protected void Button6_Click(object sender, EventArgs e) { try { dw.SetDataAdapter("SELECT First_name, Last_name, Height, weight, bloodgroup,Smoking,Alchol,Waterintake,Alchol_intake, Diet FROM Patient WHERE Patient_ID = @pid"); dw.SetDataAdapterParameters("pid", pid); DataTable dt5 = dw.GetDataTable(); txtfname.Text = dt5.Rows[0][0].ToString().Trim(); txtlname.Text = dt5.Rows[0][1].ToString().Trim(); txtgeight.Text = dt5.Rows[0][2].ToString().Trim(); txtweight.Text = dt5.Rows[0][3].ToString().Trim(); ddlbloodgroup.SelectedValue = dt5.Rows[0][4].ToString().Trim(); ddlsmoking.SelectedValue = dt5.Rows[0][5].ToString().Trim(); ddlalchol.SelectedValue = dt5.Rows[0][6].ToString(); txtwaterintake.Text = dt5.Rows[0][7].ToString().Trim(); txtalcholintake.Text = dt5.Rows[0][8].ToString().Trim(); ddldiet.SelectedValue = dt5.Rows[0][9].ToString().Trim(); } catch { } try { dw.SetDataAdapter("SELECT Address, Home_telephone_number, Mobile_number, PassportN, DOBy,DOBd,DOBm,NIC, Country, Province, ZIPcode, office_number from namal WHERE User_ID = @uid"); dw.SetDataAdapterParameters("uid", uid); DataTable dt6 = dw.GetDataTable(); txtaddress.Text = dt6.Rows[0][0].ToString().Trim(); txthome.Text = dt6.Rows[0][1].ToString().Trim(); txtmobile.Text = dt6.Rows[0][2].ToString().Trim(); txtpassno.Text = dt6.Rows[0][3].ToString().Trim(); ddlyear.SelectedValue = dt6.Rows[0][4].ToString().Trim(); ddldate.SelectedValue = dt6.Rows[0][5].ToString().Trim(); ddlmonth.SelectedValue = dt6.Rows[0][6].ToString().Trim(); txtnic.Text = dt6.Rows[0][7].ToString().Trim(); ddlcountry.SelectedIndex = Convert.ToInt32(dt6.Rows[0][8].ToString().Trim()); ddlprovince.SelectedIndex = Convert.ToInt32(dt6.Rows[0][9].ToString().Trim()); txtzip.Text = dt6.Rows[0][10].ToString().Trim(); txtoffice.Text = dt6.Rows[0][11].ToString().Trim(); }catch {} try{ dw.SetDataAdapter("select Name, Contact_number FROM Family WHERE Patient_ID = @pid"); dw.SetDataAdapterParameters("pid", pid); DataTable dt7 = dw.GetDataTable(); txtemergencyname.Text = dt7.Rows[0][0].ToString().Trim(); txtemergencycontact.Text = dt7.Rows[0][1].ToString().Trim(); } catch { } }
protected void Page_Load(object sender, EventArgs e) { try { Label6.Visible = false; // string session = Session["Docname"].ToString().Trim(); session1 = Session["docid"].ToString().Trim(); //string nu = GridView1.Rows.Count.ToString(); Label6.Text = session1; dw.SetCommand("SELECT COUNT(Appointmentdate_ID) from Appointment_date WHERE Doctor_ID=@docid"); dw.SetSqlCommandParameters("docid", Label6.Text.Trim()); lblNoSessions.Text = dw.GetSingleData(); dw.SetDataAdapter("SELECT Working_hospital,First_name,Specialized_area FROM Doctor WHERE Doctor_ID = @docid"); //dw.SetSqlCommandParameters("fname",session); dw.SetDataAdapterParameters("docid", session1); DataTable dt = dw.GetDataTable(); string hospital = (dt.Rows[0][0].ToString().Trim()) + " Hospital"; string fname = dt.Rows[0][1].ToString().Trim(); string specarea = dt.Rows[0][2].ToString().Trim(); // string hospital = dw.GetSingleData().ToString().Trim()+" Hospital"; lblName.Text = fname; lblSpecArea.Text = specarea; lblOther.Text = hospital; } catch { Response.Redirect("~/Default.aspx"); } }
protected void Page_Load(object sender, EventArgs e) { try { //string uid = Session["User_ID"].ToString(); //string uname = Session["User_name"].ToString(); //string pid = Session["Patient_ID"].ToString(); string ApptU_ID = Session["ApptU_ID"].ToString(); string ApptP_ID = Session["ApptPat_ID"].ToString(); dw.SetDataAdapter("SELECT First_name,Last_name,bloodgroup FROM Patient WHERE Patient_ID = @pid"); dw.SetDataAdapterParameters("pid", ApptP_ID); DataTable dt = dw.GetDataTable(); lblfname.Text = dt.Rows[0][0].ToString().Trim(); lbllname.Text = dt.Rows[0][1].ToString().Trim(); string bgroup = dt.Rows[0][2].ToString().Trim(); if (bgroup == "0") { bGroup.Text = "A+"; } else if (bgroup == "1") { bGroup.Text = "A-"; } else if (bgroup == "2") { bGroup.Text = "B+"; } else if (bgroup == "3") { bGroup.Text = "B-"; } else if (bgroup == "4") { bGroup.Text = "AB+"; } else if (bgroup == "5") { bGroup.Text = "AB-"; } else if (bgroup == "6") { bGroup.Text = "O+"; } else if (bgroup == "7") { bGroup.Text = "O-"; } lblPHN.Text = ApptP_ID; dw.SetDataAdapter("SELECT Home_telephone_number, Mobile_number, Address, NIC FROM namal WHERE User_ID = @uid"); dw.SetDataAdapterParameters("uid", ApptU_ID); DataTable dt1 = dw.GetDataTable(); lblhome.Text = dt1.Rows[0][0].ToString().Trim(); lblmobile.Text = dt1.Rows[0][1].ToString().Trim(); lblAddress.Text = dt1.Rows[0][2].ToString().Trim(); lblNIC.Text = dt1.Rows[0][3].ToString().Trim(); } catch { Response.Redirect("~/User/Admin/AdminDefault.aspx"); } }
