search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Label changes as discussed in forums on sourceforge
[openemr.git] / library / options.inc.php
blob9961cac307a22c51b2783b7ffb159dd164ab59f0
1 <?php
2 // Copyright (C) 2007-2009 Rod Roark <rod@sunsetsystems.com>
3 // Copyright © 2010 by Andrew Moore <amoore@cpan.org>
4 // Copyright © 2010 by "Boyd Stephen Smith Jr." <bss@iguanasuicide.net>
5 //
6 // This program is free software; you can redistribute it and/or
7 // modify it under the terms of the GNU General Public License
8 // as published by the Free Software Foundation; either version 2
9 // of the License, or (at your option) any later version.
10
11 // Functions for managing the lists and layouts
12 //
13 // Note: there are translation wrappers for the lists and layout labels
14 // at library/translation.inc.php. The functions are titled
15 // xl_list_label() and xl_layout_label() and are controlled by the
16 // $GLOBALS['translate_lists'] and $GLOBALS['translate_layout']
17 // flags in globals.php
18
19 require_once("formdata.inc.php");
20 require_once("formatting.inc.php");
21
22 $date_init = "";
23
24 function get_pharmacies() {
25 return sqlStatement("SELECT d.id, d.name, a.line1, a.city, " .
26 "p.area_code, p.prefix, p.number FROM pharmacies AS d " .
27 "LEFT OUTER JOIN addresses AS a ON a.foreign_id = d.id " .
28 "LEFT OUTER JOIN phone_numbers AS p ON p.foreign_id = d.id " .
29 "AND p.type = 2 " .
30 "ORDER BY name, area_code, prefix, number");
31 }
32
33 // Function to generate a drop-list.
34 //
35 function generate_select_list($tag_name, $list_id, $currvalue, $title,
36 $empty_name=' ', $class='', $onchange='')
37 {
38 $s = '';
39 $tag_name_esc = htmlspecialchars( $tag_name, ENT_QUOTES);
40 $s .= "<select name='$tag_name_esc' id='$tag_name_esc'";
41 if ($class) $s .= " class='$class'";
42 if ($onchange) $s .= " onchange='$onchange'";
43 $selectTitle = htmlspecialchars( $title, ENT_QUOTES);
44 $s .= " title='$selectTitle'>";
45 $selectEmptyName = htmlspecialchars( xl($empty_name), ENT_NOQUOTES);
46 if ($empty_name) $s .= "<option value=''>" . $selectEmptyName . "</option>";
47 $lres = sqlStatement("SELECT * FROM list_options " .
48 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
49 $got_selected = FALSE;
50 while ($lrow = sqlFetchArray($lres)) {
51 $optionValue = htmlspecialchars( $lrow['option_id'], ENT_QUOTES);
52 $s .= "<option value='$optionValue'";
53 if ((strlen($currvalue) == 0 && $lrow['is_default']) ||
54 (strlen($currvalue) > 0 && $lrow['option_id'] == $currvalue))
55 {
56 $s .= " selected";
57 $got_selected = TRUE;
58 }
59 $optionLabel = htmlspecialchars( xl_list_label($lrow['title']), ENT_NOQUOTES);
60 $s .= ">$optionLabel</option>\n";
61 }
62 if (!$got_selected && strlen($currvalue) > 0) {
63 $currescaped = htmlspecialchars($currvalue, ENT_QUOTES);
64 $s .= "<option value='$currescaped' selected>* $currescaped *</option>";
65 $s .= "</select>";
66 $fontTitle = htmlspecialchars( xl('Please choose a valid selection from the list.'), ENT_QUOTES);
67 $fontText = htmlspecialchars( xl('Fix this'), ENT_NOQUOTES);
68 $s .= " <font color='red' title='$fontTitle'>$fontText!</font>";
69 }
70 else {
71 $s .= "</select>";
72 }
73 return $s;
74 }
75
76
77
78 function generate_form_field($frow, $currvalue) {
79 global $rootdir, $date_init;
80
81 $currescaped = htmlspecialchars($currvalue, ENT_QUOTES);
82
83 $data_type = $frow['data_type'];
84 $field_id = $frow['field_id'];
85 $list_id = $frow['list_id'];
86 // escaped variables to use in html
87 $field_id_esc= htmlspecialchars( $field_id, ENT_QUOTES);
88 $list_id_esc = htmlspecialchars( $list_id, ENT_QUOTES);
89
90 // Added 5-09 by BM - Translate description if applicable
91 $description = htmlspecialchars(xl_layout_label($frow['description']), ENT_QUOTES);
92
93 // added 5-2009 by BM to allow modification of the 'empty' text title field.
