Utility to perform a parameterized SQL Query using ADO.NET

Here's a quick utility method to perform an ADO.NET SQL query. The main tricks are the use of a regular expression to parse out the parameters and the use of a queue to conveniently get the next parameter.

	using System.Data.SqlClient;
	using System.Text.RegularExpressions;
	using System.Collections;
	public static class SqlUtility
	{
	public static T ExecuteScalar<T>(string connStr, string query, params object[] queryParams)
	{
	using (var con = new SqlConnection(connStr))
	using (var cmd = new SqlCommand(query, con))
	{
	var queue = new Queue(queryParams);
	var matches = Regex.Matches(query, @"@\w+");
	foreach (Match match in matches)
	cmd.Parameters.AddWithValue(match.Value, queue.Dequeue());
	con.Open();
	T result = (T)cmd.ExecuteScalar();
	return result;
	}
	}
	}

view raw SqlUtility.cs hosted with ❤ by GitHub