Welcome to the Cardiology Hospital Information System (HIS) β your gateway to modern, efficient, and patient-centered heart care management.
This web application serves as a Cardiology Department Information System, aiming to enhance healthcare operations through digital transformation. In Phase 1, we focused on building the foundational features, including authentication, registration, and patient profile management with a responsive user interface.
- Homepage: Welcoming interface with department overview and navigation options
- Login Page:Role-based secure login for patients, doctors, and admins
- Registration Page: Multi-step form for new patient accounts
- Profile Page: Detailed view of patient information with edit capabilities
- User Authentication System
- Role-based login (Patient/Doctor/Admin)
- Secure password handling
- Patient Profile Management
- Personal information section
- Medical history tracking
- Contact details management
- Family and emergency contact information
- Responsive Design
- Mobile-friendly layouts
- Consistent styling across pages
- HTML5/CSS3 for page structure and styling
- Bootstrap framework for responsive design
- JavaScript for interactive elements
- Form validation for data integrity
- Custom ER model and Relational Schema tailored to cardiology data requirements
- User authentication system planned
- API endpoints outlined for future development
Step 1 β Personal Information
Step 2 β Account Information
Step 3 β Contact Information
- .NET Framework: Robust backend logic and API development
- JWT Authentication: Secure token-based authentication system
- Neon PostgreSQL: Cloud-native, scalable database solution
- RESTful API: Comprehensive endpoints for all system operations
- Role-Based Access Control: Separate authentication for Patients, Doctors, and Admins
- Password Complexity Requirements: Enforced strong password policies
- JWT Token Authorization: Secure API access with Bearer tokens
- Data Validation: Comprehensive input validation and sanitization
- Custom ER model tailored for cardiology department operations
- Relational Schema optimized for healthcare data management
- Support for patient medical records, appointment scheduling, and communication
- Base URL:
/api - Authentication: Bearer Token (JWT)
- Content Types:
application/json,multipart/form-data
Complete system administration capabilities including user management, profile oversight, and system configuration.
Medical staff functionalities including patient management, appointment handling, profile updates, and communication tools.
Patient-centered services including registration, profile management, appointment booking, and medical record access.
Secure communication platform between doctors and patients with full conversation history and message management.
Comprehensive appointment system supporting booking, rescheduling, cancellation, and status tracking.
| HTTP Method | Endpoint | Description | Access Level |
|---|---|---|---|
| POST | /api/Patient/Login |
Patient authentication | Patient |
| POST | /api/Doctor/Login |
Doctor authentication | Doctor |
| POST | /api/Admin/Login |
Admin authentication | Admin |
| POST | /api/Patient/Register |
New patient registration | Patient/Admin |
| GET | /api/Patient/Profile |
Retrieve patient profile | All Authenticated |
| PUT | /api/Patient/UpdateProfile |
Update patient information | Patient |
| GET | /api/Doctor/Profile |
Retrieve doctor profile | All Authenticated |
| PUT | /api/Doctor/UpdateProfile |
Update doctor information | Doctor |
| POST | /api/Doctor/CreateDoctor |
Create new doctor account | Admin |
| HTTP Method | Endpoint | Description | Access Level |
|---|---|---|---|
| POST | /api/Appointment/BookAppointment |
Schedule new appointment | Patient |
| GET | /api/Appointment/GetAppointments |
Retrieve appointments by date | All Authenticated |
| GET | /api/Appointment/GetAppointment |
Get specific appointment | All Authenticated |
| POST | /api/Appointment/RescheduleAppointment |
Modify appointment time | Patient |
| POST | /api/Appointment/CancelAppointment |
Cancel existing appointment | Patient |
| POST | /api/Appointment/MarkAppointment |
Mark as completed/missed | Doctor |
| HTTP Method | Endpoint | Description | Access Level |
|---|---|---|---|
| GET | /api/Message/GetMessages |
Retrieve conversation history | Patient/Doctor |
| POST | /api/Message/SendMessage |
Send message to user | Patient/Doctor |
| DELETE | /api/Message/Delete |
Remove specific message | Message Owner |
| HTTP Method | Endpoint | Description | Access Level |
|---|---|---|---|
| POST | /api/Report/CreateReport |
Create new medical report | Doctor |
| POST | /api/Report/UpdateReport |
Update existing report | Doctor |
| GET | /api/Report/GetReport |
Retrieve report by appointment ID | All Authenticated |
| HTTP Method | Endpoint | Description | Access Level |
|---|---|---|---|
| GET | /api/Admin/AdminProfilesList |
List all admin profiles | Admin |
| GET | /api/Doctor/DoctorProfilesList |
List all doctor profiles | All Authenticated |
| GET | /api/Patient/PatientProfilesList |
List all patient profiles | Admin/Doctor |
| POST | /api/Admin/CreateAdmin |
Create new admin account | Admin |
| DELETE | /api/Admin/Delete |
Remove admin account | Admin |
- Length: 8-100 characters
- Complexity: Must include lowercase, uppercase, digit, and special character
- Pattern:
^(?=.*[a-z])(?=.*[A-Z])(?=.*\d)(?=.*[^\da-zA-Z]).{8,}$
- Email Format: Standard email validation with 100 character limit
- Phone Numbers: Egyptian mobile format (
^(?:\+20|0)?1[0125]\d{8}$) - Names: 2-50 character limit with pattern validation
- Medical Data: Structured formats for blood types, allergies, medications
- Appointment Constraints: Future dates only, no time slot conflicts
- Patient Access: Profile management, appointment booking, messaging
- Doctor Access: Patient lists, appointment management, medical records, messaging
- Admin Access: Full system administration, user management, reporting
- Comprehensive registration with medical history
- Profile updates with photo upload support
- Emergency contact and family information
- Insurance policy management
- Medical record tracking (allergies, medications, surgeries)
- Real-time availability checking
- Multi-status tracking (Confirmed, Cancelled, Postponed, Completed, Missed)
- Automated conflict prevention
- Rescheduling and cancellation workflows
- Secure doctor-patient messaging
- Message history preservation
- File attachment support
- Real-time notification system
- Doctor-created medical reports linked to appointments
- Report creation and update functionality
- Appointment-based report retrieval
- Secure access control for sensitive medical data
- User role management
- Profile oversight and editing
- System-wide search functionality
- Pagination for large datasets
- Comprehensive audit trails
| Name |
|---|
| Alhussien Ayman Hanafy |
| Ahmed Loay Elsayyed |
| Suhila Tharwat Elmasry |
| Mai Mahmoud Mohamed |
| Muhammad Khaled Abdalhameed |