SQL Server - Retrieving an Output Parameter (in classic ASP w/SQL Server 2005 Express)

Asked By spudg

11-Aug-07 08:41 PM

Hello,

I'm working on migrating a classic ASP application that used an Access
database to SQL Server 2005 Express. I need to insert a record and get
back the value of the primary key. See code below, then I'll describe
what I've tried:

CURRENT CODE:
Error: 'Must declare the scalar variable "@userid".'
'------------------------------------------------------------
Dim adoRecordSet
Dim adoConnection
Dim adoCommand
Dim strConnectionString

strConnectionString = "Provider=SQLOLEDB;Data Source=*****
\*****;UID=*****;PWD=*****;"

set adoConnection = Server.CreateObject("ADODB.Connection")
set adoRecordSet = Server.CreateObject("ADODB.RecordSet")
set adoCommand = Server.CreateObject("ADODB.Command")

adoConnection.ConnectionString = strConnectionString
adoConnection.Open adoConnection.ConnectionString

adoCommand.CommandText = "INSERT INTO dbo.tblMarginNotes (userid,
date, " & _
groupcode) " & _
@comment, " & _
adoCommand.CommandType = adCommandText

adoCommand.ActiveConnection = adoConnection
adoCommand.Parameters.Append
adoCommand.CreateParameter("userid",adVarChar,adParamInput,Len(strUserID),strUserID)
adoCommand.Parameters.Append
adoCommand.CreateParameter("date",adDBTimeStamp,adParamInput,,dtDate)
adoCommand.Parameters.Append
adoCommand.CreateParameter("startverseid",adInteger,adParamInput,,intStartVerseID)
adoCommand.Parameters.Append
adoCommand.CreateParameter("endverseid",adInteger,adParamInput,,intEndVerseID)
adoCommand.Parameters.Append
adoCommand.CreateParameter("subject",adVarChar,adParamInput,Len(strSubject),strSubject)
adoCommand.Parameters.Append
adoCommand.CreateParameter("comment",adVarChar,adParamInput,Len(strText),strText)
adoCommand.Parameters.Append
adoCommand.CreateParameter("notetype",adVarChar,adParamInput,Len(strType),strType)
adoCommand.Parameters.Append
adoCommand.CreateParameter("tags",adVarChar,adParamInput,Len(strTags),strTags)
adoCommand.Parameters.Append
adoCommand.CreateParameter("groupcode",adVarChar,adParamInput,Len(strGroupID),strGroupID)
adoCommand.Parameters.Append
adoCommand.CreateParameter("id",adInteger,adParamOutput,,intNoteID)
adoCommand.Execute()

'------------------------------------------------------------

I've spent hours tweaking the code above to try and get it to work,
but I'm not getting any love. I've tried adding the "@" to the front
of the Names passed in the CreateParameter method (e.g. "@userid"
instead of "userid"). I've also tried using "?" instead of
were added. This got the record inserted but I couldn't figure out how
to get the value of the primary key back.

Any help is much appreciated.

Thanks!

- Nick

SQL Server Programming Discussions

ADODB.RecordSet
(1)

ADODB.Connection
(1)

ADODB.Command
(1)

SQL Server 2005
(1)

Server.CreateObject
(1)

Describe
(1)

Declare
(1)

ADODB
(1)

Dan Guzman replied...

11-Aug-07 09:22 PM

In addition to using '?' for parameter markers, add SET NOCOUNT ON before
the INSERT.  This will suppress DONE_IN_PROC messages that can interfere
with ADO returning result sets, messages and output values.  You can also
return the SCOPE_IDENTITY() value using a SELECT and recordset in your code.

--
Hope this helps.

Dan Guzman
SQL Server MVP

spudg replied...

11-Aug-07 10:44 PM

Thanks! Here's the code that ended up working:

adoCommand.CommandText = "SET NOCOUNT ON; INSERT INTO
dbo.tblMarginNotes (userid, date, " & _
groupcode) " & _
adoCommand.CommandType = adCmdText

