<?php include('includes/config/config.php'); include('includes/auth/auth.php'); include('includes/functions.php');include('access.php'); error_reporting(E_ERROR | E_PARSE); ?> <?php // Connect to mysqli database $page = 1; // The current page $sortname = 'section_id'; // Sort column $sortorder = 'asc'; // Sort order $qtype = ''; // Search column $query = ''; // Search string // Get posted data if (isset($_POST['page'])) { $page = mysqli_real_escape_string($conn,$_POST['page']); } if (isset($_POST['sortname'])) { $sortname = mysqli_real_escape_string($conn,$_POST['sortname']); } if (isset($_POST['sortorder'])) { $sortorder = mysqli_real_escape_string($conn,$_POST['sortorder']); } if (isset($_POST['qtype'])) { $qtype = mysqli_real_escape_string($conn,$_POST['qtype']); } if (isset($_POST['query'])) { $query = mysqli_real_escape_string($conn,$_POST['query']); } if (isset($_POST['rp'])) { $rp = mysqli_real_escape_string($conn,$_POST['rp']); } $hasReadAccess = isAccessible($_SESSION['RoleId'],$menu_key,'R'); $hasWriteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'W'); $hasExecuteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'E'); // Setup sort and search SQL using posted data $sortSql = "order by $sortname $sortorder"; $searchSql = ($qtype != '' && $query != '') ? "where upper($qtype) like upper('%".trim($query)."%')" : ''; if($searchSql!=''){ if($qtype!=''){ if($qtype=='firm_name'){ $searchSql =" and firm_id= (select firm_id from tbl_firms where upper(firm_name) like upper(trim('%$query%'))) "; } elseif($qtype=='sbu_name') { $searchSql =" and sbu_id= (select sbu_id from sub_business_unit where upper(sbu_name) like upper(trim('%$query%'))) "; } elseif($qtype=='fname') { $searchSql =" and head_emp_id= (select id from employee where upper(fname) like upper(trim('%$query%'))) "; } } } $searchSql=preg_replace('/and/', 'where', $searchSql, 1); // Get total count of records $sql = "select count(*)from section $searchSql"; $result = mysqli_query($conn,$sql); $row = mysqli_fetch_array($result); $total = $row[0]; // Setup paging SQL //$rp=1; $pageStart = ($page-1)*$rp; $limitSql = "limit $pageStart, $rp"; // Return JSON data $data = array(); $data['page'] = $page; $data['total'] = $total; $data['rows'] = array(); $sql1 = "select * from section $searchSql $sortSql $limitSql"; //echo $sql_ailment; $results_section = mysqli_query($conn,$sql1); $count=1; //echo $sql_ailment; //echo $access_level; while ($row1= mysqli_fetch_assoc($results_section)) { $section_id=$row1['section_id']; //echo $Department_id; $view_link=""; $edit_link=""; $delete_link=""; $links=""; if($hasReadAccess ) { //echo "shubham"; $view_link="<a href=\"#\"class=\"green\" onclick=\"open_section('".$section_id."','V');\"><i class=\"ace-icon fa fa-search-plus bigger-130\"></i></a>"; } if($hasWriteAccess ) { $edit_link="<a href=\"#\" class=\"blue\" onclick=\"open_section('".$section_id."','E');\"><i class=\"ace-icon fa fa-pencil bigger-130\"></i></a>"; } if($hasExecuteAccess) { $delete_link="<a href=\"#\" class=\"blue\" onclick=\"delete_section('".$section_id."');\"><i class=\"ace-icon fa fa-trash-o bigger-130\"></i></a>"; } $space=" "; $links = $assign_link.$space.$view_link.$space.$edit_link.$space.$delete_link; $bu_id=getTableFieldValue('bussiness_unit','bu_name','bu_id',$row1['bu_id'],''); $dept_id=getTableFieldValue('department','dept_name','dept_id',$row1['dept_id'],''); //$head_emp_id=getTableFieldValue('employee','fname','id',$row1['head_emp_id'],''); $data['rows'][] = array( 'id' => $row1['section_id'], 'cell' => array($count++, $row1['section_name'], $bu_id,$dept_id,$links)); } echo json_encode($data); ?>