protected void Page_Load(object sender, EventArgs e) { BO_User user = (BO_User)Session["User"]; Userid = user.id; string ab = Request.QueryString["id"]; int doctorid = Convert.ToInt32(ab); Response.Write(Userid); Response.Write("Next" + ab); UserName = Session["fname"].ToString(); GetContacts(Userid); name.Text = Session["fname"].ToString(); p_id.Text = Session["id"].ToString(); age.Text = Session["age"].ToString(); gender.Text = Session["gender"].ToString(); address.Text = Session["address"].ToString(); number.Text = Session["phone#"].ToString(); email.Text = Session["email"].ToString(); string a = Session["id"].ToString(); string cs = ConfigurationManager.ConnectionStrings["SHP"].ConnectionString; SqlConnection con = new SqlConnection(cs); con.Open(); SqlCommand cmd = new SqlCommand("select img from tbl_signup where id='" + a + "'", con); SqlDataReader reader = cmd.ExecuteReader(); reader.Read(); string b = reader["img"].ToString(); reader.Close(); imgg.Src = "images/" + b; con.Close(); }
protected void Button1_Click1(object sender, EventArgs e) { // SqlCommand cmd = new SqlCommand(); SqlDataAdapter ada = new SqlDataAdapter(); DataSet ds = new DataSet(); string cs = ConfigurationManager.ConnectionStrings["SHP"].ConnectionString; SqlConnection con = new SqlConnection(cs); con.Open(); SqlCommand cmd = new SqlCommand("select * from tbl_signup where email=@user and password=@pass", con); cmd.Parameters.AddWithValue("@user", TextBox2.Text); cmd.Parameters.AddWithValue("@pass", TextBox1.Text); SqlDataAdapter da = new SqlDataAdapter(cmd); DataTable dt = new DataTable(); da.Fill(dt); if (dt.Rows.Count > 0) { SqlDataReader reader = cmd.ExecuteReader(); reader.Read(); int a = ((Int32)(reader["id"])); Session["id"] = a; string b = reader["fname"].ToString(); Session["fname"] = b; string c = reader["lname"].ToString(); Session["lname"] = c; string d = reader["email"].ToString(); Session["email"] = d; string f = reader["password"].ToString(); Session["password"] = f; string g = reader["cpassword"].ToString(); Session["cpassword"] = g; string h = reader["address"].ToString(); Session["address"] = h; string i = reader["age"].ToString(); Session["age"] = i; string j = reader["phone#"].ToString(); Session["phone#"] = j; string k = reader["gender"].ToString(); Session["gender"] = k; Label1.Text = "successfully Login"; string dd = reader["isactive"].ToString(); if (dd == "False") { Response.Write("Your Account is not activated"); reader.Close(); } else { BO_User user = new BO_User(); user.id = (int)reader["id"]; user.fname = reader["fname"].ToString(); user.lname = reader["lname"].ToString(); user.pass = reader["password"].ToString(); user.email = reader["email"].ToString(); user.image = reader["img"].ToString(); user.address = reader["address"].ToString(); user.age = reader["age"].ToString(); user.fone = reader["phone#"].ToString(); user.isAct = (bool)reader["isactive"]; user.gender = reader["gender"].ToString(); Session["User"] = user; reader.Close(); Response.Redirect("P profile.aspx?id=" + user.id); } } else { Label1.Text = "Invalid username or password"; } }