Updating a specific entry

hello
i have a books table and in it the fields id name ammount
i need to update a certain row (like id=3) and reduce the ammount

i think i need to do a preparedstatment but can't figure out how to use it , any ideas ?

thanks to all helpers!

Welcome to CodeRanch!

Yes, you need to use a PreparedStatement. You also need a SQL query that does the update. What do you have so far?

well i did this , but don't know how to continue the line , i saw something with question marks in it in an example i saw online but don't think it suits my thing
pst=con.prepareStatement("UPDATE lib.books SET ")

can you break it down for me ? how does pstmt works
tnx a lot

Get More details about PreparedStatement from:

http://docs.oracle.com/javase/7/docs/api/java/sql/PreparedStatement.html

You may find the Java Tutorials easier to read. There is something about prepared statements in the “basics” section.

ok so if i get this right
let's say my line is
pst=con.prepareStatement("UPDATE lib.books SET ammount = ? WHERE id = '"+bid+"'");
i will have only one pst.set command after it ?

so for every "?" i will have a pst.set ?

twin yan wrote:ok so if i get this right
let's say my line is
pst=con.prepareStatement("UPDATE lib.books SET ammount = ? WHERE id = '"+bid+"'");
i will have only one pst.set command after it ?

so for every "?" i will have a pst.set ?

almost you do not need to include the ' in your varchar variables, so statements that work with lots of varchars are a LOT LOT easier
pst=con.prepareStatement("UPDATE lib.books SET ammount = ? WHERE id = ?");

so you will need 2 pst.set
pst.setDouble // these are off the top of my head and may not be the correct method names
pst.setString

ok i got it , but on your example what will be in the pst.setstring ?
the content of bid as a string ?

well in your statement you had id = 'bid', so i presumed it was a string. If it isn't a string use the appropriate method.

oh i c
thanks a lot for all the help

i'm still having an issue with the preparedstatment :\
PreparedStatement pst ; PreparedStatement pst2 ; int i; Date d=new Date(); String date= d.toString(); try{ Connection con=DriverManager.getConnection("jdbc:mysql://localhost:3306/mysql","",""); //con = DriverManager.getConnection("jdbc:sqlserver://localhost;" + "user=sa;password=HerongYang"); Statement stmt= con.createStatement(); ResultSet rs=stmt.executeQuery("SELECT MAX(loan_id) FROM lib.books_out "); rs.next(); if(rs.getInt(1)>0) i=rs.getInt(1)+3; else i=1; stmt.executeUpdate("INSERT INTO lib.books_out ( loan_id , book_id , client_id , date1 ) VALUES ("+i+","+bid+","+cid+",'"+date+"')"); ResultSet rs2=stmt.executeQuery("SELECT ammount FROM lib.books WHERE id = '"+bid+"'"); rs2.next(); pst=con.prepareStatement("UPDATE lib.books SET ammount = ? WHERE id = ?"); pst.setInt(1, rs2.getInt(1)); pst.setInt(2, bid); pst2=con.prepareStatement("UPDATE lib.clients SET allowed = ? WHERE id = ?"); pst2.setInt(1, 0); pst2.setInt(2, cid); pst.executeUpdate(); pst2.executeUpdate(); jLabel3.setText("** Book loan was successful"); } catch(Exception e){ System.out.println("Bad Connection"+e.getStackTrace()); }
the insert of a new row will work just fine but the pst won't change the row , am i doing something bad in there ?
tried debugging and no sql errors

why in this line
ResultSet rs2=stmt.executeQuery("SELECT ammount FROM lib.books WHERE id = '"+bid+"'");

are you placing quotes around bid if it is an integer?

this may not be your problem but it is A problem that is worth checking on

it should be:
ResultSet rs2=stmt.executeQuery("SELECT ammount FROM lib.books WHERE id = "+bid);

still doing the same thing , what's the diffrence between with ' and without it worked both ways

any ideas on what's wrong with my prepared statment ?

twin yan wrote:still doing the same thing , what's the diffrence between with ' and without it worked both ways

any ideas on what's wrong with my prepared statment ?

Ok ' are for strings, you are making something convert a striping to an Integer when it isn't required.
The syntax of your prepared statement looks fine to me, so we must start looking at other areas of concern.

I can see a few possible problems
1) does the select return data? You just say result.next Without first checking there is a row returned.
2) if date1 is a database date field just inserting a java default formatted date string could cause problems, much better to also make that a prepared statement then you can use the setDate method which is multi date format safe.
3) what values are returned from the select statement? Pop them into debugging statements to check the values, are they what you expect?
4) in your catch block simply use e.printStackTrace as that shows up red where ever the console output goes. You do know where console output goes?

found it !
it was supposed to be
pst.setInt(1, rs2.getInt(1)+1);

heh thanks for the fresh eyes

... in which case you should do instead:
UPDATE lib.books SET ammount = ammount + 1 WHERE id = ?
Also, I don't know the details of MySQL concurrency model, but allocating a new ID by selecting the maximum ID first and incrementing that may fail in multiuser environments - if two people happen to execute this code at exactly the same time, they may end up using identical ID for the new record. Hopefully a primary key constraint would prevent that, but if you use auto increment column in MySQL, the database can allocate new IDs for you, in a way which is both more effective and safe in multiuser environment.