protected void btnlogin_Click(object sender, EventArgs e) { string constring = ConfigurationManager.ConnectionStrings["DefaultConnection"].ConnectionString.ToString(); DataWorksClass dw = new DataWorksClass(constring); dw.SetCommand(@"select count(User_ID) from namal where User_name=@username and Password = @password"); dw.SetSqlCommandParameters("username", txtuname.Text.Trim()); dw.SetSqlCommandParameters("password", txtpassword.Text.Trim()); int count = Convert.ToInt32(dw.GetSingleData()); dw.SetCommand("SELECT MAX(id) FROM loginlog"); int i = Convert.ToInt32(dw.GetSingleData()) + 1; DateTime d = DateTime.Now; string date = d.ToString("yyyy-MM-dd"); string time = d.ToString("hh:mm:ss"); //validating the user if (count == 1) { dw.SetDataAdapter(@"select Type,User_name,User_ID from namal where User_name=@username and Password = @password"); dw.SetDataAdapterParameters("username", txtuname.Text.Trim()); dw.SetDataAdapterParameters("password", txtpassword.Text.Trim()); DataTable dt = dw.GetDataTable(); string uname = (dt.Rows[0][1].ToString()).Trim(); string type = (dt.Rows[0][0].ToString()).Trim(); string uid = (dt.Rows[0][2].ToString()).Trim(); Session["User_ID"] = uid; Session["type"] = type; dw.SetCommand("SELECT Patient_ID FROM Patient WHERE User_ID = @uid"); dw.SetSqlCommandParameters("uid", uid); string pid = dw.GetSingleData().Trim(); Session["Patient_ID"] = pid; //filling login log table dw.SetCommand("INSERT INTO loginlog (id,username,attempt,date,time,type) VALUES (@id,@uname,@attempt,@date,@time,@type)");//,, dw.SetSqlCommandParameters("id", i); dw.SetSqlCommandParameters("uname", txtuname.Text.Trim()); dw.SetSqlCommandParameters("attempt", "success"); dw.SetSqlCommandParameters("date", date); dw.SetSqlCommandParameters("time", time); dw.SetSqlCommandParameters("type", type); dw.Insert(); Session["User_name"] = uname; //checking the type of users switch (type) { case "doctor": dw.SetCommand("SELECT Doctor_ID FROM Doctor WHERE User_ID = @uid"); dw.SetSqlCommandParameters("uid", uid); string did = dw.GetSingleData().Trim(); Session["Doctor_ID"] = did; if (CheckBox1.Checked) { Session["ok"] = "go"; } else { Session["ok"] = null; } Session["User_name"] = uname; Response.Redirect("~/User/Doctor/Appointments.aspx"); break; case "patient": if (CheckBox1.Checked) { Session["ok"] = "go"; } else { Session["ok"] = null; } Session["User_name"] = uname; Response.Redirect("~/Default.aspx"); break; case "admin": dw.SetCommand("SELECT Admin_ID FROM Admin WHERE User_ID = @uid"); dw.SetSqlCommandParameters("uid", uid); string aid = dw.GetSingleData().Trim(); Session["Admin_ID"] = aid; if (CheckBox1.Checked) { Session["ok"] = "go"; } else { Session["ok"] = null; } Session["User_name"] = uname; Response.Redirect("~/User/Admin/AdminDefault.aspx"); break; case "nurse": dw.SetCommand("SELECT Nurse_ID FROM Nurse WHERE User_ID = @uid"); dw.SetSqlCommandParameters("uid", uid); string nid = dw.GetSingleData().Trim(); Session["Nurse_ID"] = nid; if (CheckBox1.Checked) { Session["ok"] = "go"; } else { Session["ok"] = null; } Session["User_name"] = uname; Response.Redirect("~/User/Nurse/NurseDefault.aspx"); break; } } else { //print a error msg when user try to login without providing user credentials and in here userlogs table not filling if (txtuname.Text == "" || txtpassword.Text == "") { Response.Write("<script language=javascript>alert('PLZ FILL THE USERNAME AND PASSWORD FIELDS!!!!')</script>"); } else if (txtuname.Text != "" || txtpassword.Text != "") { //filing loginlog table dw.SetCommand("INSERT INTO loginlog (id,username,attempt,date,time,type) VALUES (@id,@uname,@attempt,@date,@time,@type)");//,, dw.SetSqlCommandParameters("id", i); dw.SetSqlCommandParameters("uname", txtuname.Text.Trim()); dw.SetSqlCommandParameters("attempt", "not success"); dw.SetSqlCommandParameters("date", date); dw.SetSqlCommandParameters("time", time); dw.SetSqlCommandParameters("type", "unbound"); dw.Insert(); Response.Write("<script language=javascript>alert('WRONG CREDENTIALS!!!!')</script>"); } } }