94 // Can pass $frow['empty_title'] with this variable, otherwise
95 // will default to 'Unassigned'.
96 // modified 6-2009 by BM to allow complete skipping of the 'empty' text title
97 // if make $frow['empty_title'] equal to 'SKIP'
98 $showEmpty = true;
99 if (isset($frow['empty_title'])) {
100 if ($frow['empty_title'] == "SKIP") {
101 //do not display an 'empty' choice
102 $showEmpty = false;
103 $empty_title = "Unassigned";
104 }
105 else {
106 $empty_title = $frow['empty_title'];
107 }
108 }
109 else {
110 $empty_title = "Unassigned";
111 }
112
113 // generic single-selection list
114 if ($data_type == 1) {
115 echo generate_select_list("form_$field_id", $list_id, $currvalue,
116 $description, $showEmpty ? $empty_title : '');
117 }
118
119 // simple text field
120 else if ($data_type == 2) {
121 $fldlength = htmlspecialchars( $frow['fld_length'], ENT_QUOTES);
122 $maxlength = htmlspecialchars( $frow['max_length'], ENT_QUOTES);
123 echo "<input type='text'" .
124 " name='form_$field_id_esc'" .
125 " id='form_$field_id_esc'" .
126 " size='$fldlength'" .
127 " maxlength='$maxlength'" .
128 " title='$description'" .
129 " value='$currescaped'";
130 if (strpos($frow['edit_options'], 'C') !== FALSE)
131 echo " onchange='capitalizeMe(this)'";
132 $tmp = htmlspecialchars( $GLOBALS['gbl_mask_patient_id'], ENT_QUOTES);
133 if ($field_id == 'pubpid' && strlen($tmp) > 0) {
134 echo " onkeyup='maskkeyup(this,\"$tmp\")'";
135 echo " onblur='maskblur(this,\"$tmp\")'";
136 }
137 echo " />";
138 }
139
140 // long or multi-line text field
141 else if ($data_type == 3) {
142 $textCols = htmlspecialchars( $frow['fld_length'], ENT_QUOTES);
143 $textRows = htmlspecialchars( $frow['max_length'], ENT_QUOTES);
144 echo "<textarea" .
145 " name='form_$field_id_esc'" .
146 " id='form_$field_id_esc'" .
147 " title='$description'" .
148 " cols='$textCols'" .
149 " rows='$textRows'>" .
150 $currescaped . "</textarea>";
151 }
152
153 // date
154 else if ($data_type == 4) {
155 echo "<input type='text' size='10' name='form_$field_id_esc' id='form_$field_id_esc'" .
156 " value='$currescaped'" .
157 " title='$description'" .
158 " onkeyup='datekeyup(this,mypcc)' onblur='dateblur(this,mypcc)' />" .
159 "<img src='$rootdir/pic/show_calendar.gif' align='absbottom' width='24' height='22'" .
160 " id='img_$field_id_esc' border='0' alt='[?]' style='cursor:pointer'" .
161 " title='" . htmlspecialchars( xl('Click here to choose a date'), ENT_QUOTES) . "' />";
162 $date_init .= " Calendar.setup({inputField:'form_$field_id', ifFormat:'%Y-%m-%d', button:'img_$field_id'});\n";
163 }
164
165 // provider list, local providers only
166 else if ($data_type == 10) {
167 $ures = sqlStatement("SELECT id, fname, lname, specialty FROM users " .
168 "WHERE active = 1 AND ( info IS NULL OR info NOT LIKE '%Inactive%' ) " .
169 "AND authorized = 1 " .
170 "ORDER BY lname, fname");
171 echo "<select name='form_$field_id_esc' id='form_$field_id_esc' title='$description'>";
172 echo "<option value=''>" . htmlspecialchars( xl('Unassigned'), ENT_NOQUOTES) . "</option>";
173 while ($urow = sqlFetchArray($ures)) {
174 $uname = htmlspecialchars( $urow['fname'] . ' ' . $urow['lname'], ENT_NOQUOTES);
175 $optionId = htmlspecialchars( $urow['id'], ENT_QUOTES);
176 echo "<option value='$optionId'";
177 if ($urow['id'] == $currvalue) echo " selected";
178 echo ">$uname</option>";
179 }
180 echo "</select>";
181 }
182
183 // provider list, including address book entries with an NPI number
184 else if ($data_type == 11) {
185 $ures = sqlStatement("SELECT id, fname, lname, specialty FROM users " .
186 "WHERE active = 1 AND ( info IS NULL OR info NOT LIKE '%Inactive%' ) " .
