Coding of the Project Online Crime Reporting System

Page - 65

ASP coding for Case

<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true"

CodeFile="Case.aspx.cs" Inherits="Case" %>

jQuery("#MainContent_case_date").datepicker({

changeMonth: true,

<% if (Convert.ToInt32(Session["login_level"]) == 1) { %>

Page - 66

<div>

<label for="email">Select User<span>*</span></label>

<asp:DropDownList ID="case_user_id" runat="server" CssClass="select-box"

style="width:300px;"></asp:DropDownList>

</div>

<div>

<label for="email">Select Employee<span>*</span></label>

<asp:DropDownList ID="case_employee_id" runat="server" CssClass="select-box"

style="width:300px;"></asp:DropDownList>

</div>

<div>

<label for="email">Select Status<span>*</span></label>

<asp:DropDownList ID="case_status_id" runat="server" CssClass="select-box"

style="width:300px;" required></asp:DropDownList>

Page - 67

</div>

<div>

<asp:TextBox ID="case_id" runat="server" Visible="False"></asp:TextBox>

<asp:Button ID="Button1" runat="server" Text="Save Case"

public partial class Case : System.Web.UI.Page {

protected void Page_Load(object sender, EventArgs e)

Page - 68

if (!Page.IsPostBack && !String.IsNullOrEmpty(Request.QueryString["case_id"])) {

MySqlDataAdapter adp = new MySqlDataAdapter(command);

Page - 69

adp.Fill(dt);

DataRow dr = dt.Rows[0];

case_id.Text = Convert.ToString(dr["case_id"]);

case_user_id.Text = Convert.ToString(dr["case_user_id"]);

case_title.Text = Convert.ToString(dr["case_title"]);

case_employee_id.Text = Convert.ToString(dr["case_employee_id"]);

case_status_id.Text = Convert.ToString(dr["case_status_id"]);

case_date.Text = Convert.ToString(dr["case_date"]);

case_description.Text = Convert.ToString(dr["case_description"]);

cn.con.Close();

}

protected void save_data_Click(object sender, EventArgs e) {

`case_status_id` = @3, `case_title` = @4, `case_date`= @5, `case_description` = @6 WHERE

`case_id` = @7;";

} else {

SQL = "INSERT INTO `case` (`case_user_id`, `case_employee_id`, `case_status_id`,

`case_title`, `case_date`, `case_description`) VALUES (@1, @2, @3, @4, @5, @6);";

}

MySqlCommand insertCommand = new MySqlCommand(SQL, cn.con);

Page - 70

insertCommand.CommandType = CommandType.Text;

if (Convert.ToInt32(Session["login_level"]) == 3)

insertCommand.Parameters.AddWithValue("@1", case_user_id.Text);

insertCommand.Parameters.AddWithValue("@2", case_employee_id.Text);

insertCommand.Parameters.AddWithValue("@3", case_status_id.Text);

insertCommand.Parameters.AddWithValue("@4", case_title.Text);

insertCommand.Parameters.AddWithValue("@5", case_date.Text);

insertCommand.Parameters.AddWithValue("@6", case_description.Text);

insertCommand.Parameters.AddWithValue("@7", case_id.Text);

insertCommand.ExecuteNonQuery();

cn.con.Close();

Response.Redirect("Case-report.aspx");

}

private void FillCustomerRecord() {

DBConnection cn = new DBConnection();

MySqlCommand cmd;

cmd = new MySqlCommand("Select * From customer", cn.con);

cmd.CommandType = CommandType.Text;

Page - 71

MySqlDataAdapter sda = new MySqlDataAdapter(cmd);

DataTable dt = new DataTable();

sda.Fill(dt);

case_user_id.DataValueField = "customer_id";

case_user_id.DataTextField = "customer_name";

case_user_id.DataSource = dt;

case_user_id.DataBind();

case_user_id.Items.Insert(0, "Please Select");

