Stored Procedures
A Stored procedure is a database object that contains one or more SQL statements. In this article you will get an idea on how to create and use stored procedures and also highlighted on how to use stored procedure.
The first time a stored procedure is executed; each SQL statement it contains is compiled and executed to create an execution plan. Then procedure is stored in compiled form with in the database. For each subsequent execution, the SQL statements are executed without compilation, because they are precompiled. This makes the execution of stored procedure faster than the execution of an equivalent SQL script.
To execute a stored procedure you can use EXEC statement.
CREATE PROC spGetAuthorsAS SELECT * FROM AUTHORSWhen you run this script in Pubs database you will get the following message in Query Analyzer.
The Command(s) completed successfully.
Now you are ready to call/execute this procedure from Query Analyzer.
EXEC spGetAuthors This stored procedure creates a result set and returns to client.
You can call a stored procedure from within another stored procedure. You can even call a stored procedure from within itself. This technique is called a recursive call in programming. One of the advantages of using stored procedures is that application programmers and end users don’t need to know the structure of the database or how to code SQL. Another advantage of it is they can restrict and control access to a database.
Now days every one is familiar with SQL Injection Attack I think stored are the way this can be prevented from this malicious attack.
How to Create a Stored Procedure
When the CREATE PROCEDURE statement is executed, the syntax of the SQL statements within the procedure is checked. If you have made a coding error the system responds with an appropriate message and the procedure is not created.
The Syntax of the CREATE PROCEDURE statement
CREATE {PROC|PROCEDURE} Procedure_name[Parameter_declaration][WITH {RECOMPILE|ENCRYPTION|RECOMPILE, ENCRYPTION}]AS sql_statementsYou can use CREATE PROCEDURE statement to create a stored procedure in the database. The name of the stored procedure can be up to 128 characters and is typically prefixed with the letters sp.
If you look at the above options like AS, RECOMPILE, ENCRYPTION these are having some significance meaning to it.
The AS clause contains the SQL statements to be executed by the stored procedure. Since a stored procedure must consist of single batch.
Recompile is used when you want to compile the stored procedure every time when you call. This comes into the picture when one doesn’t want to catch the execution plan of stored procedure in the database. Encryption implies that you want to hide this code so that no one can see it. This is very important when you want to distribute the code across the globe or when you want to sell this code to other vendors. But make sure you have original copy it; because once you encrypted it no one can decrypt it.
Apart from the stored procedure that store in the database a permanent entity you can create stored procedure as per you session. That means as long the as the session is alive then the stored procedure is available in the memory means in the database.
Once the session ends the stored procedure is vanished this actually depends on what type of stored procedure you have chosen to create it.
Stored procedure provide for two different types of parameters: input parameters and Output Parameters. An input Parameter is passed to the stored procedure from the calling program. An output parameter is returned to the calling program from the stored procedure. You can identify an output parameter with the OUTPUT keyword. If this keyword is omitted the parameter is assumed to be an input parameter.
You can declare an input parameter so that it requires a value or so that its value is optional. The value of a required parameter must be passed to the stored procedure from the calling program on an error occurs. The value of an optional parameter doesn’t need to be passed from the calling program. You identify an optional parameter by assigning a default value to it. Then if a value isn’t passed from the calling program, the default value is used. You can also use output parameter as input parameters. That is you can pass a value from the calling program to the stored procedure through an output parameter. However is not advisable to pass parameters to Output parameters.
The syntax for declaring the parameters
@Parameter_name_1 data_type [= default] [OUTPUT][, @Parameter_name_2 data_type [= default] [OUTPUT]…Parameter declarations
@FirstName varchar(50) -- Input parameter that accepts a string.
@LastName varchar(50) -- Output Parameter that returns a string.
Create Procedure statement that uses an input and an output parameter.
CREATE PROC spGetAuthors @FirstName varchar(50), @LastName varchar(50)AS SELECT @LastName= ln_Name FROM AUTHORS WHERE fn_name = @FirstNameCreate procedure statement that uses an optional parameter.
CREATE PROC spGetAuthors @LastName varchar(50), @FirstName varchar(50) = ‘Rashmi Kant’AS SELECT @LastName= ln_Name FROM AUTHORS WHERE fn_name = @FirstNameA stored procedure can declare up to 2100 parameters. If you declare two or more parameters, the declarations must be separated by commas.
Calling stored procedure with Parameters
To pass parameter values to a stored procedure, you code the values in the EXEC statement after the procedure name. You can pass the parameters either by position or by name.
