protected void Button6_Click(object sender, EventArgs e)
{
try
{
dw.SetDataAdapter("SELECT First_name, Last_name, Height, weight, bloodgroup,Smoking,Alchol,Waterintake,Alchol_intake, Diet FROM Patient WHERE Patient_ID = @pid");
dw.SetDataAdapterParameters("pid", pid);
DataTable dt5 = dw.GetDataTable();
txtfname.Text = dt5.Rows[0][0].ToString().Trim();
txtlname.Text = dt5.Rows[0][1].ToString().Trim();
txtgeight.Text = dt5.Rows[0][2].ToString().Trim();
txtweight.Text = dt5.Rows[0][3].ToString().Trim();
ddlbloodgroup.SelectedValue = dt5.Rows[0][4].ToString().Trim();
ddlsmoking.SelectedValue = dt5.Rows[0][5].ToString().Trim();
ddlalchol.SelectedValue = dt5.Rows[0][6].ToString();
txtwaterintake.Text = dt5.Rows[0][7].ToString().Trim();
txtalcholintake.Text = dt5.Rows[0][8].ToString().Trim();
ddldiet.SelectedValue = dt5.Rows[0][9].ToString().Trim();
}
catch { }
try
{
dw.SetDataAdapter("SELECT Address, Home_telephone_number, Mobile_number, PassportN, DOBy,DOBd,DOBm,NIC, Country, Province, ZIPcode, office_number from namal WHERE User_ID = @uid");
dw.SetDataAdapterParameters("uid", uid);
DataTable dt6 = dw.GetDataTable();
txtaddress.Text = dt6.Rows[0][0].ToString().Trim();
txthome.Text = dt6.Rows[0][1].ToString().Trim();
txtmobile.Text = dt6.Rows[0][2].ToString().Trim();
txtpassno.Text = dt6.Rows[0][3].ToString().Trim();
ddlyear.SelectedValue = dt6.Rows[0][4].ToString().Trim();
ddldate.SelectedValue = dt6.Rows[0][5].ToString().Trim();
ddlmonth.SelectedValue = dt6.Rows[0][6].ToString().Trim();
txtnic.Text = dt6.Rows[0][7].ToString().Trim();
ddlcountry.SelectedIndex = Convert.ToInt32(dt6.Rows[0][8].ToString().Trim());
ddlprovince.SelectedIndex = Convert.ToInt32(dt6.Rows[0][9].ToString().Trim());
txtzip.Text = dt6.Rows[0][10].ToString().Trim();
txtoffice.Text = dt6.Rows[0][11].ToString().Trim();
}catch {}
try{
dw.SetDataAdapter("select Name, Contact_number FROM Family WHERE Patient_ID = @pid");
dw.SetDataAdapterParameters("pid", pid);
DataTable dt7 = dw.GetDataTable();
txtemergencyname.Text = dt7.Rows[0][0].ToString().Trim();
txtemergencycontact.Text = dt7.Rows[0][1].ToString().Trim();
}
catch { }
}
protected void Page_Load(object sender, EventArgs e)
{
try
{
Label6.Visible = false;
// string session = Session["Docname"].ToString().Trim();
session1 = Session["docid"].ToString().Trim();
//string nu = GridView1.Rows.Count.ToString();
Label6.Text = session1;
dw.SetCommand("SELECT COUNT(Appointmentdate_ID) from Appointment_date WHERE Doctor_ID=@docid");
dw.SetSqlCommandParameters("docid", Label6.Text.Trim());
lblNoSessions.Text = dw.GetSingleData();
dw.SetDataAdapter("SELECT Working_hospital,First_name,Specialized_area FROM Doctor WHERE Doctor_ID = @docid");
//dw.SetSqlCommandParameters("fname",session);
dw.SetDataAdapterParameters("docid", session1);
DataTable dt = dw.GetDataTable();
string hospital = (dt.Rows[0][0].ToString().Trim()) + " Hospital";
string fname = dt.Rows[0][1].ToString().Trim();
string specarea = dt.Rows[0][2].ToString().Trim();
// string hospital = dw.GetSingleData().ToString().Trim()+" Hospital";
lblName.Text = fname;
lblSpecArea.Text = specarea;
lblOther.Text = hospital;
}
catch {
Response.Redirect("~/Default.aspx");
}
}
protected void Page_Load(object sender, EventArgs e)
{
try
{
//string uid = Session["User_ID"].ToString();
//string uname = Session["User_name"].ToString();
//string pid = Session["Patient_ID"].ToString();
string ApptU_ID = Session["ApptU_ID"].ToString();
string ApptP_ID = Session["ApptPat_ID"].ToString();
dw.SetDataAdapter("SELECT First_name,Last_name,bloodgroup FROM Patient WHERE Patient_ID = @pid");
dw.SetDataAdapterParameters("pid", ApptP_ID);
DataTable dt = dw.GetDataTable();
lblfname.Text = dt.Rows[0][0].ToString().Trim();
lbllname.Text = dt.Rows[0][1].ToString().Trim();
string bgroup = dt.Rows[0][2].ToString().Trim();
if (bgroup == "0")
{
bGroup.Text = "A+";
}
else if (bgroup == "1")
{
bGroup.Text = "A-";
}
else if (bgroup == "2")
{
bGroup.Text = "B+";
}
else if (bgroup == "3")
{
bGroup.Text = "B-";
}
else if (bgroup == "4")
{
bGroup.Text = "AB+";
}
else if (bgroup == "5")
{
bGroup.Text = "AB-";
}
else if (bgroup == "6")
{
bGroup.Text = "O+";
}
else if (bgroup == "7")
{
bGroup.Text = "O-";
}
lblPHN.Text = ApptP_ID;
dw.SetDataAdapter("SELECT Home_telephone_number, Mobile_number, Address, NIC FROM namal WHERE User_ID = @uid");
dw.SetDataAdapterParameters("uid", ApptU_ID);