}

private void FillEmployeeRecord() {

case_employee_id.DataValueField = "user_id";

case_employee_id.DataTextField = "user_name";

case_employee_id.DataSource = dt;

case_employee_id.DataBind();

case_employee_id.Items.Insert(0, "Please Select");

}

private void FillStatusRecord() {

Page - 72

case_status_id.DataValueField = "status_id";

case_status_id.DataTextField = "status_name";

case_status_id.DataSource = dt;

case_status_id.DataBind();

case_status_id.Items.Insert(0, "Please Select");

} }

ASP coding for case-details

<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true"

CodeFile="Case-details.aspx.cs" Inherits="Case" %>

jQuery("#MainContent_case_date").datepicker({

changeMonth: true,

Page - 73

System.Data.DataTable dt = this.showDataListing();

System.Data.DataRow row = dt.Rows[0];

<h2>Details of Case <b><%=row["case_id"].ToString() %></b></h2>

<table>

Page - 74

Page - 75

public partial class Case : System.Web.UI.Page {

protected void Page_Load(object sender, EventArgs e) {

}

public DataTable showDataListing() {

DBConnection cn = new DBConnection();

String id = Request.QueryString["case_id"];

String SQL = "SELECT * FROM `case`,`customer`,`user`,`status` WHERE case_user_id = customer_id AND case_status_id = status_id AND case_employee_id = user_id AND case_id = '" + id + "'";

Page - 76

}

ASP coding for Case-Report

<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true"

CodeFile="Case-report.aspx.cs" Inherits="Case_report" %>

<h2>All of the Case Listing</h2>

<asp:GridView ID="DataReportListing" runat="server" AutoGenerateColumns="false">

Page - 77

Page - 78

public partial class Case_report : System.Web.UI.Page {

protected void Page_Load(object sender, EventArgs e) { case_employee_id = user_id AND case_status_id = status_id AND case_user_id = customer_id";

if (Convert.ToInt32(Session["login_level"]) == 3) {

SQL = "SELECT * FROM `case`, `customer`,`user`,`status` WHERE case_employee_id

= user_id AND case_status_id = status_id AND case_user_id = customer_id AND customer_id

='"+ Session["users_id"] + "'";

Page - 79

protected void deleteData_Click(object sender, EventArgs e) {

LinkButton btn = (LinkButton)sender;

DBConnection cn = new DBConnection();

String SQL = "DELETE FROM case WHERE case_id = @0";

MySqlCommand cmd = new MySqlCommand(SQL, cn.con);

cmd.Parameters.AddWithValue("@0", btn.CommandArgument);

cmd.ExecuteNonQuery();

showDataListing();

}

protected void editData_Click(object sender, EventArgs e) {

} }

ASP coding for Case-Search

Page - 80

<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true"

CodeFile="Case-search.aspx.cs" Inherits="Case_report" %>

<td> <asp:Button ID="Button1" runat="server" Text="Search Case"

onclick="search_data_Click" style="height:30px; padding:3px;"/></td>

</tr>

</table>

<asp:GridView ID="DataReportListing" runat="server" AutoGenerateColumns="false">

<asp:BoundField DataField="case_id" HeaderText="ID" />

<asp:BoundField DataField="case_title" HeaderText="Case Title" />

<asp:BoundField DataField="customer_name" HeaderText="Filed By" />

<asp:BoundField DataField="user_name" HeaderText="Handling By"/>

Page - 81

<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true"

CodeFile="Case-search.aspx.cs" Inherits="Case_report" %>

Page - 82

<td> <asp:Button ID="Button1" runat="server" Text="Search Case"

onclick="search_data_Click" style="height:30px; padding:3px;"/></td>

</tr>

</table>

<asp:GridView ID="DataReportListing" runat="server" AutoGenerateColumns="false">

Page - 83

<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true"

