<?php 

include('includes/config/config.php');

include('includes/auth/auth.php');

include('includes/functions.php');

include('access.php');

error_reporting(E_ERROR | E_PARSE);

?>

<?php 



// Connect to mysqli database

$page = 1; // The current page

$sortname = 'department_name'; // Sort column

$sortorder = 'asc'; // Sort order

$qtype = ''; // Search column

$query = ''; // Search string

// Get posted data

if (isset($_POST['page'])) {

        $page = mysqli_real_escape_string($conn,$_POST['page']);

}

if (isset($_POST['sortname'])) {

        $sortname = mysqli_real_escape_string($conn,$_POST['sortname']);

}

if (isset($_POST['sortorder'])) {

        $sortorder = mysqli_real_escape_string($conn,$_POST['sortorder']);

}

if (isset($_POST['qtype'])) {

        $qtype = mysqli_real_escape_string($conn,$_POST['qtype']);

}

if (isset($_POST['query'])) {

        $query = mysqli_real_escape_string($conn,$_POST['query']);

}

if (isset($_POST['rp'])) {

        $rp = mysqli_real_escape_string($conn,$_POST['rp']);

}

// Setup sort and search SQL using posted data



$hasReadAccess = isAccessible($_SESSION['RoleId'],$menu_key,'R');

$hasWriteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'W');

$hasExecuteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'E');



$sortSql = "order by $sortname $sortorder";

$searchSql = ($qtype != '' && $query != '') ? "where upper($qtype) like upper('%$query%')" : '';

// Get total count of records

echo $sql = "select count(*)from department $searchSql";

$result = mysqli_query($conn,$sql);

$row = mysqli_fetch_array($result);

$total = $row[0];

// Setup paging

if(!isSet($rp)){

	$rp=10;

}

$pageStart = ($page-1)*$rp;

$limitSql = "limit $pageStart, $rp";

// Return JSON data

$data = array();

$data['page'] = $page;

$data['total'] = $total;

$data['rows'] = array();

 $sql_patient = "select class_id, department_name, department_code,

from department $searchSql $sortSql $limitSql";

echo $sql_patient;

$results_patient = mysqli_query($conn,$sql_patient);

$count=($page-1)*$rp+1;



//echo $sql_ailment;

//echo $access_level;



while ($row_patient = mysqli_fetch_assoc($results_patient)) {



$patient_id=$row_patient['class_id'];

//echo $ailment_id;

$view_link="";

$edit_link="";

$delete_link="";

$links="";

if($hasReadAccess )

{

	//echo "shubham";

$view_link="<a  href=\"#\"class=\"green\"  onclick=\"open_patient('".$patient_id."','V');\"><i class=\"ace-icon fa fa-search-plus bigger-130\"></i></a>";

}



if($hasWriteAccess )

{

$edit_link="<a href=\"#\" class=\"blue\" onclick=\"open_patient('".$patient_id."','E');\"><i class=\"ace-icon fa fa-pencil bigger-130\"></i></a>";

}

if($hasExecuteAccess  )

{

$delete_link="<a href=\"#\" class=\"blue\" onclick=\"delete_patient('".$patient_id."');\"><i class=\"ace-icon fa fa-trash-o bigger-130\"></i></a>";

}

$space="&nbsp;&nbsp;&nbsp;";

$links = $view_link.$space.$edit_link.$space.$delete_link;



$data['rows'][] = array(

'id' => $row_patient['id'],

'cell' => array($count++,  $row_patient['department_name'], $row_patient['department_code'],$links)

);

}

echo json_encode($data);

?>