<?php
include('includes/config/config.php');
include('includes/functions.php');
include('log_entry.php');

if (isset($_REQUEST['id'])) {
    $id = mysqli_real_escape_string($conn, $_REQUEST['id']);

    $sql = "SELECT * FROM checkup_section_medical_document WHERE id = $id";

    error_log("doc query " . $sql);

    $result = $conn->query($sql);

    if ($result->num_rows > 0) {
        $row = $result->fetch_assoc();

        header('Content-Type: application/octet-stream');
        header('Content-Disposition: attachment; filename="' . $row['medical_doc_name'] . '"');


        ob_clean();
        echo $row['medical_doc'];
        die;
    } else {
        echo "Document not found";
    }
}