CodeFile="Change-password.aspx.cs" Inherits="Designation" %>

<% if (Request.QueryString["msg"] != "" && Request.QueryString["msg"] != null) { %>

<%} %>

<h2>Change Your Password</h2>

<div>

<label for="email">Old Password<span>*</span></label>

Page - 84

<asp:TextBox ID="designation_id" runat="server" Visible="False"></asp:TextBox>

<asp:Button ID="changePassword" runat="server" Text="Change Password"

Page - 85

public partial class Designation : System.Web.UI.Page {

protected void Page_Load(object sender, EventArgs e) {

protected void changePassword_Click(object sender, EventArgs e) {

DBConnection cn = new DBConnection();

String SQL = "select * from user where user_id = @userID";

MySqlCommand cmd = new MySqlCommand(SQL, cn.con);

cmd.Parameters.AddWithValue("@userID", Session["users_id"]);

MySqlDataAdapter da = new MySqlDataAdapter(cmd);

DataTable dt = new DataTable();

da.Fill(dt);

Page - 86

Page - 87

ASP coding for Crime

<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true"

CodeFile="Crime.aspx.cs" Inherits="Crime" %>

jQuery("#MainContent_crime_date").datepicker({

changeMonth: true,

<h2>Add Ciminal Crime</h2>

<div>

Page - 88

<label for="email">Select Criminal<span>*</span></label>

<asp:DropDownList ID="crime_criminal_id" runat="server" CssClass="select-box"

style="width:300px;" required></asp:DropDownList>

<asp:TextBox ID="crime_id" runat="server" Visible="False"></asp:TextBox>

<asp:Button ID="Button1" runat="server" Text="Save Crime"

onclick="save_data_Click" />

</div>

Page - 89

</main>

</div>

</asp:Content>

C# coding for Crime

using System;

using System.Collections.Generic;

using System.Linq;

using System.Web;

using System.Web.UI;

using System.Web.UI.WebControls;

using MySql.Data.MySqlClient;

using System.Data;

public partial class Crime : System.Web.UI.Page {

protected void Page_Load(object sender, EventArgs e) {

String id;

if (Convert.ToString(Session["login"]) != "1")

Page - 90

{

Response.Redirect("Login.aspx?msg=Login to your accout. To access the page !!!");

}

if (!Page.IsPostBack && !String.IsNullOrEmpty(Request.QueryString["crime_id"])) {

MySqlDataAdapter adp = new MySqlDataAdapter(command);

adp.Fill(dt);

DataRow dr = dt.Rows[0];

crime_id.Text = Convert.ToString(dr["crime_id"]);

crime_criminal_id.Text = Convert.ToString(dr["crime_criminal_id"]);

crime_title.Text = Convert.ToString(dr["crime_title"]);

Page - 91

crime_law_no.Text = Convert.ToString(dr["crime_law_no"]);

crime_date.Text = Convert.ToString(dr["crime_date"]);

crime_description.Text = Convert.ToString(dr["crime_description"]);

cn.con.Close();

}

protected void save_data_Click(object sender, EventArgs e) {

`crime_law_no` = @3, `crime_date` = @4, `crime_description` = @5 WHERE `crime_id` = @6;";

} else {

SQL = "INSERT INTO `crime` (`crime_criminal_id`, `crime_title`, `crime_law_no`,

`crime_date`, `crime_description`) VALUES (@1, @2, @3, @4, @5);";

}

MySqlCommand insertCommand = new MySqlCommand(SQL, cn.con);

insertCommand.CommandType = CommandType.Text;

insertCommand.Parameters.AddWithValue("@1", crime_criminal_id.Text);

insertCommand.Parameters.AddWithValue("@2", crime_title.Text);

insertCommand.Parameters.AddWithValue("@3", crime_law_no.Text);

insertCommand.Parameters.AddWithValue("@4", crime_date.Text);

insertCommand.Parameters.AddWithValue("@5", crime_description.Text);