187 "AND ( authorized = 1 OR ( username = '' AND npi != '' ) ) " .
188 "ORDER BY lname, fname");
189 echo "<select name='form_$field_id_esc' id='form_$field_id_esc' title='$description'>";
190 echo "<option value=''>" . htmlspecialchars( xl('Unassigned'), ENT_NOQUOTES) . "</option>";
191 while ($urow = sqlFetchArray($ures)) {
192 $uname = htmlspecialchars( $urow['fname'] . ' ' . $urow['lname'], ENT_NOQUOTES);
193 $optionId = htmlspecialchars( $urow['id'], ENT_QUOTES);
194 echo "<option value='$optionId'";
195 if ($urow['id'] == $currvalue) echo " selected";
196 echo ">$uname</option>";
197 }
198 echo "</select>";
199 }
200
201 // pharmacy list
202 else if ($data_type == 12) {
203 echo "<select name='form_$field_id_esc' id='form_$field_id_esc' title='$description'>";
204 echo "<option value='0'></option>";
205 $pres = get_pharmacies();
206 while ($prow = sqlFetchArray($pres)) {
207 $key = $prow['id'];
208 $optionValue = htmlspecialchars( $key, ENT_QUOTES);
209 $optionLabel = htmlspecialchars( $prow['name'] . ' ' . $prow['area_code'] . '-' .
210 $prow['prefix'] . '-' . $prow['number'] . ' / ' .
211 $prow['line1'] . ' / ' . $prow['city'], ENT_NOQUOTES);
212 echo "<option value='$optionValue'";
213 if ($currvalue == $key) echo " selected";
214 echo ">$optionLabel</option>";
215 }
216 echo "</select>";
217 }
218
219 // squads
220 else if ($data_type == 13) {
221 echo "<select name='form_$field_id_esc' id='form_$field_id_esc' title='$description'>";
222 echo "<option value=''>&nbsp;</option>";
223 $squads = acl_get_squads();
224 if ($squads) {
225 foreach ($squads as $key => $value) {
226 $optionValue = htmlspecialchars( $key, ENT_QUOTES);
227 $optionLabel = htmlspecialchars( $value[3], ENT_NOQUOTES);
228 echo "<option value='$optionValue'";
229 if ($currvalue == $key) echo " selected";
230 echo ">$optionLabel</option>\n";
231 }
232 }
233 echo "</select>";
234 }
235
236 // Address book, preferring organization name if it exists and is not in
237 // parentheses, and excluding local users who are not providers.
238 // Supports "referred to" practitioners and facilities.
239 // Alternatively the letter O in edit_options means that abook_type
240 // must begin with "ord_", indicating types used with the procedure
241 // ordering system.
242 // Alternatively the letter V in edit_options means that abook_type
243 // must be "vendor", indicating the Vendor type.
244 else if ($data_type == 14) {
245 if (strpos($frow['edit_options'], 'O') !== FALSE)
246 $tmp = "abook_type LIKE 'ord\\_%'";
247 else if (strpos($frow['edit_options'], 'V') !== FALSE)
248 $tmp = "abook_type LIKE 'vendor%'";
249 else
250 $tmp = "( username = '' OR authorized = 1 )";
251 $ures = sqlStatement("SELECT id, fname, lname, organization, username FROM users " .
252 "WHERE active = 1 AND ( info IS NULL OR info NOT LIKE '%Inactive%' ) " .
253 "AND $tmp " .
254 "ORDER BY organization, lname, fname");
255 echo "<select name='form_$field_id_esc' id='form_$field_id_esc' title='$description'>";
256 echo "<option value=''>" . htmlspecialchars( xl('Unassigned'), ENT_NOQUOTES) . "</option>";
257 while ($urow = sqlFetchArray($ures)) {
258 $uname = $urow['organization'];
259 if (empty($uname) || substr($uname, 0, 1) == '(') {
260 $uname = $urow['lname'];
261 if ($urow['fname']) $uname .= ", " . $urow['fname'];
262 }
263 $optionValue = htmlspecialchars( $urow['id'], ENT_QUOTES);
264 $optionLabel = htmlspecialchars( $uname, ENT_NOQUOTES);
265 echo "<option value='$optionValue'";
266 $title = $urow['username'] ? xl('Local') : xl('External');
267 $optionTitle = htmlspecialchars( $title, ENT_QUOTES);
268 echo " title='$optionTitle'";
269 if ($urow['id'] == $currvalue) echo " selected";
270 echo ">$optionLabel</option>";
271 }
272 echo "</select>";
273 }
274
275 // a billing code (only one of these allowed!)
