ESH/merged_list_script.php

<?php
include('includes/config/config.php');
include('includes/auth/auth.php');
include('includes/functions.php');
include('access.php');
// error_reporting(E_ERROR | E_PARSE);
include('log_entry.php');
?>
<?php

// Connect to MySQL database
$page = 1; // The current page
$sortname = 'merge_id'; // Sort column
$sortorder = 'asc'; // Sort order
$qtype = ''; // Search column
$query = ''; // Search string
// Get posted data
if (isset($_POST['page'])) {
    $page = @mysqli_real_escape_string($conn,$_POST['page']);
}
if (isset($_POST['sortname'])) {
    $sortname = @mysqli_real_escape_string($conn,$_POST['sortname']);
}
if (isset($_POST['sortorder'])) {
    $sortorder = @mysqli_real_escape_string($conn,$_POST['sortorder']);
}
if (isset($_POST['qtype'])) {
    $qtype = @mysqli_real_escape_string($conn,$_POST['qtype']);
}
if (isset($_POST['query'])) {
    $query = @mysqli_real_escape_string($conn,$_POST['query']);
}
if (isset($_POST['rp'])) {
    $rp = @mysqli_real_escape_string($conn,$_POST['rp']);
}
// Setup sort and search SQL using posted data
$hasReadAccess = isAccessible($_SESSION['RoleId'], $menu_key, 'R');
$hasWriteAccess = isAccessible($_SESSION['RoleId'], $menu_key, 'W');
$hasExecuteAccess = isAccessible($_SESSION['RoleId'], $menu_key, 'E');

if ($qtype == 'used_name') {
    $searchSql = ($qtype != '' && $query != '') ? "where upper($qtype) like upper('%" . trim($query) . "%')" : '';
    error_log("patient name......." . $searchSql);
} else if ($qtype == 'merged_name') {
    $searchSql = ($qtype != '' && $query != '') ? "where upper($qtype) like upper('%" . trim($query) . "%')" : '';
    error_log("patient name......." . $searchSql);
} else {
    $searchSql = ($qtype != '' && $query != '') ? "where upper($qtype) like upper('%" . trim($query) . "%')" : '';
}

$sortSql = "order by $sortname $sortorder";
//$searchSql = ($qtype != '' && $query != '') ? "where upper($qtype) like upper('%$query%')" : '';
// Get total count of records
$sql = "select count(*)from merge_records $searchSql";
$result = @mysqli_query($conn,$sql);
$row = @mysqli_fetch_array($result);
$total = $row[0];
// Setup paging
if (!isset($rp)) {
    $rp = 10;
}
$pageStart = ($page - 1) * $rp;
$limitSql = "limit $pageStart, $rp";
// Return JSON data
$data = array();
$data['page'] = $page;
$data['total'] = $total;
$data['rows'] = array();
$sql_frequency = "select * from merge_records $searchSql $sortSql $limitSql";
//echo $sql_frequency;
error_log("sql_frequency:" . $sql_frequency);
$results_frequency = @mysqli_query($conn,$sql_frequency);
$count = ($page - 1) * $rp + 1;

//echo $sql_frequency;
//echo $access_level;

while ($row = @mysqli_fetch_assoc($results_frequency)) {

    $id = $row['merge_id'];
    //echo $id;
    $view_link = "";
    $edit_link = "";
    $delete_link = "";
    $links = "";
    // if ($hasReadAccess) {
    //     //echo "shubham";
    //     $view_link = "<a  href=\"#\"class=\"grey\"  onclick=\"open_frequency('" . $id . "','V');\"><i class=\"ace-icon fa fa-eye bigger-130\"></i></a>";
    // }

    // if ($hasWriteAccess) {
    //     $edit_link = "<a href=\"#\" class=\"blue\" onclick=\"open_frequency('" . $id . "','E');\"><i class=\"ace-icon fa fa-edit bigger-130\"></i></a>";
    // }
    // if ($hasExecuteAccess) {
    //     $delete_link = "<a href=\"#\" class=\"red\" onclick=\"delete_ambulance('" . $id . "');\"><i class=\"ace-icon fa fa-trash-o bigger-130\"></i></a>";
    // }
    $space = "&nbsp;&nbsp;&nbsp;";
    $links = $assign_link . $space . $view_link . $space . $edit_link . $space . $delete_link;

    $data['rows'][] = array(
        'id' => $row['merge_id'],
        'cell' => array($count++, $row['record_to_be_used'], $row['used_name'], $row['used_emp_code'], $row['used_aadhar_no'], $row['record_to_be_merged'], $row['merged_name'], $row['merged_emp_code'], $row['merged_aadhar_no'], $links)
    );
}
error_log(print_r($data, true));
echo json_encode($data);
?>