ESH/doctor_list_script.php

<?php 
include('includes/config/config.php');
include('includes/auth/auth.php');
include('includes/functions.php');include('access.php');
error_reporting(E_ERROR | E_PARSE);
?>
<?php 

// Connect to mysqli database
$page = 1; // The current page
$sortname = 'complaint_id'; // Sort column
$sortorder = 'asc'; // Sort order
$qtype = ''; // Search column
$query = ''; // Search string
// Get posted data
if (isset($_POST['page'])) {
        $page = mysqli_real_escape_string($conn,$_POST['page']);
}
if (isset($_POST['sortname'])) {
        $sortname = mysqli_real_escape_string($conn,$_POST['sortname']);
}
if (isset($_POST['sortorder'])) {
        $sortorder = mysqli_real_escape_string($conn,$_POST['sortorder']);
}
if (isset($_POST['qtype'])) {
        $qtype = mysqli_real_escape_string($conn,$_POST['qtype']);
}
if (isset($_POST['query'])) {
        $query = mysqli_real_escape_string($conn,$_POST['query']);
}
if (isset($_POST['rp'])) {
        $rp = mysqli_real_escape_string($conn,$_POST['rp']);
}


$hasReadAccess = isAccessible($_SESSION['RoleId'],$menu_key,'R');
$hasWriteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'W');
$hasExecuteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'E');
// Setup sort and search SQL using posted data
$sortSql = "order by $sortname $sortorder";
$searchSql = ($qtype != '' && $query != '') ? "where upper($qtype) like upper('%".trim($query)."%')" : '';

$searchSql=preg_replace('/and/', 'where', $searchSql, 1);
// Get total count of records
$sql = "select count(*)from doctors_master $searchSql";
$result = mysqli_query($conn,$sql);
$row = mysqli_fetch_array($result);
$total = $row[0];
// Setup paging SQL
//$rp=1;
$pageStart = ($page-1)*$rp;
$limitSql = "limit $pageStart, $rp";
// Return JSON data
$data = array();
$data['page'] = $page;
$data['total'] = $total;
$data['rows'] = array();
$sql1 = "select * from doctors_master $searchSql $sortSql";
$sql_export = $sql1;
$sql_1 .= $limitSql;


//echo $sql_ailment;
$results_section = mysqli_query($conn,$sql1);
$count=($page - 1) * $rp + 1;
//echo $sql_ailment;
//echo $access_level;

while ($row1= mysqli_fetch_assoc($results_section)) {

$section_id=$row1['doctor_id'];
//echo $Department_id;
$view_link="";
$edit_link="";
$delete_link="";
$links="";
if($hasReadAccess )
{
	//echo "shubham";
$view_link="<a  href=\"#\"class=\"green\"  onclick=\"open_section('".$section_id."','V');\"><i class=\"ace-icon fa fa-search-plus bigger-130\"></i></a>";
}

if($hasWriteAccess )
{
$edit_link="<a href=\"#\" class=\"blue\" onclick=\"open_section('".$section_id."','E');\"><i class=\"ace-icon fa fa-pencil bigger-130\"></i></a>";
}
if($hasExecuteAccess)
{
$delete_link="<a href=\"#\" class=\"blue\" onclick=\"delete_section('".$section_id."');\"><i class=\"ace-icon fa fa-trash-o bigger-130\"></i></a>";
}
$emp_code=getTableFieldValue("patient_master","emp_code","id",$row1['doctor_emp_id']);
$space="&nbsp;&nbsp;&nbsp;";
$links = $assign_link.$space.$view_link.$space.$edit_link.$space.$delete_link;
$data['rows'][] = array(
'id' => $row1['doctor_id'],
'cell' => array($count++,$row1['doctor_name'],$emp_code, $row1['doctor_desc'], $links));
}
$data['rows'][] = array(
        'id' => $row['filterkey'],
        'cell' => array('', "<input type=hidden name='filterkey' id='filterkey' value=\"" . base64_encode($sql_export) . "\">", "<input type=hidden name=paramlist id=paramlist value=\"" . base64_encode($paramlist) . "\">", '',  '', '', '', '', '', '',  '', '', '', '', '', '', '', '', '', '')
    );
    

echo json_encode($data);
?>
first commit 2024-10-23 18:28:06 +05:30			`<?php`
			`include('includes/config/config.php');`
			`include('includes/auth/auth.php');`
			`include('includes/functions.php');include('access.php');`
			`error_reporting(E_ERROR \| E_PARSE);`
			`?>`
			`<?php`

