public static async Task <List <PatientAdmissionModel> > SearchPatientForAdmission(PatientAdmissionModel patient) { List <PatientAdmissionModel> Patients = new List <PatientAdmissionModel>(); using (SqlConnection dbConn = new SqlConnection(connectionString)) { var query = "select p.ID, p.[Name], ip.Addmitted, r.Price from Patient p " + " join In_Patient ip on p.ID = ip.PatientID join Room r on r.ID = ip.RoomID " + " WHERE ip.Discharged = '1900-01-01 00:00:00.000' AND p.[Name] LIKE '%" + patient.Name + "%'"; SqlDataReader reader; try { dbConn.Open(); SqlCommand cmd = new SqlCommand(query, dbConn); reader = await cmd.ExecuteReaderAsync(); if (reader.HasRows) { while (reader.Read()) { PatientAdmissionModel patientItem = new PatientAdmissionModel(); patientItem.ID = reader.GetInt32(0); patientItem.Name = reader.GetString(1); patientItem.AdmittedDate = reader.GetDateTime(2); patientItem.RoomPrice = reader.GetDecimal(3); Patients.Add(patientItem); } } } catch (Exception ex) { reader = null; Console.WriteLine(ex); } finally { dbConn.Close(); } return(Patients); } }
public async Task <IHttpActionResult> SearchPatientsForAdmission(PatientAdmissionModel patient) { //CommonResponse validatedResponse = await AuthService.ValidateUserAndToken(); //if (!validatedResponse.IsError) //{ var patients = await PatientService.SearchPatientForAdmission(patient); if (patients.Count > 0) { return(Ok(patients)); } else { return(BadRequest("No Such Patient Exists!")); } //} //else //{ // return Unauthorized(); //} }