Skip to main content
BuyLog In
Business Intelligence Dashboard
Search in…
Docs > WinForms Dashboard > WinForms Designer > Create Dashboards in the WinForms Designer > Provide Data > SQL Data Source > Custom SQL Queries
All docs
V23.2
Business Intelligence Dashboard
Get Started
.NET Support
Basic Concepts and Terminology
Common Features
WinForms Dashboard
General Information
WinForms Designer
Add the Dashboard Designer Control
Register Default Data Connections
Create Dashboards in the WinForms Designer
Create a Dashboard
Provide Data
SQL Data Source
Connect to SQL Databases
Edit Connection Parameters
Use the Query Builder
Use the Query Editor
Manage SQL Queries
Filter Queries
Use Query Parameters
Custom SQL Queries
Stored Procedures
Custom Database Schema
Preview Data
Manage Timeout Limit
Save Connection Parameters
OLAP Data Source
Excel Data Source
Entity Framework Data Source
Object Data Source
JSON Data Source
XPO Data Source
Extract Data Source
Federated Data Source
MongoDB
Calculated Fields
Data Processing Modes
Add Dashboard Items
Bind Dashboard Items to Data
Dashboard Item Settings
Data Shaping
Interactivity
Appearance Customization
Data Analysis
Convert Dashboard Items
Dashboard Layout
Dashboard Items Layout
Undo and Redo Operations
Automatic and Manual Updates
Save a Dashboard
Printing and Exporting
UI Elements and Customization
Manage Dashboard State
Manage Data Inspector
WinForms Viewer
Web Dashboard
WPF Dashboard Viewer
Visual Studio Integration
Redistribution and Deployment
Video Tutorials
Migration Guides
Examples
End-User Documentation
.NET Framework API Reference
.NET API Reference
HTML JS Control API Reference
ASP.NET Client API Reference
Download CHM

Custom SQL Queries

  • 3 minutes to read

You can allow users to specify custom SQL queries in the Query Editor or Query Builder. To enable this capability, set the SqlWizardSettings.EnableCustomSql property to true. Use the DataSourceWizard property to get access to the DataSourceWizard’s settings.

Warning

The use of custom SQL queries can lead to inadvertent or unauthorized modifications to your data/database structure. Ensure that you follow best practices and implement the appropriate user read/write privileges at database level.

QueryEditorDialog_CustomSqlWithParameter

Note

Various SQL extensions can require a special character as the variable’s first character. For instance, this can be the “at” sign (@) for Transact-SQL or the colon (:) for PL/SQL. Insert the required character before the parameter name within the custom SQL query.

After you have specified the SQL query, click Next. On the next page, you can add query parameters and specify their settings. Refer to the following article for more information about different parameter types: Pass Query Parameters.

QueryEditorDialog_Page2

Custom SQL Query Validation

The Query Editor allows you to use only SELECT statements in the query. If necessary, you can disable query validation and allow users to include other statements in addition to SELECT statements in SQL queries. To accomplish this, follow the steps below:

The following events allow you to specify validation logic:

The following code snippet shows how to handle the DashboardDesigner.ValidateCustomSqlQuery event to restrict access to the Invoices table in a custom query.

Default Validation Section
Checks the validity of the custom query. If the custom query contains statements other than SELECT, or the query is specified incorrectly, the e.Valid property is set to false.
Custom Validation Section
Specifies the custom validation logic and the e.ExceptionMessage text.
// ...
dashboardDesigner1.ValidateCustomSqlQuery += dashboardDesigner1_ValidateCustomSqlQuery;
// ...
private void dashboardDesigner1_ValidateCustomSqlQuery(object sender, ValidateDashboardCustomSqlQueryEventArgs e) {
    // Default Validation
    if(!e.Valid) return;

    // Custom Validation
    if(e.CustomSqlQuery.Sql.Contains("Invoices"))
    {
        e.Valid = false;
        e.ExceptionMessage = "You do not have access to Invoices";
    }
}
See Also