how to fix this code ?

Question

1.50/5 (2 votes)

See more:

i get this error Expected catch or finally in this code :

C#

using System;
using System.Collections.Generic;
using System.ComponentModel;
using System.Data;
using System.Drawing;
using System.Linq;
using System.Text;
using System.Windows.Forms;
using System.Data.SqlClient;

namespace movies
{
    public partial class Form1 : Form
    {

        
        string SqlStr;
        SqlCommand SqlCmd;
        SqlDataAdapter SqlDa;
        SqlDataReader SqlDr;


        public Form1()        
        {
            InitializeComponent();
        }

        private void button1_Click(object sender, EventArgs e)
        {
            Form2 form2 = new Form2();
            form2.Show();
        }

        private void button2_Click(object sender, EventArgs e)
        {
            SqlConnection CN = new SqlConnection("Data Source=(local);Initial Catalog=Movies;Integrated Security=True");

            try 
            
            {
                CN.Open();

                SqlStr = "Insert into Student( [Name]";
                SqlStr = SqlStr + " ,[Director]";
                SqlStr = SqlStr + " ,[Year]";
                SqlStr = SqlStr + " ,[Type]";
                SqlStr = SqlStr + " Values('" + TxtName.Text + "','" + TxtDirector.Text + "',";
                SqlStr = SqlStr + "'" + TxtYear.Text + "'  ,";
                SqlStr = SqlStr + "'" + TxtType.Text + "',";
                SqlCmd = new SqlCommand(SqlStr, CN);
                SqlCmd.ExecuteNonQuery();

                MessageBox.Show("successfully added.");
                Clear();
        }

        
            {
            SqlConnection CN = new SqlConnection("Data Source=(local);Initial Catalog=school;Integrated Security=True");
            try
            {
                CN.Open();
          
                SqlStr = "   select Name,Director,Year,Type ";
                SqlStr = SqlStr +" from Movies" ;
                SqlStr = SqlStr + " where Id_Movies='"+lab4.Text+"'  ";

                SqlCmd = new SqlCommand(SqlStr, CN);
                SqlDr = SqlCmd.ExecuteReader();
              
                SqlDr.Read();

                if (!SqlDr.HasRows)
                {
                    MessageBox.Show("found nothing.");
                }
                else
                {
                    TxtName.Text = SqlDr["Name"].ToString();
                    TxtDirector.Text = SqlDr["Director"].ToString();
                    TxtYear.Text = SqlDr["Year"].ToString();
                    TxtType.Text = SqlDr["Type"].ToString();
      
                }

            }

            finally
            {
                CN.Close();
            }

        }

        {
            SqlConnection CN = new SqlConnection("Data Source=(local);Initial Catalog=school;Integrated Security=True");

            try
            {
                CN.Open();

                SqlStr = "Update  Student set ";
                SqlStr = SqlStr + " Name='"+TxtName.Text+"' , ";
                SqlStr = SqlStr + " Director='" +  TxtDirector.Text + "' , ";
                SqlStr = SqlStr + " Year='" +  TxtYear.Text + "' , ";
                SqlStr = SqlStr + " Type='" +  TxtType. Text + "' , ";
                SqlStr = SqlStr + " where Id_Movies='" + TxtID.Text + "'  ";

                SqlCmd = new SqlCommand(SqlStr, CN);
                SqlCmd.ExecuteNonQuery();

                MessageBox.Show("Edited successfully.");
                Clear();


            }
            finally
            {
                CN.Close();
            }
        }

        {
        
        }
        }
        }
        }

how to fix it ?

Posted 22-Jul-15 4:49am

brandon1999

Updated 22-Jul-15 4:54am

PIEBALDconsult

v2

Add a Solution

Comments

PIEBALDconsult 22-Jul-15 10:54am

Format your code consistently and you will likely find that you have a BRACE out of place.