276 else if ($data_type == 15) {
277 $fldlength = htmlspecialchars( $frow['fld_length'], ENT_QUOTES);
278 $maxlength = htmlspecialchars( $frow['max_length'], ENT_QUOTES);
279 echo "<input type='text'" .
280 " name='form_$field_id_esc'" .
281 " id='form_related_code'" .
282 " size='$fldlength'" .
283 " maxlength='$maxlength'" .
284 " title='$description'" .
285 " value='$currescaped'" .
286 " onclick='sel_related()' readonly" .
287 " />";
288 }
289
290 // a set of labeled checkboxes
291 else if ($data_type == 21) {
292 // In this special case, fld_length is the number of columns generated.
293 $cols = max(1, $frow['fld_length']);
294 $avalue = explode('|', $currvalue);
295 $lres = sqlStatement("SELECT * FROM list_options " .
296 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
297 echo "<table cellpadding='0' cellspacing='0' width='100%'>";
298 $tdpct = (int) (100 / $cols);
299 for ($count = 0; $lrow = sqlFetchArray($lres); ++$count) {
300 $option_id = $lrow['option_id'];
301 $option_id_esc = htmlspecialchars( $option_id, ENT_QUOTES);
302 // if ($count) echo "<br />";
303 if ($count % $cols == 0) {
304 if ($count) echo "</tr>";
305 echo "<tr>";
306 }
307 echo "<td width='$tdpct%'>";
308 echo "<input type='checkbox' name='form_{$field_id_esc}[$option_id_esc]' id='form_{$field_id_esc}[$option_id_esc]' value='1'";
309 if (in_array($option_id, $avalue)) echo " checked";
310
311 // Added 5-09 by BM - Translate label if applicable
312 echo ">" . htmlspecialchars( xl_list_label($lrow['title']), ENT_NOQUOTES);
313
314 echo "</td>";
315 }
316 if ($count) {
317 echo "</tr>";
318 if ($count > $cols) {
319 // Add some space after multiple rows of checkboxes.
320 $cols = htmlspecialchars( $cols, ENT_QUOTES);
321 echo "<tr><td colspan='$cols' style='height:0.7em'></td></tr>";
322 }
323 }
324 echo "</table>";
325 }
326
327 // a set of labeled text input fields
328 else if ($data_type == 22) {
329 $tmp = explode('|', $currvalue);
330 $avalue = array();
331 foreach ($tmp as $value) {
332 if (preg_match('/^([^:]+):(.*)$/', $value, $matches)) {
333 $avalue[$matches[1]] = $matches[2];
334 }
335 }
336 $lres = sqlStatement("SELECT * FROM list_options " .
337 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
338 echo "<table cellpadding='0' cellspacing='0'>";
339 while ($lrow = sqlFetchArray($lres)) {
340 $option_id = $lrow['option_id'];
341 $option_id_esc = htmlspecialchars( $option_id, ENT_QUOTES);
342 $maxlength = empty($frow['max_length']) ? 255 : $frow['max_length'];
343 $fldlength = empty($frow['fld_length']) ? 20 : $frow['fld_length'];
344
345 // Added 5-09 by BM - Translate label if applicable
346 echo "<tr><td>" . htmlspecialchars( xl_list_label($lrow['title']), ENT_NOQUOTES) . "&nbsp;</td>";
347 $fldlength = htmlspecialchars( $fldlength, ENT_QUOTES);
348 $maxlength = htmlspecialchars( $maxlength, ENT_QUOTES);
349 $optionValue = htmlspecialchars( $avalue[$option_id], ENT_QUOTES);
350 echo "<td><input type='text'" .
351 " name='form_{$field_id_esc}[$option_id_esc]'" .
352 " id='form_{$field_id_esc}[$option_id_esc]'" .
353 " size='$fldlength'" .
354 " maxlength='$maxlength'" .
355 " value='$optionValue'";
356 echo " /></td></tr>";
357 }
358 echo "</table>";
359 }
360
361 // a set of exam results; 3 radio buttons and a text field:
362 else if ($data_type == 23) {
363 $tmp = explode('|', $currvalue);
364 $avalue = array();
365 foreach ($tmp as $value) {
366 if (preg_match('/^([^:]+):(.*)$/', $value, $matches)) {
367 $avalue[$matches[1]] = $matches[2];
368 }
369 }
370 $maxlength = empty($frow['max_length']) ? 255 : $frow['max_length'];
371 $fldlength = empty($frow['fld_length']) ? 20 : $frow['fld_length'];
372 $lres = sqlStatement("SELECT * FROM list_options " .
