CS 8630 Database Administration, Ajay Sitaram, David Odaibo
This presentation is the property of its rightful owner.
Sponsored Links
1 / 26

CS 8630 Database Administration, Ajay Sitaram, David Odaibo PowerPoint PPT Presentation


  • 56 Views
  • Uploaded on
  • Presentation posted in: General

CS 8630 Database Administration, Ajay Sitaram, David Odaibo. Web Technologies Front End And DBMS With ASP.NET Ajay Krithi Sitaram, David Odaibo CS8630 Database Adminstration. MED ASSIST. CS 8630 Database Administration, Ajay Sitaram, David Odaibo. MED ASSIST.

Download Presentation

CS 8630 Database Administration, Ajay Sitaram, David Odaibo

An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -

Presentation Transcript


Cs 8630 database administration ajay sitaram david odaibo

CS 8630 Database Administration, Ajay Sitaram, David Odaibo

Web Technologies Front End And DBMS With ASP.NET

Ajay Krithi Sitaram, David Odaibo

CS8630 Database Adminstration


Cs 8630 database administration ajay sitaram david odaibo

MED ASSIST

CS 8630 Database Administration, Ajay Sitaram, David Odaibo

MED ASSIST

Next Generation Hospital Management System


Cs 8630 database administration ajay sitaram david odaibo

ASP. Net Overview

CS 8630 Database Administration, Ajay Sitaram, David Odaibo

ASP. Net Overview

  • ASP. Net is a part of .Net framework that allows for the dynamic creation of web pages over HTTP.

  • Flexible language options like C# ,Vb.Net and Jscript.net.

  • Full access functionality to .Net framework which includes Database access, XML and performance monitoring and logging


Project features

Project Features

Project Features

CS 8630 Database Administration, Ajay Sitaram, David Odaibo

  • Security to application with login.

  • Security to Forms through Permissions.

  • Security to lists with permission.

  • Security to reports

  • AJAX for form validation and lists.

  • Easy to use web interface.

  • Relationship mapping in forms.


Cs 8630 database administration ajay sitaram david odaibo

ER Diagram

CS 8630 Database Administration, Ajay Sitaram, David Odaibo

ER Diagram


Cs 8630 database administration ajay sitaram david odaibo

CRUD Matrix

CS 8630 Database Administration, Ajay Sitaram, David Odaibo

CRUD Matrix


Cs 8630 database administration ajay sitaram david odaibo

Gantt Chart

CS 8630 Database Administration, Ajay Sitaram, David Odaibo


Cs 8630 database administration ajay sitaram david odaibo

Use Case Diagram

CS 8630 Database Administration, Ajay Sitaram, David Odaibo


Cs 8630 database administration ajay sitaram david odaibo

Form Description

CS 8630 Database Administration, Ajay Sitaram, David Odaibo


Cs 8630 database administration ajay sitaram david odaibo

Database Permission Table

CS 8630 Database Administration, Ajay Sitaram, David Odaibo


Cs 8630 database administration ajay sitaram david odaibo

Patient Table

CS 8630 Database Administration, Ajay Sitaram, David Odaibo


Cs 8630 database administration ajay sitaram david odaibo

Data Access ASP.NET

CS 8630 Database Administration, Dr. Guimaraes

  • ADO. Net (ActiveX Data Objects) – is a library of objects available in the .Net framework to work with databases.

  • SqlConnection – Used to connect to the database

  • SqlCommand – Used as a wrapper for SQL statements or Stored Procedure calls

  • SqlDataAdapter – Used to hold select, insert, update, delete, commands that are used to populate a Dataset and update the Database

  • SqlDataReader – Used to quickly read records from the database. It maintains an open connection to the database

  • DataSet – Filled by a SqlDataAdapter and contains a set of Datatables and relationships between the tables

