ESH/manage_firm_script.php

<?php 
include('includes/config/config.php');
include('includes/auth/auth.php');
include('includes/functions.php');
include('access.php');
error_reporting(E_ERROR | E_PARSE);
?>
<?php 

// Connect to mysqli database
$page = 1; // The current page
$sortname = 'firm_name'; // Sort column
$sortorder = 'asc'; // Sort order
$qtype = ''; // Search column
$query = ''; // Search string
// Get posted data
if (isset($_POST['page'])) {
        $page = mysqli_real_escape_string($conn,$_POST['page']);
}
if (isset($_POST['sortname'])) {
        $sortname = mysqli_real_escape_string($conn,$_POST['sortname']);
}
if (isset($_POST['sortorder'])) {
        $sortorder = mysqli_real_escape_string($conn,$_POST['sortorder']);
}
if (isset($_POST['qtype'])) {
        $qtype = mysqli_real_escape_string($conn,$_POST['qtype']);
}
if (isset($_POST['query'])) {
        $query = mysqli_real_escape_string($conn,$_POST['query']);
}
if (isset($_POST['rp'])) {
        $rp = mysqli_real_escape_string($conn,$_POST['rp']);
}
// Setup sort and search SQL using posted data
$sortSql = "order by $sortname $sortorder";
$searchSql = ($qtype != '' && $query != '') ? "where upper($qtype) like upper('%$query%')" : '';
// Get total count of records
$sql = "select count(*)from tbl_firms $searchSql";
//echo $sql;
$result = mysqli_query($conn,$sql);
$row = mysqli_fetch_array($result);
$total = $row[0];
if(!isSet($rp)){
	$rp=10;
}
$hasReadAccess = isAccessible($_SESSION['RoleId'],$menu_key,'R');
$hasWriteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'W');
$hasExecuteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'E');
//echo $total;
// Setup paging SQL
//$rp=1;
$pageStart = ($page-1)*$rp;
//echo $pageStart;
$limitSql = "limit $pageStart, $rp";
//echo $limitSql;
// Return JSON data
$data = array();
//echo $data;
$data['page'] = $page;
$data['total'] = $total;
$data['rows'] = array();
$sql_firm = "select firm_id,firm_name,firm_code,firm_location,firm_location1,state_id,pin,firm_headoffice,firm_phone,
firm_fax,firm_email,firm_contact,firm_logo,gstn,
bank,branch,account,ifsc,pan_no,tin_no,service_no,central_no,division,range1,colleborate,remarks,status,modified_by
from tbl_firms $searchSql $sortSql $limitSql";
//echo $sql_firm;
//echo $sql_ailment;
$results_firm = mysqli_query($conn,$sql_firm);
//echo $results_firm;
$count=($page-1)*$rp+1;
//echo $sql_ailment;
//echo $access_level;

while ($row_firm = mysqli_fetch_assoc($results_firm)) {
	//echo $sql_firm;

$firm_id=$row_firm['firm_id'];
//echo $firm_id;
$view_link="";
$edit_link="";
$delete_link="";
$links="";
if($hasReadAccess)
{
	//echo "shubham";
$view_link="<a  href=\"#\"class=\"green\"  onclick=\"open_firm('".$firm_id."','V');\"><i class=\"ace-icon fa fa-search-plus bigger-130\"></i></a>";
}

if($hasWriteAccess )
{
$edit_link="<a href=\"#\" class=\"blue\" onclick=\"open_firm('".$firm_id."','E');\"><i class=\"ace-icon fa fa-pencil bigger-130\"></i></a>";
}
if($hasExecuteAccess )
{
$delete_link="<a href=\"#\" class=\"blue\" onclick=\"delete_firm('".$firm_id."');\"><i class=\"ace-icon fa fa-trash-o bigger-130\"></i></a>";
}
$space="&nbsp;&nbsp;&nbsp;";
$links = $assign_link.$space.$view_link.$space.$edit_link.$space.$delete_link;

$data['rows'][] = array(
'id' => $row_firm['firm_id'],
'cell' => array($count++, $row_firm['firm_name'], $row_firm['firm_code'],$row_firm['firm_location'],$links)
);
}
echo json_encode($data);
?>