DataTable dt1 = dw.GetDataTable();
lblhome.Text = dt1.Rows[0][0].ToString().Trim();
lblmobile.Text = dt1.Rows[0][1].ToString().Trim();
lblAddress.Text = dt1.Rows[0][2].ToString().Trim();
lblNIC.Text = dt1.Rows[0][3].ToString().Trim();
}
catch {
Response.Redirect("~/User/Admin/AdminDefault.aspx");
}
}
protected void btnlogin_Click(object sender, EventArgs e)
{
string constring = ConfigurationManager.ConnectionStrings["DefaultConnection"].ConnectionString.ToString();
DataWorksClass dw = new DataWorksClass(constring);
dw.SetCommand(@"select count(User_ID) from namal where User_name=@username and Password = @password");
dw.SetSqlCommandParameters("username", txtuname.Text.Trim());
dw.SetSqlCommandParameters("password", txtpassword.Text.Trim());
int count = Convert.ToInt32(dw.GetSingleData());
dw.SetCommand("SELECT MAX(id) FROM loginlog");
int i = Convert.ToInt32(dw.GetSingleData()) + 1;
DateTime d = DateTime.Now;
string date = d.ToString("yyyy-MM-dd");
string time = d.ToString("hh:mm:ss");
//validating the user
if (count == 1)
{
dw.SetDataAdapter(@"select Type,User_name,User_ID from namal where User_name=@username and Password = @password");
dw.SetDataAdapterParameters("username", txtuname.Text.Trim());
dw.SetDataAdapterParameters("password", txtpassword.Text.Trim());
DataTable dt = dw.GetDataTable();
string uname = (dt.Rows[0][1].ToString()).Trim();
string type = (dt.Rows[0][0].ToString()).Trim();
string uid = (dt.Rows[0][2].ToString()).Trim();
Session["User_ID"] = uid;
Session["type"] = type;
dw.SetCommand("SELECT Patient_ID FROM Patient WHERE User_ID = @uid");
dw.SetSqlCommandParameters("uid", uid);
string pid = dw.GetSingleData().Trim();
Session["Patient_ID"] = pid;
//filling login log table
dw.SetCommand("INSERT INTO loginlog (id,username,attempt,date,time,type) VALUES (@id,@uname,@attempt,@date,@time,@type)");//,,
dw.SetSqlCommandParameters("id", i);
dw.SetSqlCommandParameters("uname", txtuname.Text.Trim());
dw.SetSqlCommandParameters("attempt", "success");
dw.SetSqlCommandParameters("date", date);
dw.SetSqlCommandParameters("time", time);
dw.SetSqlCommandParameters("type", type);
dw.Insert();
Session["User_name"] = uname;
//checking the type of users
switch (type)
{
case "doctor":
dw.SetCommand("SELECT Doctor_ID FROM Doctor WHERE User_ID = @uid");
dw.SetSqlCommandParameters("uid", uid);
string did = dw.GetSingleData().Trim();
Session["Doctor_ID"] = did;
if (CheckBox1.Checked)
{
Session["ok"] = "go";
}
else
{
Session["ok"] = null;
}
Session["User_name"] = uname;
Response.Redirect("~/User/Doctor/Appointments.aspx");
break;
case "patient":
if (CheckBox1.Checked)
{
Session["ok"] = "go";
}
else
{
Session["ok"] = null;
}
Session["User_name"] = uname;
Response.Redirect("~/Default.aspx");
break;
case "admin":
dw.SetCommand("SELECT Admin_ID FROM Admin WHERE User_ID = @uid");
dw.SetSqlCommandParameters("uid", uid);
string aid = dw.GetSingleData().Trim();
Session["Admin_ID"] = aid;
if (CheckBox1.Checked)
{
Session["ok"] = "go";
}
else
{
Session["ok"] = null;
}
Session["User_name"] = uname;
Response.Redirect("~/User/Admin/AdminDefault.aspx");
break;
case "nurse":
dw.SetCommand("SELECT Nurse_ID FROM Nurse WHERE User_ID = @uid");
dw.SetSqlCommandParameters("uid", uid);
string nid = dw.GetSingleData().Trim();
Session["Nurse_ID"] = nid;
if (CheckBox1.Checked)
{
Session["ok"] = "go";
}
else
{
Session["ok"] = null;
}
Session["User_name"] = uname;
Response.Redirect("~/User/Nurse/NurseDefault.aspx");
break;
}
}
else
{
//print a error msg when user try to login without providing user credentials and in here userlogs table not filling
if (txtuname.Text == "" || txtpassword.Text == "")
{
Response.Write("<script language=javascript>alert('PLZ FILL THE USERNAME AND PASSWORD FIELDS!!!!')</script>");
}
else if (txtuname.Text != "" || txtpassword.Text != "")
{
//filing loginlog table
dw.SetCommand("INSERT INTO loginlog (id,username,attempt,date,time,type) VALUES (@id,@uname,@attempt,@date,@time,@type)");//,,
dw.SetSqlCommandParameters("id", i);
dw.SetSqlCommandParameters("uname", txtuname.Text.Trim());
dw.SetSqlCommandParameters("attempt", "not success");
dw.SetSqlCommandParameters("date", date);
dw.SetSqlCommandParameters("time", time);
dw.SetSqlCommandParameters("type", "unbound");
dw.Insert();
Response.Write("<script language=javascript>alert('WRONG CREDENTIALS!!!!')</script>");
}
}
}
