<?php
ini_set("display_errors","1");
ini_set("display_startup_errors","1");
set_magic_quotes_runtime(0);
include("include/dbcommon.php");
include("include/Nursing_Handover_variables.php");
// check if logged in
if(!@$_SESSION["UserID"] || !CheckSecurity(@$_SESSION["OwnerID"],"Add"))
{
$_SESSION["MyURL"]=$_SERVER["SCRIPT_NAME"]."?".$_SERVER["QUERY_STRING"];
header("Location: login.php?message=expired");
return;
}
$filename="";
$message="";
$error_happened=false;
$readavalues=false;
//connect database
$conn = db_connect();
// insert new record if we have to
if(@$_POST["a"]=="added")
{
$afilename_values=array();
$avalues=array();
$files_move=array();
// processing Ward - start
$value = postvalue("value_Ward");
$type=postvalue("type_Ward");
$value=prepare_for_db("Ward",$value,$type);
if(!($value===false))
$avalues["Ward"]=$value;
// processibng Ward - end
// processing Bed - start
$value = postvalue("value_Bed");
$type=postvalue("type_Bed");
$value=prepare_for_db("Bed",$value,$type);
if(!($value===false))
$avalues["Bed"]=$value;
// processibng Bed - end
// processing Patient Name - start
$value = postvalue("value_Patient_Name");
$type=postvalue("type_Patient_Name");
$value=prepare_for_db("Patient Name",$value,$type);
if(!($value===false))
$avalues["Patient Name"]=$value;
// processibng Patient Name - end
// processing Date of Birth - start
$value = postvalue("value_Date_of_Birth");
$type=postvalue("type_Date_of_Birth");
$value=prepare_for_db("Date of Birth",$value,$type);
if(!($value===false))
$avalues["Date of Birth"]=$value;
// processibng Date of Birth - end
// processing Unit Number - start
$value = postvalue("value_Unit_Number");
$type=postvalue("type_Unit_Number");
$value=prepare_for_db("Unit Number",$value,$type);
if(!($value===false))
$avalues["Unit Number"]=$value;
// processibng Unit Number - end
// processing Sex - start
$value = postvalue("value_Sex");
$type=postvalue("type_Sex");
$value=prepare_for_db("Sex",$value,$type);
if(!($value===false))
$avalues["Sex"]=$value;
// processibng Sex - end
// processing Consultant - start
$value = postvalue("value_Consultant");
$type=postvalue("type_Consultant");
$value=prepare_for_db("Consultant",$value,$type);
if(!($value===false))
$avalues["Consultant"]=$value;
// processibng Consultant - end
// processing Code - start
$value = postvalue("value_Code");
$type=postvalue("type_Code");
$value=prepare_for_db("Code",$value,$type);
if(!($value===false))
$avalues["Code"]=$value;
// processibng Code - end
// processing Diagnosis - start
$value = postvalue("value_Diagnosis");
$type=postvalue("type_Diagnosis");
$value=prepare_for_db("Diagnosis",$value,$type);
if(!($value===false))
$avalues["Diagnosis"]=$value;
// processibng Diagnosis - end
// processing Allergies - start
$value = postvalue("value_Allergies");
$type=postvalue("type_Allergies");
$value=prepare_for_db("Allergies",$value,$type);
if(!($value===false))
$avalues["Allergies"]=$value;
// processibng Allergies - end
// processing Nurses - start
$value = postvalue("value_Nurses");
$type=postvalue("type_Nurses");
$value=prepare_for_db("Nurses",$value,$type);
if(!($value===false))
$avalues["Nurses"]=$value;
// processibng Nurses - end
// processing Social Services - start
$value = postvalue("value_Social_Services");
$type=postvalue("type_Social_Services");
$value=prepare_for_db("Social Services",$value,$type);
if(!($value===false))