Page - 92

insertCommand.Parameters.AddWithValue("@6", crime_id.Text);

insertCommand.ExecuteNonQuery();

cn.con.Close();

Response.Redirect("Crime-report.aspx");

}

private void FillCriminalRecord() {

crime_criminal_id.DataValueField = "criminal_id";

crime_criminal_id.DataTextField = "criminal_name";

crime_criminal_id.DataSource = dt;

crime_criminal_id.DataBind();

crime_criminal_id.Items.Insert(0, "Please Select");

} }

ASP coding for Crime-Report

Page - 93

<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true"

CodeFile="Crime-report.aspx.cs" Inherits="Crime_report" %>

<h2>Criminal Crime Records</h2>

<asp:GridView ID="DataReportListing" runat="server" AutoGenerateColumns="false">

<asp:BoundField DataField="crime_id" HeaderText="ID" />

<asp:BoundField DataField="criminal_name" HeaderText="Criminal Name" />

<asp:BoundField DataField="crime_date" HeaderText="Crime Date"/>

Page - 94

public partial class Crime_report : System.Web.UI.Page {

protected void Page_Load(object sender, EventArgs e) {

if (Convert.ToString(Session["login"]) != "1") {

Response.Redirect("Login.aspx?msg=Login to your accout. To access the page !!!");

Page - 95

String SQL = "SELECT * FROM crime, criminal WHERE crime_criminal_id = criminal_id";

if(!String.IsNullOrEmpty(Request.QueryString["criminal_id"])) {

protected void deleteData_Click(object sender, EventArgs e) {

LinkButton btn = (LinkButton)sender;

Page - 96

DBConnection cn = new DBConnection();

String SQL = "DELETE FROM crime WHERE crime_id = @0";

MySqlCommand cmd = new MySqlCommand(SQL, cn.con);

cmd.Parameters.AddWithValue("@0", btn.CommandArgument);

cmd.ExecuteNonQuery();

showDataListing();

}

protected void editData_Click(object sender, EventArgs e) {

} }

ASP coding for Criminal

<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true"

CodeFile="Criminal.aspx.cs" Inherits="Teacher" %>

jQuery("#MainContent_criminal_dob").datepicker({

changeMonth: true, changeYear: true, yearRange: "-50:-18",

Page - 97

<h2>Add Criminal Record</h2>

Page - 98

<asp:DropDownList ID="criminal_city" runat="server" CssClass="select-box"

style="width:300px;" required></asp:DropDownList>

</div>

<label for="email">State<span>*</span></label>

<asp:DropDownList ID="criminal_state" runat="server" CssClass="select-box"

style="width:300px;" required></asp:DropDownList>

</div>

Page - 99

<label for="email">Country<span>*</span></label>

<asp:DropDownList ID="criminal_country" runat="server" CssClass="select-box"

style="width:300px;" required></asp:DropDownList>

<asp:TextBox ID="criminal_details" runat="server" required TextMode="MultiLine"

style="width:300px; height:100px"></asp:TextBox>

</div>

<div>

<asp:TextBox ID="upload_file" runat="server" Visible="False"></asp:TextBox>

<asp:TextBox ID="criminal_id" runat="server" Visible="False"></asp:TextBox>

<asp:Button ID="Button1" runat="server" Text="Save Criminal"

</div>

</main>

</div>

Page - 100

public partial class Teacher : System.Web.UI.Page {

protected void Page_Load(object sender, EventArgs e) {

String id;

if (!Page.IsPostBack && !String.IsNullOrEmpty(Request.QueryString["criminal_id"])) {

Page - 101

MySqlDataAdapter adp = new MySqlDataAdapter(command);

adp.Fill(dt);

