<?php
include('includes/config/config.php');
include('includes/auth/auth.php');
include('includes/functions.php');
include('access.php');
error_reporting(E_ERROR | E_PARSE);
?>
<?php
// Connect to mysqli database
$page = 1; // The current page
$sortname = 'ailment_id'; // Sort column
$sortorder = 'asc'; // Sort order
$qtype = ''; // Search column
$query = ''; // Search string
// Get posted data
if (isset($_POST['page'])) {
$page = mysqli_real_escape_string($conn, $_POST['page']);
}
if (isset($_POST['sortname'])) {
$sortname = mysqli_real_escape_string($conn, $_POST['sortname']);
}
if (isset($_POST['sortorder'])) {
$sortorder = mysqli_real_escape_string($conn, $_POST['sortorder']);
}
if (isset($_POST['qtype'])) {
$qtype = mysqli_real_escape_string($conn, $_POST['qtype']);
}
if (isset($_POST['query'])) {
$query = mysqli_real_escape_string($conn, $_POST['query']);
}
if (isset($_POST['rp'])) {
$rp = mysqli_real_escape_string($conn, $_POST['rp']);
}
// Setup sort and search SQL using posted data
$hasReadAccess = isAccessible($_SESSION['RoleId'], $menu_key, 'R');
$hasWriteAccess = isAccessible($_SESSION['RoleId'], $menu_key, 'W');
$hasExecuteAccess = isAccessible($_SESSION['RoleId'], $menu_key, 'E');
$sortSql = "order by $sortname $sortorder";
$searchSql = ($qtype != '' && $query != '') ? "where upper($qtype) like upper('%$query%')" : '';
// Get total count of records
$sql = "select count(*)from ailment $searchSql";
$result = mysqli_query($conn, $sql);
$row = mysqli_fetch_array($result);
$total = $row[0];
// Setup paging
if (!isset($rp)) {
$rp = 10;
}
$pageStart = ($page - 1) * $rp;
$limitSql = "limit $pageStart, $rp";
// Return JSON data
$data = array();
$data['page'] = $page;
$data['total'] = $total;
$data['rows'] = array();
$sql_ailment = "select * from ailment $searchSql $sortSql ";
//echo $sql_ailment;
$sql_export = $sql_ailment;
$sql_ailment .= $limitSql;
$results_ailment = mysqli_query($conn, $sql_ailment);
$count = ($page - 1) * $rp + 1;
//echo $sql_ailment;
//echo $access_level;
while ($row_ailment = mysqli_fetch_assoc($results_ailment)) {
$ailment_id = $row_ailment['ailment_id'];
//echo $ailment_id;
$view_link = "";
$edit_link = "";
$delete_link = "";
$links = "";
if ($hasReadAccess) {
//echo "shubham";
$view_link = "<a href=\"#\"class=\"grey\" onclick=\"open_ailment('" . $ailment_id . "','V');\"><i class=\"ace-icon fa fa-eye bigger-130\"></i></a>";
}
if ($hasWriteAccess) {
$edit_link = "<a href=\"#\" class=\"blue\" onclick=\"open_ailment('" . $ailment_id . "','E');\"><i class=\"ace-icon fa fa-edit bigger-130\"></i></a>";
}
if ($hasExecuteAccess) {
$delete_link = "<a href=\"#\" class=\"red\" onclick=\"delete_ailment('" . $ailment_id . "');\"><i class=\"ace-icon fa fa-trash-o bigger-130\"></i></a>";
}
$space = " ";
$links = $assign_link . $space . $view_link . $space . $edit_link . $space . $delete_link;
$data['rows'][] = array(
'id' => $row_ailment['id'],
'cell' => array($count++, $row_ailment['ailment_name'], $row_ailment['ailment_desc'], $row_ailment['ailment_code'], $row_ailment['is_active'], $links)
);
}
$data['rows'][] = array(
'id' => $row['filterkey'],
'cell' => array('', "<input type=hidden name='filterkey' id='filterkey' value=\"" . base64_encode($sql_export) . "\">", "<input type=hidden name=paramlist id=paramlist value=\"" . base64_encode($paramlist) . "\">", '', '', '')
);
echo json_encode($data);
?>