$avalues["Social Services"]=$value;
// processibng Social Services - end
// processing Team - start
$value = postvalue("value_Team");
$type=postvalue("type_Team");
$value=prepare_for_db("Team",$value,$type);
if(!($value===false))
$avalues["Team"]=$value;
// processibng Team - end
// processing Notes - start
$value = postvalue("value_Notes");
$type=postvalue("type_Notes");
$value=prepare_for_db("Notes",$value,$type);
if(!($value===false))
$avalues["Notes"]=$value;
// processibng Notes - end
// add filenames to values
foreach($afilename_values as $akey=>$value)
$avalues[$akey]=$value;
// make SQL string
$strSQL = "insert into ".AddTableWrappers($strOriginalTableName)." ";
$strFields="(";
$strValues="(";
// before Add event
$retval = true;
if(function_exists("BeforeAdd"))
$retval=BeforeAdd($avalues);
if($retval)
{
foreach($avalues as $akey=>$value)
{
$strFields.=AddFieldWrappers($akey).", ";
$strValues.=add_db_quotes($akey,$value).", ";
}
if(substr($strFields,-2)==", ")
$strFields=substr($strFields,0,strlen($strFields)-2);
if(substr($strValues,-2)==", ")
$strValues=substr($strValues,0,strlen($strValues)-2);
$strSQL.=$strFields.") values ".$strValues.")";
LogInfo($strSQL);
set_error_handler("add_error_handler");
db_exec($strSQL,$conn);
set_error_handler("error_handler");
// move files
if(!$error_happened)
{
foreach ($files_move as $file)
move_uploaded_file($file[0],$file[1]);
$message="<div class=message><<< "."Record was added"." >>></div>";
// after add event
if(function_exists("AfterAdd"))
AfterAdd();
}
}
else
$readavalues=true;
}
$defvalues=array();
$keys=array();
$keys["Primary"]=postvalue("copyid1");
// copy record
if(array_key_exists("copyid1",$_REQUEST))
{
$strWhere=KeyWhere($keys);
$strSQL=$gstrSQL;
$strSQL=AddWhere($strSQL,$strWhere);
LogInfo($strSQL);
$rs=db_query($strSQL,$conn);
$defvalues=db_fetch_array($rs);
// clear key fields
$defvalues["Primary"]="";
//call CopyOnLoad event
if(function_exists("CopyOnLoad"))
CopyOnLoad($defvalues,$strWhere);
}
else if(!count($defvalues))
{
}
if($readavalues)
{
$defvalues["Patient Name"]=@$avalues["Patient Name"];
$defvalues["Date of Birth"]=@$avalues["Date of Birth"];
$defvalues["Unit Number"]=@$avalues["Unit Number"];
$defvalues["Sex"]=@$avalues["Sex"];
$defvalues["Ward"]=@$avalues["Ward"];
$defvalues["Bed"]=@$avalues["Bed"];
$defvalues["Consultant"]=@$avalues["Consultant"];
$defvalues["Code"]=@$avalues["Code"];
$defvalues["Diagnosis"]=@$avalues["Diagnosis"];
$defvalues["Allergies"]=@$avalues["Allergies"];
$defvalues["Notes"]=@$avalues["Notes"];
$defvalues["Nurses"]=@$avalues["Nurses"];
$defvalues["Social Services"]=@$avalues["Social Services"];
$defvalues["Team"]=@$avalues["Team"];
}
include('libs/Smarty.class.php');
$smarty = new Smarty();
foreach($defvalues as $key=>$value)
$smarty->assign("value_".GoodFieldName($key),$value);
// include files
$includes="";
// validation stuff
$bodyonload="";
$onsubmit="";
$includes.="<script language=\"JavaScript\" src=\"include/validate.js\"></script>\r\n";
$includes.="<script language=\"JavaScript\">\r\n";
$includes.="var TEXT_FIELDS_REQUIRED='".addslashes("The Following fields are Required")."';\r\n";
$includes.="var TEXT_FIELDS_ZIPCODES='".addslashes("")."';\r\n";
$includes.="var TEXT_FIELDS_EMAILS='".addslashes("The Following fields must be valid Emails")."';\r\n";
$includes.="var TEXT_FIELDS_NUMBERS='".addslashes("The Following fields must be Numbers")."';\r\n";