DataRow dr = dt.Rows[0];

criminal_id.Text = Convert.ToString(dr["criminal_id"]);

criminal_name.Text = Convert.ToString(dr["criminal_name"]);

criminal_add1.Text = Convert.ToString(dr["criminal_add1"]);

criminal_add2.Text = Convert.ToString(dr["criminal_add2"]);

criminal_city.Text = Convert.ToString(dr["criminal_city"]);

criminal_state.Text = Convert.ToString(dr["criminal_state"]);

criminal_country.Text = Convert.ToString(dr["criminal_country"]);

criminal_email.Text = Convert.ToString(dr["criminal_email"]);

criminal_mobile.Text = Convert.ToString(dr["criminal_mobile"]);

criminal_gender.Text = Convert.ToString(dr["criminal_gender"]);

criminal_dob.Text = Convert.ToString(dr["criminal_dob"]);

criminal_details.Text = Convert.ToString(dr["criminal_details"]);

Page - 102

upload_file.Text = Convert.ToString(dr["criminal_photo"]);

cn.con.Close();

}

protected void save_data_Click(object sender, EventArgs e) {

fileName = Path.GetFileName(criminal_photo.PostedFile.FileName);

criminal_photo.PostedFile.SaveAs(Server.MapPath("uploads/") + fileName);

}

if (!String.IsNullOrEmpty(criminal_id.Text)) {

SQL = "UPDATE `criminal` SET `criminal_photo` = @17, `criminal_name` = @5,

`criminal_add1` = @6, `criminal_add2` = @7, `criminal_city` = @8, `criminal_state` = @9,

`criminal_country` = @10, `criminal_email` = @11, `criminal_mobile` = @12, `criminal_gender`

= @13, `criminal_dob` = @14, `criminal_details` = @15 WHERE `criminal_id` = @16";

} else {

SQL = "INSERT INTO `criminal` (`criminal_name`, `criminal_add1`, `criminal_add2`,

`criminal_city`, `criminal_state`, `criminal_country`, `criminal_email`, `criminal_mobile`,

`criminal_gender`, `criminal_dob`, `criminal_details`, `criminal_photo`) VALUES (@5, @6, @7,

@8, @9, @10, @11, @12, @13, @14, @15, @17)";

Page - 103

}

MySqlCommand insertCommand = new MySqlCommand(SQL, cn.con);

insertCommand.CommandType = CommandType.Text;

insertCommand.Parameters.AddWithValue("@5", criminal_name.Text);

insertCommand.Parameters.AddWithValue("@6", criminal_add1.Text);

insertCommand.Parameters.AddWithValue("@7", criminal_add2.Text);

insertCommand.Parameters.AddWithValue("@8", criminal_city.Text);

insertCommand.Parameters.AddWithValue("@9", criminal_state.Text);

insertCommand.Parameters.AddWithValue("@10", criminal_country.Text);

insertCommand.Parameters.AddWithValue("@11", criminal_email.Text);

insertCommand.Parameters.AddWithValue("@12", criminal_mobile.Text);

insertCommand.Parameters.AddWithValue("@13", criminal_gender.Text);

insertCommand.Parameters.AddWithValue("@14", criminal_dob.Text);

insertCommand.Parameters.AddWithValue("@15", criminal_details.Text);

insertCommand.Parameters.AddWithValue("@17", fileName);

insertCommand.Parameters.AddWithValue("@16", criminal_id.Text);

insertCommand.ExecuteNonQuery();

cn.con.Close();

Response.Redirect("Criminal-report.aspx?msg=Criminal record saved successfully !!! ");

}

Page - 104

criminal_city.DataTextField = "city_name";

criminal_city.DataSource = dt;

criminal_city.DataBind();

criminal_city.Items.Insert(0, "Please Select");

}

private void FillStateListing() {

criminal_state.DataValueField = "state_id";

criminal_state.DataTextField = "state_name";

criminal_state.DataSource = dt;

criminal_state.DataBind();

criminal_state.Items.Insert(0, "Please Select");

}

private void FillCountryListing()

