101 lines
3.2 KiB
PHP
101 lines
3.2 KiB
PHP
|
<?php
|
||
|
|
include('includes/config/config.php');
|
||
|
|
include('includes/auth/auth.php');
|
||
|
|
include('includes/functions.php');include('access.php');
|
||
|
|
// error_reporting(E_ERROR | E_PARSE);
|
||
|
|
include('log_entry.php');
|
||
|
|
mysqli_query($conn,'SET character_set_results=utf8');
|
||
|
|
|
||
|
|
?>
|
||
|
|
<?php
|
||
|
|
|
||
|
|
// Connect to mysqli database
|
||
|
|
$page = 1; // The current page
|
||
|
|
$sortname = 'question_id'; // Sort column
|
||
|
|
$sortorder = 'asc'; // Sort order
|
||
|
|
$qtype = ''; // Search column
|
||
|
|
$query = ''; // Search string
|
||
|
|
// Get posted data
|
||
|
|
if (isset($_POST['page'])) {
|
||
|
|
$page = @mysqli_real_escape_string($conn,$_POST['page']);
|
||
|
|
}
|
||
|
|
if (isset($_POST['sortname'])) {
|
||
|
|
$sortname = @mysqli_real_escape_string($conn,$_POST['sortname']);
|
||
|
|
}
|
||
|
|
if (isset($_POST['sortorder'])) {
|
||
|
|
$sortorder = @mysqli_real_escape_string($conn,$_POST['sortorder']);
|
||
|
|
}
|
||
|
|
if (isset($_POST['qtype'])) {
|
||
|
|
$qtype = @mysqli_real_escape_string($conn,$_POST['qtype']);
|
||
|
|
}
|
||
|
|
if (isset($_POST['query'])) {
|
||
|
|
$query = @mysqli_real_escape_string($conn,$_POST['query']);
|
||
|
|
}
|
||
|
|
if (isset($_POST['rp'])) {
|
||
|
|
$rp = @mysqli_real_escape_string($conn,$_POST['rp']);
|
||
|
|
}
|
||
|
|
// Setup sort and search SQL using posted data
|
||
|
|
$hasReadAccess = isAccessible($_SESSION['RoleId'],$menu_key,'R');
|
||
|
|
$hasWriteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'W');
|
||
|
|
$hasExecuteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'E');
|
||
|
|
|
||
|
|
$sortSql = "order by $sortname $sortorder";
|
||
|
|
$searchSql = ($qtype != '' && $query != '') ? "where upper($qtype) like upper('%$query%')" : '';
|
||
|
|
// Get total count of records
|
||
|
|
$sql = "select count(*) from oxygen_cylinder_questionnaire $searchSql";
|
||
|
|
$result = @mysqli_query($conn,$sql);
|
||
|
|
$row = @mysqli_fetch_array($result);
|
||
|
|
$total = $row[0];
|
||
|
|
// Setup paging
|
||
|
|
if(!isSet($rp)){
|
||
|
|
$rp=10;
|
||
|
|
}
|
||
|
|
$pageStart = ($page-1)*$rp;
|
||
|
|
$limitSql = "limit $pageStart, $rp";
|
||
|
|
// Return JSON data
|
||
|
|
$data = array();
|
||
|
|
$data['page'] = $page;
|
||
|
|
$data['total'] = $total;
|
||
|
|
$data['rows'] = array();
|
||
|
|
$sql_vaccine = "select * from oxygen_cylinder_questionnaire $searchSql $sortSql $limitSql";
|
||
|
|
//echo $sql_vaccine;
|
||
|
|
error_log("Sql: ".$sql_vaccine);
|
||
|
|
$results_ailment = @mysqli_query($conn,$sql_vaccine);
|
||
|
|
$count=($page-1)*$rp+1;
|
||
|
|
|
||
|
|
//echo $sql_vaccine;
|
||
|
|
//echo $access_level;
|
||
|
|
|
||
|
|
while ($row_vaccine = @mysqli_fetch_assoc($results_ailment)) {
|
||
|
|
|
||
|
|
$question_id=$row_vaccine['question_id'];
|
||
|
|
//echo $id;
|
||
|
|
error_log("id: ".$question_id);
|
||
|
|
$view_link="";
|
||
|
|
$edit_link="";
|
||
|
|
$delete_link="";
|
||
|
|
$links="";
|
||
|
|
if($hasReadAccess)
|
||
|
|
{
|
||
|
|
//echo "shubham";
|
||
|
|
$view_link="<a href=\"#\"class=\"grey\" onclick=\"open_cylinder('".$question_id."','V');\"><i class=\"ace-icon fa fa-eye bigger-130\"></i></a>";
|
||
|
|
}
|
||
|
|
|
||
|
|
if($hasWriteAccess)
|
||
|
|
{
|
||
|
|
$edit_link="<a href=\"#\" class=\"blue\" onclick=\"open_cylinder('".$question_id."','E');\"><i class=\"ace-icon fa fa-edit bigger-130\"></i></a>";
|
||
|
|
}
|
||
|
|
if($hasExecuteAccess)
|
||
|
|
{
|
||
|
|
$delete_link="<a href=\"#\" class=\"red\" onclick=\"delete_cylinder('".$question_id."');\"><i class=\"ace-icon fa fa-trash-o bigger-130\"></i></a>";
|
||
|
|
}
|
||
|
|
$space=" ";
|
||
|
|
$links = $assign_link.$space.$view_link.$space.$edit_link.$space.$delete_link;
|
||
|
|
|
||
|
|
$data['rows'][] = array(
|
||
|
|
'id' => $row_vaccine['question_id'],
|
||
|
|
'cell' => array($count++, $links,$row_vaccine['question'],$row_vaccine['question_local'])
|
||
|
|
);
|
||
|
|
}
|
||
|
|
echo json_encode($data);
|
||
|
|
?>
|