$includes.="var TEXT_FIELDS_CURRENCY='".addslashes("The Following fields must be currency")."';\r\n";
$includes.="var TEXT_FIELDS_PHONE='".addslashes("The Following fields must be Phone Numbers")."';\r\n";
$includes.="var TEXT_FIELDS_PASSWORD1='".addslashes("The Following fields must be valid Passwords")."';\r\n";
$includes.="var TEXT_FIELDS_PASSWORD2='".addslashes("should be at least 4 characters long")."';\r\n";
$includes.="var TEXT_FIELDS_PASSWORD3='".addslashes("Cannot be 'password'")."';\r\n";
$includes.="var TEXT_FIELDS_STATE='".addslashes("The Following fields must be State Names")."';\r\n";
$includes.="var TEXT_FIELDS_SSN='".addslashes("The Following fields must be Social Security Numbers")."';\r\n";
$includes.="var TEXT_FIELDS_DATE='".addslashes("The Following fields must be valid dates")."';\r\n";
$includes.="var TEXT_FIELDS_TIME='".addslashes("The Following fields must be valid time in 24-hours format")."';\r\n";
$includes.="var TEXT_FIELDS_CC='".addslashes("The Following fields must be valid Credit Card Numbers")."';\r\n";
$includes.="var TEXT_FIELDS_SSN='".addslashes("The Following fields must be Social Security Numbers")."';\r\n";
$includes.="</script>\r\n";
$validatetype="";
$validatetype.="IsRequired";
if($validatetype)
$bodyonload.="define('value_Patient_Name','".$validatetype."','Patient Name');";
$validatetype="";
$validatetype.="IsRequired";
if($validatetype)
$bodyonload.="define('value_Date_of_Birth','".$validatetype."','Date of Birth');";
$validatetype="";
$validatetype.="IsRequired";
if($validatetype)
$bodyonload.="define('value_Unit_Number','".$validatetype."','Unit Number');";
$validatetype="";
$validatetype.="IsRequired";
if($validatetype)
$bodyonload.="define('value_Sex','".$validatetype."','Sex');";
$validatetype="";
$validatetype.="IsRequired";
if($validatetype)
$bodyonload.="define('value_Ward','".$validatetype."','Ward');";
$validatetype="";
$validatetype.="IsRequired";
if($validatetype)
$bodyonload.="define('value_Bed','".$validatetype."','Bed');";
$validatetype="";
$validatetype.="IsRequired";
if($validatetype)
$bodyonload.="define('value_Consultant','".$validatetype."','Consultant');";
if($bodyonload)
{
$onsubmit="return validate();";
$bodyonload="onload=\"".$bodyonload."\"";
}
$includes.="<script language=\"JavaScript\" src=\"include/jsfunctions.js\"></script>\r\n";
$includes.="<script language=\"JavaScript\">\r\n".
"var locale_dateformat = ".$locale_info["LOCALE_IDATE"].";\r\n".
"var locale_datedelimiter = \"".$locale_info["LOCALE_SDATE"]."\";\r\n".
"var bLoading=false;\r\n".
"var TEXT_PLEASE_SELECT='".addslashes("Please select")."';\r\n".
"</script>\r\n";
// include datepicker files
$includes.="<script language=\"JavaScript\" src=\"include/calendar.js\"></script>\r\n";
$smarty->assign("includes",$includes);
$smarty->assign("bodyonload",$bodyonload);
if(strlen($onsubmit))
$onsubmit="onSubmit=\"".$onsubmit."\"";
$smarty->assign("onsubmit",$onsubmit);
$smarty->assign("message",$message);
$max_filesize_set=0;
$readonlyfields=array();
// show readonly fields
$linkdata="";
$smarty->assign("linkdata",$linkdata);
$smarty->display("Nursing_Handover_add.htm");
function add_error_handler($errno, $errstr, $errfile, $errline)
{
global $readavalues, $message, $error_happened;
$message="<div class=message><<< Record was NOT added >>><br><br>".$errstr."</div>";
$readavalues=true;
$error_happened=true;
}
?>