我尝试使用SQLiteDatabase.update(),不起作用,现在使用execSQL(String);同样的错误。
所以我要展示我的代码,如果有人知道问题是什么,请帮助我。
public void AbreouCriaBD() {
try {
String nomeBanco = "Usuarios";
dataBase = openOrCreateDatabase(nomeBanco, MODE_WORLD_WRITEABLE, null);
String sql = "CREATE TABLE IF NOT EXISTS usuario" +
"(id INTEGER PRIMARY KEY, login TEXT, senha TEXT, saldoBanco float, saldoCredito float, saldoFuturos float)";
dataBase.execSQL(sql);
} catch(Exception erro) {
Alerta("Erro BD","BD Não criado");
}
}
public void UpdateBDPrincipal(double saldo) {
String saldoString = String.valueOf(saldo);
try {
dataBase.execSQL("UPDATE usuario SET 'saldoBanco'="+ saldoString +"WHERE 'login'= cristiano");
} catch(Exception error) {
Alerta("Erro","Erro no UPDATE");
}
}
public void Alerta(String title,String message) {
AlertDialog.Builder Sucesso = new AlertDialog.Builder(TelaSaldoCredito.this);
Sucesso.setTitle(title);
Sucesso.setMessage(message);
Sucesso.setNeutralButton("ok", null);
Sucesso.show();
}
它只是不起作用......请什么......
08-16 15:36:24.729: W/System.err(10855): java.lang.NullPointerException
08-16 15:36:24.739: W/System.err(10855): at com.bunchoffat.financejournal.TelaSaldoCredito.UpdateBDPrincipal(TelaSaldoCredito.java:121)
08-16 15:36:24.739: W/System.err(10855): at com.bunchoffat.financejournal.TelaSaldoCredito$1.onClick(TelaSaldoCredito.java:62)
08-16 15:36:24.739: W/System.err(10855): at android.view.View.performClick(View.java:2579)
08-16 15:36:24.739: W/System.err(10855): at android.view.View$PerformClick.run(View.java:9246)
08-16 15:36:24.739: W/System.err(10855): at android.os.Handler.handleCallback(Handler.java:587)
08-16 15:36:24.739: W/System.err(10855): at android.os.Handler.dispatchMessage(Handler.java:92)
08-16 15:36:24.739: W/System.err(10855): at android.os.Looper.loop(Looper.java:130)
08-16 15:36:24.739: W/System.err(10855): at android.app.ActivityThread.main(ActivityThread.java:3735)
08-16 15:36:24.739: W/System.err(10855): at java.lang.reflect.Method.invokeNative(Native Method)
08-16 15:36:24.739: W/System.err(10855): at java.lang.reflect.Method.invoke(Method.java:507)
08-16 15:36:24.759: W/System.err(10855): at com.android.internal.os.ZygoteInit$MethodAndArgsCaller.run(ZygoteInit.java:904)
08-16 15:36:24.759: W/System.err(10855): at com.android.internal.os.ZygoteInit.main(ZygoteInit.java:662)
08-16 15:36:24.759: W/System.err(10855): at dalvik.system.NativeStart.main(Native Method)
因为我可以看到错误是NullPointerException ...但是......我不知道为什么... dataBase上有数据,我很清楚,因为我可以登录系统,密码在dataBase上......所以我在这里错过了什么?
答案 0 :(得分:1)
您的查询中有错误。添加saldoString后,在WHERE语句之前没有空格。
public void UpdateBDPrincipal(double saldo){
String saldoString = String.valueOf(saldo);
try{
dataBase.execSQL("UPDATE usuario SET 'saldoBanco'="+ saldoString +" WHERE 'login'= cristiano");
} catch(Exception error) {
Alerta("Erro","Erro no UPDATE");
}
}
P.S。在以这种方式构建SQL字符串时要小心,它可能容易受到SQL注入攻击。在这个特定情况下它“有效”,因为saldo是双重的。但如果它是一个字符串,那么创建字符串而不转义或在''
<强>更新 另外请不要压制您的异常输出,这会使跟踪错误更加困难。
try {
} catch(Exception error) {
error.printStackTrace(); // Print error to the log
Alerta("Erro","Erro no UPDATE");
}
然后使用logcat来读取Android日志。如果您使用Eclipse进行调试,则Logcat是添加的一个窗口。如果您不在命令行中使用eclipse运行“adb logcat”来测试它(您的智能手机必须通过USB连接到您的计算机)。
更新2: 以下是如何使用SQLiteOpenHelper的示例。
public class MyServiceProvider extends ContentProvider {
private static final String TABLE_NAME = "usuario";
private SQLiteDatabase db;
@Override
public boolean onCreate() {
// Initialize the database and assign it to the private variable
MyDatabaseHelper sqlHelper = new MyDatabaseHelper(getContext());
db = sqlHelper.getReadableDatabase();
return (db == null)?false:true;
}
public void UpdateBDPrincipal(double saldo){
String saldoString = String.valueOf(saldo);
try {
dataBase.execSQL("UPDATE usuario SET 'saldoBanco'="+ saldoString +"WHERE 'login'= cristiano");
} catch(Exception error) {
Alerta("Erro","Erro no UPDATE");
}
}
}
class MyDatabaseHelper extends SQLiteOpenHelper {
private static final String LOG_TAG = "MyAppTag";
private static final String DB_NAME = "Usuarios";
private static final String TABLE_NAME = "usuario";
private static final int DATABASE_VERSION = 2;
public MyDatabaseHelper(Context context){
super(context, DB_NAME, null, DATABASE_VERSION);
}
@Override
public void onCreate(SQLiteDatabase db) {
String sql = "CREATE TABLE IF NOT EXISTS usuario" +
"(id INTEGER PRIMARY KEY, login TEXT, senha TEXT, saldoBanco float, saldoCredito float, saldoFuturos float)";
db.execSQL(sql);
}
@Override
public void onUpgrade(SQLiteDatabase db, int oldVersion, int newVersion) {
// Here you can perform updates when the database structure changes
// Begin transaction
db.beginTransaction();
try {
if(oldVersion<2){
// Upgrade database structure from Version 1 to 2
String alterTable = "ALTER ....";
db.execSQL(alterTable);
Log.i(LOG_TAG,"Successfully upgraded to Version 2");
}
db.setTransactionSuccessful();
} catch(Exception ex){
ex.printStackTrace();
} finally {
// Ends transaction
// If there was an error, the database won't be altered
db.endTransaction();
}
}
}
通过这种方式,您可以清楚地抽象数据库创建和加载以及构建或处理查询的方式(即通过覆盖更新,删除,查询方法)。
修改
使用SQLiteDatabase.update():
private String userName = "cristiano";
ContentValues values = new ContentValues();
values.put("saldoBanco", 150.23);
// define the WHERE clause but do not directly concat values into the string
// Use question marks (?) as place holders.
String whereClause = "WHERE login = ?";
// define a list of args. For each '?' used in WHERE clause, add one element to the array
String[] whereArgs = new String[] { userName };
int numRowsUpdated = db.update(TABLE_NAME, values, whereClause, whereArgs);
执行时,问号将替换为whereArgs中的元素。第一个问号将被whereArgs的第一个元素替换,第二个问号将被第二个whereArgs等替换。
通过这种方式,您可以轻松创建where子句并避免冒险SQL注入漏洞。