Simple .NET database layer for Microsoft(r) SqlServer(r) or LocalDb based on Microsoft.Data.SqlClient intended for mainly read-only data access i.e. for reporting purposes
$ dotnet add package Bodoconsult.Core.Database.SqlClientBodoconsult.Core.Database.SqlClient library simplifies the access to Microsoft SqlServer, Microsoft SqlServer Express or LocalDb based databases. It handles the most common database actions like getting datatables, running SQL statement or fetch scalar values from the database.
Additionally the library contains some tools for developers making the usage of the database layers derived from Bodoconsult.Core.Database as easy as possible. See below.
The source code contain a NUnit test classes, the following source code is extracted from. The samples below show the most helpful use cases for the library.
[TestFixture]
public class TestsSqlClientConnManager
{
private readonly string _connectionString = TestHelper.SqlServerString;
private IConnManager _db;
[SetUp]
public void Setup()
{
_db = SqlClientConnManager.GetConnManager(_connectionString);
}
/// <summary>
/// Test the connection
/// </summary>
[Test]
public void TestTestConnection()
{
var erg = _db.TestConnection();
Assert.IsTrue(erg);
}
/// <summary>
/// Get a datatable from the database from a plain SQL string (avoid this option due to SQL injection)
/// </summary>
[Test]
public void TestGetDataTableFromSql()
{
const string sql = "SELECT * FROM dbo.Customer";
var erg = _db.GetDataTable(sql);
Assert.IsTrue(erg.Rows.Count>0);
}
/// <summary>
/// Get a datatable from the database from a (parameterized) SqlCommand object (choose this option to avoid SQL injection)
/// </summary>
[Test]
public void TestGetDataTableFromCommand()
{
const string sql = "SELECT * FROM dbo.Customer";
var cmd = new SqlCommand
{
CommandText = sql
};
// Add parameters here if required
var erg = _db.GetDataTable(cmd);
Assert.IsTrue(erg.Rows.Count > 0);
}
/// <summary>
/// Get a datatable from the database from a (parameterized) SqlCommand object (choose this option to avoid SQL injection)
/// </summary>
[Test]
public void TestGetDataTableFromCommandWidthGetCommand()
{
const string sql = "SELECT * FROM dbo.Customer";
var cmd = _db.GetCommand();
cmd.CommandText = sql;
// Add parameters here if required
var erg = _db.GetDataTable(cmd);
Assert.IsTrue(erg.Rows.Count > 0);
}
/// <summary>
/// Get a datatable from the database from a (parameterized) SqlCommand object (choose this option to avoid SQL injection)
/// </summary>
[Test]
public void TestGetDataTableFromCommandWidthGetCommandWithParameter()
{
const string sql = "SELECT * FROM dbo.Customer WHERE CustomerId=@ID";
var cmd = _db.GetCommand();
cmd.CommandText = sql;
var p = _db.GetParameter(cmd, "@ID", GeneralDbType.Int);
p.Value = 1;
// Add parameters here if required
var erg = _db.GetDataTable(cmd);
Assert.IsTrue(erg.Rows.Count > 0);
Assert.IsTrue(erg.Rows.Count == 1);
}
/// <summary>
/// Get a datatable from the database from a plain SQL string (avoid this option due to SQL injection)
/// </summary>
[Test]
public void TestGetDataReaderFromSql()
{
const string sql = "SELECT * FROM dbo.Customer";
var erg = _db.GetDataReader(sql);
Assert.IsTrue(erg.FieldCount > 0);
}
/// <summary>
/// Get a datatable from the database from a (parameterized) SqlCommand object (choose this option to avoid SQL injection)
/// </summary>
[Test]
public void TestGetDataReaderFromCommand()
{
const string sql = "SELECT * FROM dbo.Customer";
var cmd = new SqlCommand
{
CommandText = sql
};
// Add parameters here if required
var erg = _db.GetDataReader(cmd);
Assert.IsTrue(erg.FieldCount > 0);
}
/// <summary>
/// Get a datatable from the database from a (parameterized) SqlCommand object (choose this option to avoid SQL injection)
/// </summary>
[Test]
public void TestGetDataReaderFromCommandWidthGetCommand()
{
