patients_fulltext.php at Clinical Handover Database

<?php 
ini_set("display_errors","1");
ini_set("display_startup_errors","1");
set_magic_quotes_runtime(0);

include("include/dbcommon.php");
include("include/patients_variables.php");

if(!@$_SESSION["UserID"] || !CheckSecurity(@$_SESSION["OwnerID"],"Search"))
{ 
	DisplayCloseWindow(); 
	return;
}

$field = @$_GET["field"];
if(!CheckFieldPermissions($field))
	return DisplayCloseWindow();

//	construct sql


$keys=array();
$keys["Primary"]=postvalue("key1");
$where=KeyWhere($keys);

$sql=$gstrSQL;
$sql = AddWhere($sql,$where);

$conn=db_connect();


$rs = db_query($sql,$conn);
if(!$rs || !db_numrows($rs))
  return DisplayCloseWindow();

$data=db_fetch_array($rs);

echobig($data[$field]);
DisplayCloseWindow();
return;


function DisplayCloseWindow()
{
	echo "<br>";
	echo "<hr size=1 noshade>";
	echo "<a href=# onClick='window.close();return false;'>"."Close window"."</a>";
}

function echobig($string, $bufferSize = 8192)
{
	for ($chars=strlen($string)-1,$start=0;$start <= $chars;$start += $bufferSize) 
		echo substr($string,$start,$bufferSize);
}

?>