  • DataTable – A container for rows/records read from the database

  • DataRow – A row in a DataTable


Cs 8630 database administration ajay sitaram david odaibo

Login Form

CS 8630 Database Administration, Dr. Guimaraes

  • Login Form Validates Users


Cs 8630 database administration ajay sitaram david odaibo

Users Table

CS 8630 Database Administration, Dr. Guimaraes

  • Stores information about valid system users

  • User Roles determine user privileges

  • Queried by login form to authenticate users

  • User Role is stored in the session object


Cs 8630 database administration ajay sitaram david odaibo

Login Button Event Handler

CS 8630 Database Administration, Dr. Guimaraes

protected void Button1_Click(object sender, EventArgs e)

{

SqlConnection conn = new SqlConnection("server=(local);database=PatientManagement;uid=david;pwd=pass");

SqlCommand myCommand;

SqlDataReader myDataReader;

String Name_String = usernameLogin.Text;

String Pass_String = userpassLogin.Text;

if (Name_String.Length > 0 && Pass_String.Length > 0)

{

try

{

conn.Open();

String queryS = "select UID, UserName,UserNameFirst, UserNameLast, UserRole, Password from Users where UserName ="+ "'"+Name_String+"'";

myCommand = new SqlCommand(queryS, conn);

myDataReader = myCommand.ExecuteReader();

if(myDataReader.HasRows)

{

// if the password returned from the database matches that provided by the user

// Save Users Name and Role in the session object

// Redirect to the main application Interface

// else

// Alert the user that the username of password is invalid

}

}

catch (SqlException SqEX) { messageLabel.Text = “Exception Occurred”;}

finally

{

conn.Close();

}

myDataReader.Close();

}

}

}


Cs 8630 database administration ajay sitaram david odaibo

Navigation Drop Down Lists

CS 8630 Database Administration, Dr. Guimaraes

(Create, View, Edit and Delete Records) (List managed entities) ( Search for specific records) (view reports) ( Administration)


Cs 8630 database administration ajay sitaram david odaibo

Staff Form

CS 8630 Database Administration, Dr. Guimaraes

Staff Form – View and Edit details about a staff member.


Cs 8630 database administration ajay sitaram david odaibo

Billable Item Form

CS 8630 Database Administration, Dr. Guimaraes

Billable Item Form – Create, View and Edit billable Item details.

Save Button – Insert or Update ?


Cs 8630 database administration ajay sitaram david odaibo

Associate Table Lookups

CS 8630 Database Administration, Dr. Guimaraes

  • Ajax and remote callbacks are used to suggest entities

  • Select Column that will be used with Like clause in SQL statement

  • Popup Grid lists suggested entities as user types


Cs 8630 database administration ajay sitaram david odaibo

Listing records

CS 8630 Database Administration, Dr. Guimaraes

Entities are listed in data grid, specific record can be click to view details


Cs 8630 database administration ajay sitaram david odaibo

Searching for records

CS 8630 Database Administration, Dr. Guimaraes

  • Search for specific records by specifying criteria


Cs 8630 database administration ajay sitaram david odaibo

Security

CS 8630 Database Administration, Dr. Guimaraes

  • Administrator can assign Read/Edit privileges to users based on roles

  • Settings are stored in permission table


Cs 8630 database administration ajay sitaram david odaibo

Permission Table

CS 8630 Database Administration, Dr. Guimaraes

  • Administration panel stores all security settings in permission table

  • All forms consult permission table to see if users role has permission to read or edit


Cs 8630 database administration ajay sitaram david odaibo

Reports

CS 8630 Database Administration, Dr. Guimaraes

  • Crystal Report used in asp. Net web form

  • Uses Report Viewer web control


Cs 8630 database administration ajay sitaram david odaibo

Conclusion

CS 8630 Database Administration, Dr. Guimaraes

Improvements to be made

  • Use more parameterized stored procedures to prevent SQL injection attacks

  • Create a data access layer and move database access code out of the code behind page class, use entity objects between code behind class and data access layer

Technologies Used include

  • ASP.NET ( Active Server Pages) Web tier

  • ADO.NET ( Active x Data Objects) Middle Tier database access

  • SQL server 2000

  • Crystal Reports

  • Ajax ( Asynchronous JavaScript and XML) callbacks to web server.


Cs 8630 database administration ajay sitaram david odaibo

Questions

CS 8630 Database Administration, Dr. Guimaraes

Questions


  • Login