5 solutions

Solution 2

Quote:
SqlConnection CN = new SqlConnection("Data Source=(local);Initial Catalog=Movies;Integrated Security=True");

try

{
CN.Open();

SqlStr = "Insert into Student( [Name]";
SqlStr = SqlStr + " ,[Director]";
SqlStr = SqlStr + " ,[Year]";
SqlStr = SqlStr + " ,[Type]";
SqlStr = SqlStr + " Values('" + TxtName.Text + "','" + TxtDirector.Text + "',";
SqlStr = SqlStr + "'" + TxtYear.Text + "' ,";
SqlStr = SqlStr + "'" + TxtType.Text + "',";
SqlCmd = new SqlCommand(SqlStr, CN);
SqlCmd.ExecuteNonQuery();

MessageBox.Show("successfully added.");
Clear();
}

In the above code the catch (or finally) is missing.

Posted 22-Jul-15 4:58am

CPallini

Updated 22-Jul-15 5:15am

v2

Comments

brandon1999 22-Jul-15 11:05am

i copy and paste it into C# but i get error alot.

Sergey Alexandrovich Kryukov 22-Jul-15 11:15am

And?!

Programming is not done by copy and paste; you need to understand all you are doing.

—SA

PIEBALDconsult 22-Jul-15 11:16am

And you will continue to have trouble until you learn.

CPallini 22-Jul-15 12:54pm

[OT] Thank you for fixing it.

Sergey Alexandrovich Kryukov 22-Jul-15 11:14am

5ed.
—SA

CPallini 22-Jul-15 12:54pm

Thank you.

brandon1999 22-Jul-15 11:20am

i know that but i'm 15 and it's my first programm.

Sergey Alexandrovich Kryukov 22-Jul-15 11:45am

It's much better to gain confidence on simpler problems, not even necessarily simpler, but limited in scope. It's important to focus on fundamentals.
—SA

Solution 3

Just to add to what RyanDev correctly identified: If you get a problem like this, put your cursor on the open curly bracket after the try and press CTRL+] - it will move to the "Matching" bracket (even if they are wrong) so you can see where the compiler thinks it is.

Posted 22-Jul-15 5:00am

OriginalGriff

Solution 7

One more thing you need to fix: Always use parameters in your SQL statements instead of concatenating text directly to you SQL text. This helps you to handle different data type conversions etc but most importantly, it keeps you safe from SQL injections

For example your update currently looks like

C#

CN.Open();

SqlStr = "Update  Student set ";
SqlStr = SqlStr + " Name='"+TxtName.Text+"' , ";
SqlStr = SqlStr + " Director='" +  TxtDirector.Text + "' , ";
SqlStr = SqlStr + " Year='" +  TxtYear.Text + "' , ";
SqlStr = SqlStr + " Type='" +  TxtType. Text + "' , ";
SqlStr = SqlStr + " where Id_Movies='" + TxtID.Text + "'  ";

SqlCmd = new SqlCommand(SqlStr, CN);
SqlCmd.ExecuteNonQuery();

MessageBox.Show("Edited successfully.");
Clear();

As said you should use parameters so the code should be something like

C#

CN.Open();

SqlStr = @"UPDATE Student 
SET Name     = @name,
    Director = @director,
    Year     = @year,
    Type     = @type,
WHERE Id_Movies = @id";

SqlCmd = new SqlCommand(SqlStr, CN);
SqlCmd.Parameters.AddWithValue("@name", TxtName.Text);
SqlCmd.Parameters.AddWithValue("@director", TxtDirector.Text);
SqlCmd.Parameters.AddWithValue("@year", TxtYear.Text);
SqlCmd.Parameters.AddWithValue("@type", TxtType. Text);
SqlCmd.Parameters.AddWithValue("@id", TxtID.Text);
SqlCmd.ExecuteNonQuery();

MessageBox.Show("Edited successfully.");
Clear();

Of course it would make sense to first check that the inputs in the text boxes are valid. FOr example TxtID being numeric if that is the type of the field and so on.

For more information about parameters, see SqlParameter[^]

Posted 22-Jul-15 6:51am

Wendelius

Comments

brandon1999 22-Jul-15 13:28pm

ok , i change it . thank you.

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

ZurdoDev · Accepted Answer · 2015-07-22T04:57:00

Solution 1

You have a try with no catch or finally. It's right after Clear();, you have a closing brace and then an opening one.

