<?php include('includes/config/config.php'); include('includes/auth/auth.php'); include('includes/functions.php');include('access.php'); include('log_entry.php'); ?> <?php // Connect to mysqli database $page = 1; // The current page $sortname = 'checkup_date'; // Sort column $sortorder = 'desc'; // Sort order $qtype = ''; // Search column $query = ''; // Search string // Get posted data if (isset($_POST['page'])) { $page = mysqli_real_escape_string($conn,$_POST['page']); } if (isset($_POST['sortname'])) { $sortname = mysqli_real_escape_string($conn,$_POST['sortname']); } if (isset($_POST['sortorder'])) { $sortorder = mysqli_real_escape_string($conn,$_POST['sortorder']); } if (isset($_POST['qtype'])) { $qtype = mysqli_real_escape_string($conn,$_POST['qtype']); } if (isset($_POST['query'])) { $query = mysqli_real_escape_string($conn,$_POST['query']); } if (isset($_POST['rp'])) { $rp = mysqli_real_escape_string($conn,$_POST['rp']); } // Setup sort and search SQL using posted data $hasReadAccess = isAccessible($_SESSION['RoleId'],$menu_key,'R'); $hasWriteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'W'); $hasExecuteAccess = isAccessible($_SESSION['RoleId'],$menu_key,'E'); $sortSql = "order by $sortname $sortorder"; $searchSql=""; if($qtype=='checkup_date'){ $searchSql= ($qtype != '' && $query != '') ? " where ($qtype)=str_to_date('".$query."','%d/%m/%Y')" : ''; }else{ //$searchSql= ($qtype != '' && $query != '') ? " and upper($qtype) like upper('%$query%')" : ''; $searchSql = ($qtype != '' && $query != '') ? " where upper($qtype) like upper('%".trim($query)."%')" : ''; } if(isset($_SESSION['allowed_clients']) && isset($_SESSION['current_ohcttype'])) { $ohc_type = $_SESSION['current_ohcttype']; $client_ids = $_SESSION['allowed_clients']; $searchSql="where b.ohc_type_id=$ohc_type"; } if ($searchSql != '') { // ECHO RAM; if ($qtype == 'checkup_date') { $searchSql = " where date_format(date(checkup_date),'%Y-%m-%d')=str_to_date('$query','%d/%m/%Y') "; } else if($qtype=='checkup_date_between'){ $dates=explode("-",$query); //$qtype=" due_date between "; $searchSql=" where checkup_date between str_to_date('".trim($dates[0])."','%d/%m/%Y') and str_to_date('".trim($dates[1])."','%d/%m/%Y') "; } } // Get total count of records $sql = "select count(*) from checkup_form a left join patient_master b on a.emp_id=b.id left join client_master c on b.client_id=c.client_id $searchSql"; //echo $sql; error_log("query: ".$sql); $result = mysqli_query($conn,$sql); $row = mysqli_fetch_array($result); $total = $row[0]; // Setup paging if(!isSet($rp)){ $rp=10; } $pageStart = ($page-1)*$rp; $limitSql = "limit $pageStart, $rp"; // Return JSON data $data = array(); $data['page'] = $page; $data['total'] = $total; $data['rows'] = array(); $sql_checkup = "select a.*, b.patient_name, c.client_name from checkup_form a left join patient_master b on a.emp_id=b.id left join client_master c on b.client_id=c.client_id $searchSql $sortSql $limitSql"; //echo $sql_checkup; //echo $sql_checkup; error_log("sql checkup: ".$sql_checkup); $results_checkup = mysqli_query($conn,$sql_checkup); $count=($page-1)*$rp+1; //echo $sql_checkup; //echo $access_level; while ($row_checkup = mysqli_fetch_assoc($results_checkup)) { $checkup_id=$row_checkup['checkup_id']; error_log("checkid".$checkup_id); //echo $checkup_id; $view_link=""; $print_link=""; $edit_link=""; $delete_link=""; $links=""; $space=" "; if($hasReadAccess) { $view_link=$space."<a href=\"#\"class=\"green\" onclick=\"open_checkup('".$checkup_id."','".$row_checkup['emp_id']."','V','".$row_checkup['checkup_type_id']."');\"><i class=\"ace-icon fa fa-search-plus bigger-130\"></i></a>"; $print_link=$space."<a href=\"checkup_form_pdf.php?checkup_id=".$checkup_id."\"class=\"red\" ><i class=\"ace-icon fa fa-file-pdf-o bigger-130\"></i></a>"; } if($hasWriteAccess) { $edit_link=$space."<a href=\"#\" class=\"blue\" onclick=\"open_checkup('".$checkup_id."','".$row_checkup['emp_id']."','E','".$row_checkup['checkup_type_id']."');\"><i class=\"ace-icon fa fa-pencil bigger-130\"></i></a>"; } if($hasExecuteAccess) { $delete_link=$space."<a href=\"#\" class=\"blue\" onclick=\"delete_checkup('".$checkup_id."');\"><i class=\"ace-icon fa fa-trash-o bigger-130\"></i></a>"; } $checkupSections =getCommaSeperatedValuesForInClause("select section_name from checkup_form_section","section_id", $row_checkup['checkup_section_ids']); if($row_checkup['current_status']=='RCP') { $links = $assign_link.$view_link.$edit_link.$delete_link.$print_link; } else { $links = $assign_link.$view_link.$delete_link.$print_link; } $data['rows'][] = array( 'id' => $row_checkup['checkup_id'], 'cell' => array($count++,$links,date_format(date_create($row_checkup['checkup_date']),"d-M-Y H:i A"),$row_checkup['ticket_no'],$row_checkup['patient_name'], $row_checkup['client_name'],$row_checkup['current_status'], $row_checkup['remarks'], $checkupSections) ); } $data['rows'][] = array( 'id' => $row['filterkey'], 'cell' => array('', "<input type=hidden name='filterkey' id='filterkey' value=\"".base64_encode($sql_checkup)."\">", "<input type=hidden name=paramlist id=paramlist value=\"".base64_encode($paramlist)."\">", '', '','', '', '', '', '', '', '', '','', '', '','', '', '','') ); // error_log("data: ".print_r($data, true)); echo json_encode($data); ?>