4 $sanitize_all_escapes=true;
7 //STOP FAKE REGISTER GLOBALS
8 $fake_register_globals=false;
11 include_once("../../globals.php");
12 include_once("$srcdir/pnotes.inc");
13 include_once("$srcdir/patient.inc");
14 include_once("$srcdir/acl.inc");
15 include_once("$srcdir/options.inc.php");
17 $prow = getPatientData($pid, "squad, title, fname, mname, lname");
19 // Check authorization.
20 $thisauth = acl_check('patients', 'notes');
22 die(htmlspecialchars( xl('Not authorized'), ENT_NOQUOTES
));
23 if ($prow['squad'] && ! acl_check('squads', $prow['squad']))
24 die(htmlspecialchars( xl('Not authorized for this squad.'), ENT_NOQUOTES
));
26 $noteid = $_REQUEST['noteid'];
28 $ptname = $prow['title'] . ' ' . $prow['fname'] . ' ' . $prow['mname'] .
36 $nrow = getPnoteById($noteid, 'title,assigned_to,activity,body');
37 $title = $nrow['title'];
38 $assigned_to = $nrow['assigned_to'];
39 $activity = $nrow['activity'];
40 $body = $nrow['body'];
45 <?php
html_header_show();?
>
46 <link rel
='stylesheet' href
="<?php echo $css_header;?>" type
="text/css">
49 <body
class="body_top">
52 generate_display_field(array('data_type'=>'1','list_id'=>'note_type'), $title) .
53 "</b>" . htmlspecialchars( xl('for','',' ',' '), ENT_NOQUOTES
) .
54 "<b>" . htmlspecialchars( $ptname, ENT_NOQUOTES
) . "</b>"; ?
></p
>
56 <p
><?php
echo htmlspecialchars( xl('Assigned To'), ENT_NOQUOTES
); ?
>: <?php
echo htmlspecialchars( $assigned_to, ENT_NOQUOTES
); ?
></p
>
58 <p
><?php
echo htmlspecialchars( xl('Active'), ENT_NOQUOTES
); ?
>: <?php
echo htmlspecialchars( ($activity ?
xl('Yes') : xl('No')), ENT_NOQUOTES
); ?
></p
>
60 <p
><?php
echo nl2br(htmlspecialchars( $body, ENT_NOQUOTES
)); ?
></p
>
62 <script language
='JavaScript'>