Posted 22-Jul-15 4:57am

ZurdoDev

Comments

brandon1999 22-Jul-15 10:59am

i don't underestand. can u get me the right code ? please

ZurdoDev 22-Jul-15 11:02am

try should have an opening brace { and a closing brace }. Immediately after you should have either a catch or a finally. Your first try does not have a catch or finally after it.

brandon1999 22-Jul-15 11:12am

english is my second language and i don't know it well - please fix the code for me. thank you.

PIEBALDconsult 22-Jul-15 11:16am

No. We don't do that here. Call your mommy.

brandon1999 22-Jul-15 11:19am

ok just tell me again what should i do ? and what is this error?

ZurdoDev 22-Jul-15 11:21am

I can't tell you what to do. If you want the try then add a catch or a finally. If you don't want the try then remove it.
It's your choice.

Hydeen · Accepted Answer · 2015-07-22T05:23:00

This compiles just fine, however the "Clean()" method isnt included in your code so I just commented it out.

using System;
using System.Collections.Generic;
using System.ComponentModel;
using System.Data;
using System.Drawing;
using System.Linq;
using System.Text;
using System.Windows.Forms;
using System.Data.SqlClient;

namespace movies
{
    public partial class Form1 : Form
    {
        string SqlStr;
        SqlCommand SqlCmd;
        SqlDataAdapter SqlDa;
        SqlDataReader SqlDr;
        SqlConnection CN = new SqlConnection("Data Source=(local);Initial Catalog=Movies;Integrated Security=True");

        public Form1()
        {
            InitializeComponent();
        }

        private void button1_Click(object sender, EventArgs e)
        {
            Form2 form2 = new Form2();
            form2.Show();
        }

        private void button2_Click(object sender, EventArgs e)
        {
            try
            {
                CN.Open();

                SqlStr = "Insert into Student( [Name]";
                SqlStr = SqlStr + " ,[Director]";
                SqlStr = SqlStr + " ,[Year]";
                SqlStr = SqlStr + " ,[Type]";
                SqlStr = SqlStr + " Values('" + TxtName.Text + "','" + TxtDirector.Text + "',";
                SqlStr = SqlStr + "'" + TxtYear.Text + "'  ,";
                SqlStr = SqlStr + "'" + TxtType.Text + "',";
                SqlCmd = new SqlCommand(SqlStr, CN);
                SqlCmd.ExecuteNonQuery();

                MessageBox.Show("successfully added.");
                // Clear(); Not sure what this is?
            }
            catch (Exception) { }

            {
                try
                {
                    CN.Open();

                    SqlStr = "   select Name,Director,Year,Type ";
                    SqlStr = SqlStr + " from Movies";
                    SqlStr = SqlStr + " where Id_Movies='" + lab4.Text + "'  ";

                    SqlCmd = new SqlCommand(SqlStr, CN);
                    SqlDr = SqlCmd.ExecuteReader();

                    SqlDr.Read();

                    if (!SqlDr.HasRows)
                    {
                        MessageBox.Show("found nothing.");
                    }
                    else
                    {
                        TxtName.Text = SqlDr["Name"].ToString();
                        TxtDirector.Text = SqlDr["Director"].ToString();
                        TxtYear.Text = SqlDr["Year"].ToString();
                        TxtType.Text = SqlDr["Type"].ToString();

                    }

                }

                finally
                {
                    CN.Close();
                }
            }
            {
                try
                {

                    CN.Open();

                    SqlStr = "Update  Student set ";
                    SqlStr = SqlStr + " Name='" + TxtName.Text + "' , ";
                    SqlStr = SqlStr + " Director='" + TxtDirector.Text + "' , ";
                    SqlStr = SqlStr + " Year='" + TxtYear.Text + "' , ";
                    SqlStr = SqlStr + " Type='" + TxtType.Text + "' , ";
                    SqlStr = SqlStr + " where Id_Movies='" + TxtID.Text + "'  ";

                    SqlCmd = new SqlCommand(SqlStr, CN);
                    SqlCmd.ExecuteNonQuery();

                    MessageBox.Show("Edited successfully.");
                    // Clear(); Not sure what this is?	 
                }
                finally
                {
                    CN.Close();
                }
            }
        }
    }
}

how to fix this code ?

5 solutions

Solution 2

Solution 1

Solution 3

Solution 7

Solution 5

Add your solution here

Preview 0

Existing Members

...or Join us