csrtechnew.ohctech.in/rule_details_script.php

<?php  
include ('includes/config/config.php');
include ('includes/auth/auth.php');
include ('includes/functions.php');
include ('access.php');
include('log_entry.php');
error_reporting ( E_ERROR | E_PARSE );
?>
<?php  
begin();
// Connect to mysqli database
$page = 1; // The current page
$sortorder = 'desc'; // Sort order
$qtype = ''; // Search column
$query = ''; // Search string    
$pageStart = ($page - 1) * $rp;
$limitSql = "LIMIT $pageStart, $rp";
   $searchSql="";          // Get posted data

if (isset ( $_POST ['rp'] )) {
	$rp = mysqli_real_escape_string ($conn,$_POST ['rp'] );
}



// undone

// Get posted data
if (isset($_POST['page'])) {
	$page = mysqli_real_escape_string($conn,$_POST['page']);
}
if (isset($_POST['sortname'])) {
	$sortname = mysqli_real_escape_string($conn,$_POST['sortname']);
}
if (isset($_POST['sortorder'])) {
	$sortorder = mysqli_real_escape_string($conn,$_POST['sortorder']);
}
if (isset($_POST['qtype'])) {
	$qtype = mysqli_real_escape_string($conn,$_POST['qtype']);
}
if (isset($_POST['query'])) {
	$query = mysqli_real_escape_string($conn,$_POST['query']);
}
if (isset($_POST['rp'])) {
	$rp = mysqli_real_escape_string($conn,$_POST['rp']);
}
// Setup sort and search SQL using posted data
// undone

// $hasReadAccess = isAccessible ( $_SESSION ['RoleId'], $menu_key, 'R' );
// $hasWriteAccess = isAccessible ( $_SESSION ['RoleId'], $menu_key, 'W' );
// $hasExecuteAccess = isAccessible ( $_SESSION ['RoleId'], $menu_key, 'E' );
// error_log("hasReadAccess ".$hasReadAccess, $_SESSION ['RoleId']);
// error_log("hasWriteAccess ".$hasWriteAccess, $_SESSION ['RoleId']);
// error_log("hasExecuteAccess ".$hasExecuteAccess, $_SESSION ['RoleId']);

$hasReadAccess = 1;
$hasWriteAccess = 1;
$hasExecuteAccess = 1;
error_log("hasReadAccess ".$hasReadAccess, $_SESSION ['RoleId']);
error_log("hasWriteAccess ".$hasWriteAccess, $_SESSION ['RoleId']);
error_log("hasExecuteAccess ".$hasExecuteAccess, $_SESSION ['RoleId']);

// Setup sort and search SQL using posted data
$sortSql = "order by $sortname $sortorder";


//echo "h".$searchSql;
//$searchSql = preg_replace ( '/and/', 'where', $searchSql, 1 );
// Get total count of records
$sql = "select count(*) from  rule_equation  $limitSql";
error_log("rule_equation1 ".$sql);
//echo $sql;
$result = mysqli_query($conn,$sql );
rollback();
$row = mysqli_fetch_array ( $result );
$total = $row [0];
if (! isSet ( $rp )) {
	$rp = 10;
}
// Setup paging SQL
// $rp=1;
$pageStart = ($page - 1) * $rp;
$limitSql = "limit $pageStart, $rp";
// Return JSON data
$data = array ();
$data ['page'] = $page;
$data ['total'] = $total;
$data ['rows'] = array ();
//$sql_rule = "SELECT *  FROM ambulance_details    $searchSql $sortSql $limitSql";
$sql_rule = "SELECT * FROM  rule_equation $searchSql  $limitSql";
error_log("rule_equation2 ".$sql_rule);
$sql_export=$sql_rule;
//echo $sql_rule;
$results_rule = mysqli_query($conn,$sql_rule);
rollback();
$count = ($page - 1) * $rp + 1;
// echo $sql_ailment;
// echo $access_level;

while ( $row1 = mysqli_fetch_assoc ( $results_rule ) ) {
	
	$rule_eq_id= $row1 ['rule_eq_id'];
	// echo $Department_id;
	$view_link = "";
	$edit_link = "";
	$delete_link = "";
	$links = "";
	if ($hasReadAccess) {
		// echo "shubham";
		$view_link = "<a  href=\"#\"class=\"green\"  onclick=\"open_rule_form('".$rule_eq_id."','V');\"><i class=\"ace-icon fa fa-search-plus bigger-130\"></i></a>";
	}
	
	if ($hasWriteAccess) {
		$edit_link = "<a href=\"#\" class=\"blue\" onclick=\"open_rule_form('".$rule_eq_id."','E');\"><i class=\"ace-icon fa fa-pencil bigger-130\"></i></a>";
	}
	if ($hasExecuteAccess) {
		$delete_link = "<a href=\"#\" class=\"blue\" onclick=\"delete_rule_form('" .$rule_eq_id. "');\"><i class=\"ace-icon fa fa-trash-o bigger-130\"></i></a>";
	}
	$assign_link = $assign_link ?? '';
	$space = "&nbsp;&nbsp;&nbsp;";
	$links = $assign_link . $space . $view_link . $space . $edit_link . $space . $delete_link;
	
	$rule_eq = getTableFieldValue ( 'rule_equation', 'rule_equation', 'rule_eq_id', isset($row1['equation_rule_id']) );
	$section_name = getTableFieldValue ( 'checkup_form_section', 'section_name', 'section_id', $row1['checkup_form_section_id'] );
	$abnormality = getFieldFromTable('abnormality_name','abnormality','abnormality_id',$row1['abnormality']);

	
	$data ['rows'] [] = array (
			'id' => $row1 ['rule_eq_id'],
			'cell' => array (
			        $links, 
					$count ++,
					$row1['rule_equation'],
					// $section_name,
					$row1['result_disp'],	
					$abnormality,	
			) 
	);
}

commit();
$data['rows'][] = array(
		'id' => isset($row['filterkey']),
		'cell' => array('', "<input type=hidden name='filterkey' id='filterkey' value=\"".base64_encode($sql_export)."\">", "<input type=hidden name=paramlist id=paramlist value=\"".($qtype.':'.$query)."\">", '',  '','', '', '', '', '',  '', '', '','', '', '','', '', '','')
);
echo json_encode($data);
?>