Page - 105

criminal_country.DataValueField = "country_id";

criminal_country.DataTextField = "country_name";

criminal_country.DataSource = dt;

criminal_country.DataBind();

criminal_country.Items.Insert(0, "Please Select");

} }

ASP coding for Criminal-Report

<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true"

CodeFile="Criminal-report.aspx.cs" Inherits="Criminal_report" %>

Page - 106

<h2>Criminal Report</h2>

<asp:GridView ID="DataReportListing" runat="server" AutoGenerateColumns="false">

<asp:BoundField DataField="criminal_mobile" HeaderText="Contact No."/>

<asp:TemplateField>

<asp:HyperLink runat="server" NavigateUrl='<%# "Criminal.aspx?criminal_id=" + Eval("criminal_id") %>'>Details</asp:HyperLink>|

<asp:HyperLink runat="server" NavigateUrl='<%# "Crime-report.aspx?criminal_id=" + Eval("criminal_id") %>'>Crimes</asp:HyperLink>|

<asp:LinkButton ID="deleteData" onclick="deleteData_Click" runat="server"

CommandArgument='<%# Eval("criminal_id") %>'>Delete</asp:LinkButton>

</ItemTemplate>

Page - 107

public partial class Criminal_report : System.Web.UI.Page {

protected void Page_Load(object sender, EventArgs e) {

if (Convert.ToString(Session["login"]) != "1") {

Page - 108

protected void deleteData_Click(object sender, EventArgs e) {

LinkButton btn = (LinkButton)sender;

DBConnection cn = new DBConnection();

String SQL = "DELETE FROM criminal WHERE criminal_id = @0";

MySqlCommand cmd = new MySqlCommand(SQL, cn.con);

cmd.Parameters.AddWithValue("@0", btn.CommandArgument);

cmd.ExecuteNonQuery();

Page - 109

showDataListing();

}

protected void editData_Click(object sender, EventArgs e) {

} }

ASP coding for Customer

<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true"

CodeFile="Customer.aspx.cs" Inherits="Teacher" %>

jQuery("#MainContent_customer_dob").datepicker({

changeMonth: true,

Page - 110

<h2>User Registration Form</h2>

<asp:TextBox ID="customer_password" runat="server" TextMode="Password"

style="width:300px;"></asp:TextBox>

Page - 111

Page - 112

<asp:DropDownList ID="customer_city" runat="server" CssClass="select-box"

style="width:300px;" required></asp:DropDownList>

</div>

<label for="email">State<span>*</span></label>

<asp:DropDownList ID="customer_state" runat="server" CssClass="select-box"

style="width:300px;" required></asp:DropDownList>

</div>

<label for="email">Country<span>*</span></label>

<asp:DropDownList ID="customer_country" runat="server" CssClass="select-box"

style="width:300px;" required></asp:DropDownList>

<asp:TextBox ID="customer_details" runat="server" required TextMode="MultiLine"

style="width:300px; height:100px"></asp:TextBox>

</div>

<% if (Convert.ToInt32(Session["login"]) != 1) { %>

<div>

<asp:TextBox ID="upload_file" runat="server" Visible="False"></asp:TextBox>

<asp:TextBox ID="customer_id" runat="server" Visible="False"></asp:TextBox>

Page - 113

</div>

Page - 114

public partial class Teacher : System.Web.UI.Page {

protected void Page_Load(object sender, EventArgs e) {

String id;

if (!Page.IsPostBack && !String.IsNullOrEmpty(Request.QueryString["customer_id"])) {

MySqlDataAdapter adp = new MySqlDataAdapter(command);

adp.Fill(dt);

DataRow dr = dt.Rows[0];