			`// Connect to mysqli database`
			`$page = 1; // The current page`
			`$sortname = 'complaint_id'; // Sort column`
			`$sortorder = 'asc'; // Sort order`
			`$qtype = ''; // Search column`
			`$query = ''; // Search string`
			`// Get posted data`
			`if (isset($_POST['page'])) {`
			`$page = mysqli_real_escape_string($conn,$_POST['page']);`
			`}`
			`if (isset($_POST['sortname'])) {`
			`$sortname = mysqli_real_escape_string($conn,$_POST['sortname']);`
			`}`
			`if (isset($_POST['sortorder'])) {`
			`$sortorder = mysqli_real_escape_string($conn,$_POST['sortorder']);`
			`}`
			`if (isset($_POST['qtype'])) {`
			`$qtype = mysqli_real_escape_string($conn,$_POST['qtype']);`
			`}`
			`if (isset($_POST['query'])) {`
			`$query = mysqli_real_escape_string($conn,$_POST['query']);`
			`}`
			`if (isset($_POST['rp'])) {`
			`$rp = mysqli_real_escape_string($conn,$_POST['rp']);`
			`}`


			`$hasReadAccess = isAccessible($_SESSION['RoleId'],$menu_key,'R');`
			`$hasWriteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'W');`
			`$hasExecuteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'E');`
			`// Setup sort and search SQL using posted data`
			`$sortSql = "order by $sortname $sortorder";`
			`$searchSql = ($qtype != '' && $query != '') ? "where upper($qtype) like upper('%".trim($query)."%')" : '';`

			`$searchSql=preg_replace('/and/', 'where', $searchSql, 1);`
			`// Get total count of records`
			`$sql = "select count(*)from doctors_master $searchSql";`
			`$result = mysqli_query($conn,$sql);`
			`$row = mysqli_fetch_array($result);`
			`$total = $row[0];`
			`// Setup paging SQL`
			`//$rp=1;`
			`$pageStart = ($page-1)*$rp;`
			`$limitSql = "limit $pageStart, $rp";`
			`// Return JSON data`
			`$data = array();`
			`$data['page'] = $page;`
			`$data['total'] = $total;`
			`$data['rows'] = array();`
			`$sql1 = "select * from doctors_master $searchSql $sortSql";`
			`$sql_export = $sql1;`
			`$sql_1 .= $limitSql;`


			`//echo $sql_ailment;`
			`$results_section = mysqli_query($conn,$sql1);`
			`$count=($page - 1) * $rp + 1;`
			`//echo $sql_ailment;`
			`//echo $access_level;`

			`while ($row1= mysqli_fetch_assoc($results_section)) {`

			`$section_id=$row1['doctor_id'];`
			`//echo $Department_id;`
			`$view_link="";`
			`$edit_link="";`
			`$delete_link="";`
			`$links="";`
			`if($hasReadAccess )`
			`{`
			`//echo "shubham";`
			`$view_link="<a href=\"#\"class=\"green\" onclick=\"open_section('".$section_id."','V');\"><i class=\"ace-icon fa fa-search-plus bigger-130\"></i></a>";`
			`}`

			`if($hasWriteAccess )`
			`{`
			`$edit_link="<a href=\"#\" class=\"blue\" onclick=\"open_section('".$section_id."','E');\"><i class=\"ace-icon fa fa-pencil bigger-130\"></i></a>";`
			`}`
			`if($hasExecuteAccess)`
			`{`
			`$delete_link="<a href=\"#\" class=\"blue\" onclick=\"delete_section('".$section_id."');\"><i class=\"ace-icon fa fa-trash-o bigger-130\"></i></a>";`
			`}`
			`$emp_code=getTableFieldValue("patient_master","emp_code","id",$row1['doctor_emp_id']);`
			`$space="   ";`
			`$links = $assign_link.$space.$view_link.$space.$edit_link.$space.$delete_link;`
			`$data['rows'][] = array(`
			`'id' => $row1['doctor_id'],`
			`'cell' => array($count++,$row1['doctor_name'],$emp_code, $row1['doctor_desc'], $links));`
			`}`
			`$data['rows'][] = array(`
			`'id' => $row['filterkey'],`
			`'cell' => array('', "<input type=hidden name='filterkey' id='filterkey' value=\"" . base64_encode($sql_export) . "\">", "<input type=hidden name=paramlist id=paramlist value=\"" . base64_encode($paramlist) . "\">", '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '')`
			`);`


			`echo json_encode($data);`
			`?>`