const string sql = "SELECT * FROM dbo.Customer";
var cmd = _db.GetCommand();
cmd.CommandText = sql;
// Add parameters here if required
var erg = _db.GetDataReader(cmd);
Assert.IsTrue(erg.FieldCount>0);
}
/// <summary>
/// Get a datatable from the database from a (parameterized) SqlCommand object (choose this option to avoid SQL injection)
/// </summary>
[Test]
public void TestGetDataReaderFromCommandWidthGetCommandAndParameter()
{
const string sql = "SELECT * FROM dbo.Customer WHERE [CustomerId]=@ID;";
var cmd = _db.GetCommand();
cmd.CommandText = sql;
var p = _db.GetParameter(cmd, "@ID", GeneralDbType.Int);
p.Value = 1;
// Add parameters here if required
var erg = _db.GetDataReader(cmd);
Assert.IsTrue(erg.FieldCount > 0);
Assert.IsTrue(erg.HasRows);
}
/// <summary>
/// Execute a plain SQL string (avoid this option due to SQL injection)
/// </summary>
[Test]
public void TestExecFromSql()
{
const string sql = "DELETE FROM dbo.Customer WHERE CustomerId=-99";
Assert.DoesNotThrow(() => _db.Exec(sql));
}
/// <summary>
/// Execute a SqlCommand object (choose this option to avoid SQL injection)
/// </summary>
[Test]
public void TestExecFromCommand()
{
const string sql = "DELETE FROM dbo.Customer WHERE CustomerId=@Key";
// Create command
var cmd = new SqlCommand
{
CommandText = sql
};
// Add a parameter to the command
var para = cmd.Parameters.Add("@Key", SqlDbType.Int);
para.Value = -99;
Assert.DoesNotThrow(() => _db.Exec(cmd));
}
/// <summary>
/// Get a scalar value from database from a plain SQL string (avoid this option due to SQL injection)
/// </summary>
[Test]
public void TestExecWithResultFromSql()
{
const string sql = "SELECT CustomerId FROM dbo.Customer WHERE CustomerId=1";
var result = _db.ExecWithResult(sql);
Assert.IsNotNull(result);
Assert.IsFalse(string.IsNullOrEmpty(result));
}
/// <summary>
/// Get a scalar value from database from SqlCommand object (choose this option to avoid SQL injection)
/// </summary>
[Test]
public void TestExecWithResultFromCommand()
{
const string sql = "SELECT CustomerId FROM dbo.Customer WHERE CustomerId=@Key";
// Create command
var cmd = new SqlCommand
{
CommandText = sql
};
// Add a parameter to the command
var para = cmd.Parameters.Add("@Key", SqlDbType.Int);
para.Value = 1;
var result = _db.ExecWithResult(cmd);
Assert.IsNotNull(result);
Assert.IsFalse(string.IsNullOrEmpty(result));
}
[Test]
public void TestExecMultiple()
{
const string sql = "DELETE FROM Customer WHERE CustomerId=-99";
var commands = new List<DbCommand>();
var cmd = new SqlCommand(sql);
commands.Add(cmd);
cmd = new SqlCommand(sql);
commands.Add(cmd);
cmd = new SqlCommand(sql);
commands.Add(cmd);
var result = _db.ExecMultiple(commands);
Assert.IsTrue(result == 0);
}
}
There is as basic metadata infrastructure implemented to help developers to make best usage of Bodoconsult.Core.Database. This metadata infrastructure derived from IMetaDataService / BaseMetaDataService creates C# code files based on a certain SQL statement OR DBCommand object.
Here a sample how to use the IMetaDataService infrastructure:
const string conn = "Valid ADO.NET provider connection string";
const string sql = "SELECT * FROM \"Customer\";";
const string entityName = "Customer";
const string primaryKeyField = "CustomerId";
const string targetPath = @"D:\temp";
// Instanciate the metadata service
var service = SqlClientMetaDataService();
// Get the metadata for the SQL statement
service.GetMetaData(conn, entityName, sql, primaryKeyField);
// Export the code files
var result = service.ExportAll(targetPath);
As a result you will find four files with code in the folder D:\temp:
Bodoconsult (http://www.bodoconsult.de) is a Munich based software development company from Germany.
Robert Leisner is senior software developer at Bodoconsult. See his profile on http://www.bodoconsult.de/Curriculum_vitae_Robert_Leisner.pdf.