Passing parameters by Name:
Write the following code in Query Analyzer
DECLARE @LN VARCHAR(100)EXEC spGetAuthors @FirstName = ‘Rashmi Kant’, @LastName = @LN OUTPUTPassing parameters by Position:
DECLARE @LN VARCHAR(100)EXEC spGetAuthors @LN OUTPUT, ‘Rashmi Kant’In fact you can use both notations to pass parameters to stored procedures when you are calling. To pass parameters by position, list them in the same order as they appear in the CREATE PROCEDURE statement and separate them with commas. When you use this technique, you can omit optional parameters only if they are declared after any required parameters.
To use an output parameter in the calling program, you must declare a variable to store its value. Then you use the name of the variable in the EXEC statement and you code the OUTPUT keyword after it to identify it as an output parameter.
Handling error in stored procedure
In addition to passing output parameters back to the calling program, stored procedures also pass back a return value. By default, this value is zero. If an error occurs during the execution of a stored procedure you may want to pass a value back to the calling environment that indicates the error that occurred. To do that you use the RETURN statement and the @@ERROR function.
The @@ERROR system function returns the error number that’s generated by the execution of the most recent SQL statement. If the value is zero, it means that no error has occurred. The stored procedure listed below uses this function to test whether a DELETE statement that deletes a row from authors table is successful.
CREATE PROC spDeleteAuthors @FirstName varchar(50)AsDECLARE @ErrorVar intDELETE FROM AUTHORS WHERE fn_name = @FirstNameSET @ErrorVar = @ERRORIF @ErrorVar <> 0 BEGIN PRINT ‘An Unknown Error Occurred’ RETURN @ErrorVar ENDRETURN statement immediately exists the procedure and returns an optional integer value to the calling environment. If you don’t specify the value in this statement the return value is zero.
How to delete or change a stored procedure
You use DROP PROC statement to delete one or more stored procedures from database. To redefine the stored procedure you use ALTER PROC.
The syntax of the DROP PROC statement
DROP {PROC|PROCEDURE} Procedure_name [, …]The syntax of the ALTER PROC statement
ALTER {PROC|PROCEDURE} Procedure_name[Parameter_declaration][WITH {RECOMPILE|ENCRYPTION|RECOMPILE, ENCRYPTION}]AS sql_statementsWhen you delete a procedure any security permission that are assigned to the procedure are also deleted. In that case you will want to use the ALTER PROC statement to modify the procedure and preserve permissions.
Malatya
ReplyDeleteKırıkkale
Aksaray
Bitlis
Manisa
RİB0MX
F0DD0
ReplyDeleteBitci Güvenilir mi
Çerkezköy Koltuk Kaplama
Zonguldak Lojistik
Karaman Lojistik
Denizli Lojistik
Burdur Parça Eşya Taşıma
Çerkezköy Petek Temizleme
Kastamonu Lojistik
Etlik Parke Ustası
1D9EF
ReplyDeleteKarabük Şehir İçi Nakliyat
Bayburt Şehir İçi Nakliyat
Kayseri Şehir İçi Nakliyat
İzmir Evden Eve Nakliyat
Kilis Parça Eşya Taşıma
Ankara Şehirler Arası Nakliyat
Aksaray Lojistik
Yozgat Parça Eşya Taşıma
Afyon Evden Eve Nakliyat
09AD1
ReplyDeleteElazığ Evden Eve Nakliyat
Iğdır Evden Eve Nakliyat
order boldenone
turinabol for sale
İzmir Evden Eve Nakliyat
Hatay Evden Eve Nakliyat
Aksaray Evden Eve Nakliyat
order turinabol
buy sarms
93118
ReplyDeletebalıkesir kadınlarla rastgele sohbet
karabük sohbet
osmaniye kadınlarla sohbet
samsun görüntülü sohbet kadınlarla
kocaeli random görüntülü sohbet
ısparta bedava sohbet chat odaları
van sesli sohbet sesli chat
ısparta görüntülü canlı sohbet
düzce rastgele sohbet siteleri
E675B
ReplyDeleterastgele sohbet siteleri
bitlis telefonda kızlarla sohbet
tokat bedava sohbet siteleri
görüntülü sohbet kızlarla
isparta sesli sohbet uygulamaları
sivas telefonda rastgele sohbet
düzce canlı sohbet siteleri
sesli sohbet sitesi
çanakkale rastgele görüntülü sohbet uygulamaları
BC726
ReplyDeleteKripto Para Madenciliği Nedir
Görüntülü Sohbet
Sui Coin Hangi Borsada
Binance Hesap Açma
Görüntülü Sohbet Parasız
Shibanomi Coin Hangi Borsada
Kwai Takipçi Satın Al
Soundcloud Takipçi Satın Al
Twitter Retweet Satın Al
36E53
ReplyDeleteİbradı
Çobanlar
Karakoçan
Ardanuç
Korgan
Lice
Seydişehir
Çine
Aksaray