = ANY (SELECT TOP 1 uid
FROM task (nolock) t2
INNER JOIN historytaskstatus AS hts (nolock)
ON hts.taskuid = t2.uid
INNER JOIN designertaskstatus dts (nolock)
ON dts.designerstatusuid =
hts.taskstatusuid
WHERE t2.uid = t.uid
AND closetask <> 0
AND wascloned = 0)), 0) AS
cloneneeded,
Cast(CASE
WHEN qci.xpsreport IS NULL THEN 0
ELSE 1
END AS BIT) AS
uploadcompeted
FROM task (nolock) t
INNER JOIN qcinspection (nolock) qci
ON qci.taskuid = t.uid
LEFT JOIN qcfinalinspection (nolock) qfi
ON qfi.qcinspectionid = qci.id
LEFT JOIN vpoalldetailswithcust (nolock) vpo
ON t.polinekey = vpo.polinekey
LEFT JOIN sampledetail (nolock)sd
ON sd.sampleuid = t.qctestsampleuid
LEFT JOIN task (nolock)st
ON st.uid = sd.taskuid
LEFT JOIN pofactory (nolock) pof
ON vpo.polinekey = pof.polinekey
LEFT JOIN factoryinfo (nolock) cf
ON pof.factoryuid = cf.factoryuid
LEFT JOIN vfactorymgr (nolock) fm
ON cf.factoryuid = fm.factoryuid
LEFT JOIN [resultshistory] rh
ON rh.taskuid = t.uid
AND rh.notes = 'Inspection uploaded'
LEFT JOIN usercomments (nolock) AS uc
ON uc.commentuid = (SELECT TOP 1 commentuid
FROM usercomments
WHERE usercomments.typeuid = t.uid
AND type = 35
AND Isnull(usercomments.commentuid, 0)
<> 0
AND ( private = 0
OR ( private <> 0
AND userid = 406 ) )
AND Isnull(activecmt, 0) > 0
ORDER BY elevateflag DESC)
WHERE Isnull(t.uid, 0) > 0
AND t.tasktype = 35
AND ( ( Isdate(t.completeddate) = 1
AND ( Datediff(dd, '01/01/1900', t.datetobecomplete) > 0 ) )
OR ( ( Isdate(t.completeddate) = 0
OR ( Datediff(dd, '01/01/1900', t.datetobecomplete) = 0 )
)
AND ( vpo.polstatus = 2
OR vpo.postatus IN ( 2, 3, 4 )
OR t.qctestsampleuid > 0 ) ) )
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2-
2
5 Comments
just add the field at the end of your select staement
........
WHERE Isnull(t.uid, 0) > 0
AND t.tasktype = 35
AND ( ( Isdate(t.completeddate) = 1
AND ( Datediff(dd, '01/01/1900', t.datetobecomplete) > 0 ) )
OR ( ( Isdate(t.completeddate) = 0
OR ( Datediff(dd, '01/01/1900', t.datetobecomplete) = 0 )
)
AND ( vpo.polstatus = 2
OR vpo.postatus IN ( 2, 3, 4 )
OR t.qctestsampleuid > 0 ) ) )
AND YourSearchField = YourSearchText
........
WHERE Isnull(t.uid, 0) > 0
AND t.tasktype = 35
AND ( ( Isdate(t.completeddate) = 1
AND ( Datediff(dd, '01/01/1900', t.datetobecomplete) > 0 ) )
OR ( ( Isdate(t.completeddate) = 0
OR ( Datediff(dd, '01/01/1900', t.datetobecomplete) = 0 )
)
AND ( vpo.polstatus = 2
OR vpo.postatus IN ( 2, 3, 4 )
OR t.qctestsampleuid > 0 ) ) )
AND YourSearchField = YourSearchText
What would you be expected to put into this textbox? Would it always be applied to the same field to filter on?
For example, would it always be ponumber where the user just enters a PO number?
Is there any concern about SQL injection?
Although, not the most efficient, the easiest way given that this is a large query would be to populate a DataTable with this query. Create a DataView with a source of the datatable and setting your output control's ControlSource as the DV. Then use the Filter property of the DV to apply the filter, and the control (I assume a DataGridView) will automatically be updated.
For example, would it always be ponumber where the user just enters a PO number?
Is there any concern about SQL injection?
Although, not the most efficient, the easiest way given that this is a large query would be to populate a DataTable with this query. Create a DataView with a source of the datatable and setting your output control's ControlSource as the DV. Then use the Filter property of the DV to apply the filter, and the control (I assume a DataGridView) will automatically be updated.
if you have the select statement in a string variable, it would be of the sort
SQLText = SQLText + " AND YourSearchField = '" + txtSearch.ToString() + '"
SQLText = SQLText + " AND YourSearchField = '" + txtSearch.ToString() + '"
SQL injection is not an issue - this is all internal - it will always be a string and I will be searching all of the fields
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Exception Handling is in the core of any application that is able to dignify its name.
In this article, I'll guide you through the process of writing a DRY (Don't Repeat Yourself) Exception Handling mechanism, using Aspect Oriented Programming.
It was really hard time for me to get the understanding of Delegates in C#. I went through many websites and articles but I found them very clumsy. After going through those sites, I noted down the points in a easy way so here I am sharing that unde…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
- Document Management
- Printers and Scanners
- Document Imaging
- Software-Other
- Images and Photos
- Adobe Acrobat, Photos / Graphics Software, Security, OCR, *PDF
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Suggested Courses
Course of the Month6 days, 11 hours left to enroll
Earn Certification
Administering Microsoft SQL Server 2012 Databases (Exam 70-462)
$79.00$71.10
726 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.