Page - 115

customer_id.Text = Convert.ToString(dr["customer_id"]);

customer_name.Text = Convert.ToString(dr["customer_name"]);

customer_add1.Text = Convert.ToString(dr["customer_add1"]);

customer_add2.Text = Convert.ToString(dr["customer_add2"]);

customer_city.Text = Convert.ToString(dr["customer_city"]);

customer_state.Text = Convert.ToString(dr["customer_state"]);

customer_country.Text = Convert.ToString(dr["customer_country"]);

customer_email.Text = Convert.ToString(dr["customer_email"]);

customer_mobile.Text = Convert.ToString(dr["customer_mobile"]);

customer_gender.Text = Convert.ToString(dr["customer_gender"]);

customer_dob.Text = Convert.ToString(dr["customer_dob"]);

customer_details.Text = Convert.ToString(dr["customer_details"]);

cn.con.Close();

}

protected void save_data_Click(object sender, EventArgs e) {

fileName = Path.GetFileName(customer_resume.PostedFile.FileName);

customer_resume.PostedFile.SaveAs(Server.MapPath("uploads/") + fileName);

Page - 116

}

if (!String.IsNullOrEmpty(customer_id.Text)) {

SQL = "UPDATE `customer` SET `customer_resume` = @17, `customer_name` = @5,

`customer_add1` = @6, `customer_add2` = @7, `customer_city` = @8, `customer_state` = @9,

`customer_country` = @10, `customer_email` = @11, `customer_mobile` = @12,

`customer_gender` = @13, `customer_dob` = @14, `customer_details` = @15 WHERE

`customer_id` = @16";

`customer_dob`, `customer_details`, `customer_resume`) VALUES (@3, @4, @5, @6, @7,

@8, @9, @10, @11, @12, @13, @14, @15, @17)";

}

MySqlCommand insertCommand = new MySqlCommand(SQL, cn.con);

insertCommand.CommandType = CommandType.Text;

insertCommand.Parameters.AddWithValue("@3", customer_username.Text);

insertCommand.Parameters.AddWithValue("@4", customer_password.Text);

insertCommand.Parameters.AddWithValue("@5", customer_name.Text);

insertCommand.Parameters.AddWithValue("@6", customer_add1.Text);

insertCommand.Parameters.AddWithValue("@7", customer_add2.Text);

insertCommand.Parameters.AddWithValue("@8", customer_city.Text);

insertCommand.Parameters.AddWithValue("@9", customer_state.Text);

insertCommand.Parameters.AddWithValue("@10", customer_country.Text);

Page - 117

insertCommand.Parameters.AddWithValue("@11", customer_email.Text);

insertCommand.Parameters.AddWithValue("@12", customer_mobile.Text);

insertCommand.Parameters.AddWithValue("@13", customer_gender.Text);

insertCommand.Parameters.AddWithValue("@14", customer_dob.Text);

insertCommand.Parameters.AddWithValue("@15", customer_details.Text);

insertCommand.Parameters.AddWithValue("@17", fileName);

insertCommand.Parameters.AddWithValue("@16", customer_id.Text);

insertCommand.ExecuteNonQuery();

cn.con.Close();

Response.Redirect("Customer-login.aspx?msg=Your account has been registered successfully !!! Login to your account. ");

}

customer_city.DataTextField = "city_name";

customer_city.DataSource = dt;

customer_city.DataBind();

customer_city.Items.Insert(0, "Please Select");

Page - 118

}

private void FillStateListing() {

customer_state.DataValueField = "state_id";

customer_state.DataTextField = "state_name";

customer_state.DataSource = dt;

customer_state.DataBind();

customer_state.Items.Insert(0, "Please Select");

}

private void FillCountryListing() {

customer_country.DataValueField = "country_id";

Page - 119

customer_country.DataTextField = "country_name";

customer_country.DataSource = dt;

customer_country.DataBind();

customer_country.Items.Insert(0, "Please Select");

} }

ASP coding for Customer-Login

<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true"

CodeFile="Customer-Login.aspx.cs" Inherits="Login" %>

<% if (Request.QueryString["msg"] != "" && Request.QueryString["msg"] != null)

In document Online Crime Rporting System (Page 64-127)