ee841c35dc64b4e70c8eea0e2471e205ad5b75ad
4 $sanitize_all_escapes=true;
7 //STOP FAKE REGISTER GLOBALS
8 $fake_register_globals=false;
11 include_once("../../globals.php");
12 include_once("$srcdir/patient.inc");
13 include_once("$srcdir/acl.inc");
14 include_once("$srcdir/options.inc.php");
16 $prow = getPatientData($pid, "squad, title, fname, mname, lname");
18 // Check authorization.
19 $thisauth = acl_check('patients', 'notes');
21 die(htmlspecialchars( xl('Not authorized'), ENT_NOQUOTES
));
22 if ($prow['squad'] && ! acl_check('squads', $prow['squad']))
23 die(htmlspecialchars( xl('Not authorized for this squad.'), ENT_NOQUOTES
));
25 $noteid = $_REQUEST['noteid'];
27 $ptname = $prow['title'] . ' ' . $prow['fname'] . ' ' . $prow['mname'] .
35 $nrow = getPnoteById($noteid, 'title,assigned_to,activity,body');
36 $title = $nrow['title'];
37 $assigned_to = $nrow['assigned_to'];
38 $activity = $nrow['activity'];
39 $body = $nrow['body'];
44 <?php
html_header_show();?
>
45 <link rel
='stylesheet' href
="<?php echo $css_header;?>" type
="text/css">
48 <body
class="body_top">
51 generate_display_field(array('data_type'=>'1','list_id'=>'note_type'), $title) .
52 "</b>" . htmlspecialchars( xl('for','',' ',' '), ENT_NOQUOTES
) .
53 "<b>" . htmlspecialchars( $ptname, ENT_NOQUOTES
) . "</b>"; ?
></p
>
55 <p
><?php
echo htmlspecialchars( xl('Assigned To'), ENT_NOQUOTES
); ?
>: <?php
echo htmlspecialchars( $assigned_to, ENT_NOQUOTES
); ?
></p
>
57 <p
><?php
echo htmlspecialchars( xl('Active'), ENT_NOQUOTES
); ?
>: <?php
echo htmlspecialchars( ($activity ?
xl('Yes') : xl('No')), ENT_NOQUOTES
); ?
></p
>
59 <p
><?php
echo nl2br(htmlspecialchars( $body, ENT_NOQUOTES
)); ?
></p
>
61 <script language
='JavaScript'>