Writing to a DB

[Guest]

Hey guys,

I'm working on a project that has forms authentication implemented with Access 2003. I'm trying to write a page that will allow users to change their password. So far, without success. Here's a look at part of what I have..

if(txtuname == (string)Session["ucode"] && txtoldpass == (string)Session["pword"] && txtoldpassconf == (string)Session["pword"])
{
OleDbConnection Conn2 = new OleDbConnection("Provider=Microsoft.Jet.OLEDB.4.0;Data Source=C:\\PATH\\users.mdb");
Conn2.Open();


string writepass = "UPDATE tblUsers SET password='" + txtnewpass + "' WHERE username='" + txtuname + "'";
OleDbCommand Cmd = new OleDbCommand(writepass, Conn2);

Conn2.Close();
}

else
Response.Write("Incorrect credentials supplied");

Any help would be much appreciated..Thank you!

 

[chanmmn]

You did not execute the sql statement. Do this:

OleDbCommand Cmd = new OleDbCommand(writepass, Conn2);
Cmd.ExecuteNonQuery;

chanmm

Hey guys,

I'm working on a project that has forms authentication implemented with

Access 2003. I'm trying to write a page that will allow users to change
their password. So far, without success. Here's a look at part of what I
have..

if(txtuname == (string)Session["ucode"] && txtoldpass ==

(string)Session["pword"] && txtoldpassconf == (string)Session["pword"])

{
OleDbConnection Conn2 = new OleDbConnection("Provider=Microsoft.Jet.OLEDB.4.0;Data
Source=C:\\PATH\\users.mdb");
Conn2.Open();


string writepass = "UPDATE tblUsers SET password='" + txtnewpass + "'

WHERE username='" + txtuname + "'";

OleDbCommand Cmd = new OleDbCommand(writepass, Conn2);

Conn2.Close();
}

else
Response.Write("Incorrect credentials supplied");

Any help would be much appreciated..Thank you!

and as far as they are certain, they do not refer to reality." - Einstein

 

[Guest]

Hi

I just tried your suggestion and it didn't work...does my query look right? I have my if nested inside a try...when I add Cmd.ExecuteNonQuery(); , it just exits to the catch...
--
Edmond Goon

"As far as the laws of mathematics refer to reality, they are not certain; and as far as they are certain, they do not refer to reality." - Einstein

You did not execute the sql statement. Do this:

OleDbCommand Cmd = new OleDbCommand(writepass, Conn2);
Cmd.ExecuteNonQuery;

chanmm

Hey guys,

I'm working on a project that has forms authentication implemented with

Access 2003. I'm trying to write a page that will allow users to change
their password. So far, without success. Here's a look at part of what I
have..

if(txtuname == (string)Session["ucode"] && txtoldpass ==

(string)Session["pword"] && txtoldpassconf == (string)Session["pword"])

{
OleDbConnection Conn2 = new OleDbConnection("Provider=Microsoft.Jet.OLEDB.4.0;Data
Source=C:\\PATH\\users.mdb");
Conn2.Open();


string writepass = "UPDATE tblUsers SET password='" + txtnewpass + "'

WHERE username='" + txtuname + "'";

OleDbCommand Cmd = new OleDbCommand(writepass, Conn2);

Conn2.Close();
}

else
Response.Write("Incorrect credentials supplied");

Any help would be much appreciated..Thank you!

and as far as they are certain, they do not refer to reality." - Einstein

 

[Kevin Spencer]

If you told a car mechanic that your car "didn't work" what would he say is
wrong with it? Nothing, of course. Instead, he would ask you how the car
behaves when you try to use it. How does your code behave when you run it?

--
HTH,
Kevin Spencer
..Net Developer
Microsoft MVP
Big things are made up
of lots of little things.

Hi

I just tried your suggestion and it didn't work...does my query look

right? I have my if nested inside a try...when I add Cmd.ExecuteNonQuery();
, it just exits to the catch...and as far as they are certain, they do not refer to reality." - Einstein

You did not execute the sql statement. Do this:

OleDbCommand Cmd = new OleDbCommand(writepass, Conn2);
Cmd.ExecuteNonQuery;

chanmm

Hey guys,

I'm working on a project that has forms authentication implemented

with
Access 2003. I'm trying to write a page that will allow users to change
their password. So far, without success. Here's a look at part of what I
have..

if(txtuname == (string)Session["ucode"] && txtoldpass ==

(string)Session["pword"] && txtoldpassconf == (string)Session["pword"])

{
OleDbConnection Conn2 = new OleDbConnection("Provider=Microsoft.Jet.OLEDB.4.0;Data
Source=C:\\PATH\\users.mdb");
Conn2.Open();


string writepass = "UPDATE tblUsers SET password='" + txtnewpass + "'

WHERE username='" + txtuname + "'";

OleDbCommand Cmd = new OleDbCommand(writepass, Conn2);

Conn2.Close();
}

else
Response.Write("Incorrect credentials supplied");

Any help would be much appreciated..Thank you!

certain;
and as far as they are certain, they do not refer to reality." - Einstein

 

[Patrice]

Trace the sQL statement. For now I would say that the WHERE clause doesn't
match producing no change...

Patrice

--

Hi

I just tried your suggestion and it didn't work...does my query look

right? I have my if nested inside a try...when I add Cmd.ExecuteNonQuery();
, it just exits to the catch...and as far as they are certain, they do not refer to reality." - Einstein

You did not execute the sql statement. Do this:

OleDbCommand Cmd = new OleDbCommand(writepass, Conn2);
Cmd.ExecuteNonQuery;

chanmm

Hey guys,

I'm working on a project that has forms authentication implemented

with
Access 2003. I'm trying to write a page that will allow users to change
their password. So far, without success. Here's a look at part of what I
have..

if(txtuname == (string)Session["ucode"] && txtoldpass ==

(string)Session["pword"] && txtoldpassconf == (string)Session["pword"])

{
OleDbConnection Conn2 = new OleDbConnection("Provider=Microsoft.Jet.OLEDB.4.0;Data
Source=C:\\PATH\\users.mdb");
Conn2.Open();


string writepass = "UPDATE tblUsers SET password='" + txtnewpass + "'

WHERE username='" + txtuname + "'";

OleDbCommand Cmd = new OleDbCommand(writepass, Conn2);

Conn2.Close();
}

else
Response.Write("Incorrect credentials supplied");

Any help would be much appreciated..Thank you!

certain;
and as far as they are certain, they do not refer to reality." - Einstein

 

[Guest]

Well, I've figured it out.

It turns out password is a reserved word in Access, and it should be between square brackets.

 

[Patrice]

Just curious. What was the error ?

--

Well, I've figured it out.

It turns out password is a reserved word in Access, and it should be between square brackets.

and as far as they are certain, they do not refer to reality." - EinsteinAccess 2003. I'm trying to write a page that will allow users to change
their password. So far, without success. Here's a look at part of what I
have..

if(txtuname == (string)Session["ucode"] && txtoldpass == (string)Session["pword"] && txtoldpassconf == (string)Session["pword"])
{
OleDbConnection Conn2 = new

OleDbConnection("Provider=Microsoft.Jet.OLEDB.4.0;Data
Source=C:\\PATH\\users.mdb");

Conn2.Open();


string writepass = "UPDATE tblUsers SET password='" + txtnewpass + "' WHERE username='" + txtuname + "'";
OleDbCommand Cmd = new OleDbCommand(writepass, Conn2);

Conn2.Close();
}

else
Response.Write("Incorrect credentials supplied");

Any help would be much appreciated..Thank you!

certain; and as far as they are certain, they do not refer to reality." -
Einstein