103 lines
3.8 KiB
PHP
103 lines
3.8 KiB
PHP
<?php
|
|
include('includes/config/config.php'); // Include your database connection script
|
|
include('includes/auth/auth.php'); // Include authentication script
|
|
include('includes/functions.php'); // Include common functions
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
|
|
// Start session and get the logged-in user ID
|
|
session_start();
|
|
$modified_by = $_SESSION['user_name'];
|
|
|
|
// Get the posted data and escape special characters to prevent SQL injection
|
|
$ref_id = mysqli_real_escape_string($conn, $_POST['ref_id']);
|
|
$activity_situation = mysqli_real_escape_string($conn, $_POST['activity_situation']);
|
|
$hazard_identified = mysqli_real_escape_string($conn, $_POST['hazard_identified']);
|
|
$hazard_category = mysqli_real_escape_string($conn, $_POST['hazard_category']);
|
|
$activity_type = mysqli_real_escape_string($conn, $_POST['activity_type']);
|
|
$hazard_condition = mysqli_real_escape_string($conn, $_POST['hazard_condition']);
|
|
$risk_exposure = mysqli_real_escape_string($conn, $_POST['risk_exposure']);
|
|
$date_time = mysqli_real_escape_string($conn, $_POST['date_time']);
|
|
$department = mysqli_real_escape_string($conn, $_POST['department']);
|
|
$location = mysqli_real_escape_string($conn, $_POST['location']);
|
|
$identified_by = mysqli_real_escape_string($conn, $_POST['identified_by']);
|
|
$remarks = mysqli_real_escape_string($conn, $_POST['remarks']);
|
|
$status = mysqli_real_escape_string($conn, $_POST['status']);
|
|
$reviewed_by = mysqli_real_escape_string($conn, $_POST['reviewed_by']);
|
|
$reviewed_date_time = mysqli_real_escape_string($conn, $_POST['reviewed_date_time']);
|
|
$reviewed_remarks = mysqli_real_escape_string($conn, $_POST['reviewed_remarks']);
|
|
$severity = mysqli_real_escape_string($conn, $_POST['severity']);
|
|
$occurrence = mysqli_real_escape_string($conn, $_POST['occurrence']);
|
|
$calculate_SO = mysqli_real_escape_string($conn, $_POST['calculate_SO']);
|
|
$legal = mysqli_real_escape_string($conn, $_POST['legal']);
|
|
$acceptable = mysqli_real_escape_string($conn, $_POST['acceptable']);
|
|
$significant = mysqli_real_escape_string($conn, $_POST['significant']);
|
|
$target_date = mysqli_real_escape_string($conn, $_POST['target_date']);
|
|
$risk_control_measures = mysqli_real_escape_string($conn, $_POST['risk_control_measures']);
|
|
|
|
// Insert data into the hazard_observation table
|
|
$sql = "INSERT INTO hazard_observation (
|
|
ref_id,
|
|
activity_situation,
|
|
hazard_identified,
|
|
hazard_category,
|
|
activity_type,
|
|
hazard_condition,
|
|
risk_exposure,
|
|
date_time,
|
|
department,
|
|
location,
|
|
identified_by,
|
|
remarks,
|
|
modified_by,
|
|
status,
|
|
reviewed_by,
|
|
reviewed_date_time,
|
|
reviewed_remarks,
|
|
severity,
|
|
occurrence,
|
|
calculate_SO,
|
|
legal,
|
|
acceptable,
|
|
significant,
|
|
target_date,
|
|
risk_control_measures,
|
|
) VALUES (
|
|
'$ref_id',
|
|
'$activity_situation',
|
|
'$hazard_identified',
|
|
'$hazard_category',
|
|
'$activity_type',
|
|
'$hazard_condition',
|
|
'$risk_exposure',
|
|
'$date_time',
|
|
'$department',
|
|
'$location',
|
|
'$identified_by',
|
|
'$remarks',
|
|
'$modified_by',
|
|
'$status',
|
|
'$reviewed_by',
|
|
'$reviewed_date_time',
|
|
'$reviewed_remarks',
|
|
'$severity',
|
|
'$occurrence',
|
|
'$calculate_SO',
|
|
'$legal',
|
|
'$acceptable',
|
|
'$significant',
|
|
'$target_date',
|
|
'$risk_control_measures'
|
|
)";
|
|
|
|
if (mysqli_query($conn, $sql)) {
|
|
echo "Hazard Saved Successfully";
|
|
} else {
|
|
echo "Error: " . $sql . "<br>" . mysqli_error($conn);
|
|
}
|
|
|
|
mysqli_close($conn);
|
|
} else {
|
|
echo "Invalid request method.";
|
|
}
|
|
?>
|