adoCommand.ActiveConnection = adoConnection
adoCommand.Parameters.Append
adoCommand.CreateParameter("userid",adVarChar,adParamInput,Len(strUserID),strUserID)
adoCommand.Parameters.Append
adoCommand.CreateParameter("date",adDBTimeStamp,adParamInput,,dtDate)
adoCommand.Parameters.Append
adoCommand.CreateParameter("startverseid",adInteger,adParamInput,,intStartVerseID)
adoCommand.Parameters.Append
adoCommand.CreateParameter("endverseid",adInteger,adParamInput,,intEndVerseID)
adoCommand.Parameters.Append
adoCommand.CreateParameter("subject",adVarChar,adParamInput,Len(strSubject),strSubject)
adoCommand.Parameters.Append
adoCommand.CreateParameter("comment",adVarChar,adParamInput,Len(strText),strText)
adoCommand.Parameters.Append
adoCommand.CreateParameter("notetype",adVarChar,adParamInput,Len(strType),strType)
adoCommand.Parameters.Append
adoCommand.CreateParameter("tags",adVarChar,adParamInput,Len(strTags),strTags)
adoCommand.Parameters.Append
adoCommand.CreateParameter("groupcode",adVarChar,adParamInput,Len(strGroupID),strGroupID)
adoCommand.Parameters.Append
adoCommand.CreateParameter("id",adInteger,adParamOutput,,intNoteID)
adoCommand.Execute()

intNoteID = adoCommand.Parameters("id")

Tony Rogerson replied...

12-Aug-07 07:34 AM

Hi,

Always try and use stored procedures to do stuff rather than embedding SQL
into your application.

It makes it a lot easier to improve and take advantage of new stuff going
forward.

Also makes permissioning easier and more controlled....

Tony.

--
Tony Rogerson, SQL Server MVP
http://sqlblogcasts.com/blogs/tonyrogerson
[Ramblings from the field from a SQL consultant]
http://sqlserverfaq.com
[UK SQL User Community]

Dan Guzman replied...

12-Aug-07 08:25 AM

I'm glad I was able to help.  I agree with Tony's suggestion to consider
stored procedures instead of embedded SQL.  We use stored procedures
exclusively for the reasons Tony mentioned.

--
Dan Guzman
SQL Server MVP

error occurred for recordset.moveFirst after upgrade from 2000 to SQL Server

conn.Execute(sQry) and conn is set up in this way: Set cmdTemp = Server.CreateObject("ADODB.Command") cmdTemp.CommandType = adCmdText 'which is 1 Set cmdTemp.ActiveConnection = conn can you help me out of here? - - Betty SQL Server Programming Discussions ADODB.Connection (1) ADODB.Command (1) SQL Server 2000 (1) SQL Server 2005 (1) Stored procedure (1) Varchar (1) ADODB worked fine. You may refer to the following code snippet: - -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- CoInitialize(NULL); _ConnectionPtr cn(_T("ADODB.Connection")); _RecordsetPtr rs(_T("ADODB.Recordset")); _bstr_t strCn = _T("Provider = 'sqloledb'; Data Source = 'Charles \ SQL2K5'; Initial

HELP: SQL Injection attack SQL Server

appened to. Can any one explain to me how this attack works? SQL Server Discussions ADODB.Connection (1) ADODB.Command (1) SQL Server (1) ADODB.recordset (1) Server.CreateObject (1) Stored procedure (1) CREATE PROCEDURE (1) QuestNo.Value (1) Did you QuestNo") 2. Call stored proc with id value as a parameter. . . Set cn = Server.CreateObject("ADODB.Connection") With cn .CursorLocation = 3 .ConnectionString = cn_App .Open End With sSQL = "EXEC Sp_GetQuestion @QuestNo = " & cstr(session

Pass Parameter to a stored procedure from MS Access SQL Server

a parameter to a stored procedure using MS Access? Thanks. SQL Server New Users Discussions ADODB.Connection (1) ADODB.Command (1) ADODB.Recordset (1) ADODB.Parameter (1) Stored procedure (1) ADODB (1) CmdUsers.CreateParameter (1) AdCmdStoredProc (1) Here access mdb, the you'll need to provide the connection string. Dim cmdUsers As New ADODB.Command Dim connSSP As ADODB.Connection Dim parmLogon As ADODB.Parameter Dim rsUsers As ADODB.Recordset

How to connect Excel sheet to a database? SQL Server

then copying the data from the table to the Excel sheet. SQL Server Programming Discussions ADODB.Connection (1) ADODB.Command (1) ADODB.Recordset (1) UpToWhatEverCOlumnYouWant (1) Excel (1) Exception (1) ADODB (1) Proc (1) Though a macro like this. . Dim cn As New ADODB.Connection cn.Open "Data Source = myServerAddress;Initial Catalog = myDataBase;User Id = myUsername;Password = myPassword;" ' Dim cmd