373 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
374 echo "<table cellpadding='0' cellspacing='0'>";
375 echo "<tr><td>&nbsp;</td><td class='bold'>" .
376 htmlspecialchars( xl('N/A'), ENT_NOQUOTES) .
377 "&nbsp;</td><td class='bold'>" .
378 htmlspecialchars( xl('Nor'), ENT_NOQUOTES) . "&nbsp;</td>" .
379 "<td class='bold'>" .
380 htmlspecialchars( xl('Abn'), ENT_NOQUOTES) . "&nbsp;</td><td class='bold'>" .
381 htmlspecialchars( xl('Date/Notes'), ENT_NOQUOTES) . "</td></tr>";
382 while ($lrow = sqlFetchArray($lres)) {
383 $option_id = $lrow['option_id'];
384 $option_id_esc = htmlspecialchars( $option_id, ENT_QUOTES);
385 $restype = substr($avalue[$option_id], 0, 1);
386 $resnote = substr($avalue[$option_id], 2);
387
388 // Added 5-09 by BM - Translate label if applicable
389 echo "<tr><td>" . htmlspecialchars( xl_list_label($lrow['title']), ENT_NOQUOTES) . "&nbsp;</td>";
390
391 for ($i = 0; $i < 3; ++$i) {
392 $inputValue = htmlspecialchars( $i, ENT_QUOTES);
393 echo "<td><input type='radio'" .
394 " name='radio_{$field_id_esc}[$option_id_esc]'" .
395 " id='radio_{$field_id_esc}[$option_id_esc]'" .
396 " value='$inputValue'";
397 if ($restype === "$i") echo " checked";
398 echo " /></td>";
399 }
400 $fldlength = htmlspecialchars( $fldlength, ENT_QUOTES);
401 $maxlength = htmlspecialchars( $maxlength, ENT_QUOTES);
402 $resnote = htmlspecialchars( $resnote, ENT_QUOTES);
403 echo "<td><input type='text'" .
404 " name='form_{$field_id_esc}[$option_id_esc]'" .
405 " id='form_{$field_id_esc}[$option_id_esc]'" .
406 " size='$fldlength'" .
407 " maxlength='$maxlength'" .
408 " value='$resnote' /></td>";
409 echo "</tr>";
410 }
411 echo "</table>";
412 }
413
414 // the list of active allergies for the current patient
415 // this is read-only!
416 else if ($data_type == 24) {
417 $query = "SELECT title, comments FROM lists WHERE " .
418 "pid = ? AND type = 'allergy' AND enddate IS NULL " .
419 "ORDER BY begdate";
420 // echo "<!-- $query -->\n"; // debugging
421 $lres = sqlStatement($query, array($GLOBALS['pid']));
422 $count = 0;
423 while ($lrow = sqlFetchArray($lres)) {
424 if ($count++) echo "<br />";
425 echo htmlspecialchars( $lrow['title'], ENT_NOQUOTES);
426 if ($lrow['comments']) echo ' (' . htmlspecialchars( $lrow['comments'], ENT_NOQUOTES) . ')';
427 }
428 }
429
430 // a set of labeled checkboxes, each with a text field:
431 else if ($data_type == 25) {
432 $tmp = explode('|', $currvalue);
433 $avalue = array();
434 foreach ($tmp as $value) {
435 if (preg_match('/^([^:]+):(.*)$/', $value, $matches)) {
436 $avalue[$matches[1]] = $matches[2];
437 }
438 }
439 $maxlength = empty($frow['max_length']) ? 255 : $frow['max_length'];
440 $fldlength = empty($frow['fld_length']) ? 20 : $frow['fld_length'];
441 $lres = sqlStatement("SELECT * FROM list_options " .
442 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
443 echo "<table cellpadding='0' cellspacing='0'>";
444 while ($lrow = sqlFetchArray($lres)) {
445 $option_id = $lrow['option_id'];
446 $option_id_esc = htmlspecialchars( $option_id, ENT_QUOTES);
447 $restype = substr($avalue[$option_id], 0, 1);
448 $resnote = substr($avalue[$option_id], 2);
449
450 // Added 5-09 by BM - Translate label if applicable
451 echo "<tr><td>" . htmlspecialchars( xl_list_label($lrow['title']), ENT_NOQUOTES) . "&nbsp;</td>";
452
453 $option_id = htmlspecialchars( $option_id, ENT_QUOTES);
454 echo "<td><input type='checkbox' name='check_{$field_id_esc}[$option_id_esc]' id='check_{$field_id_esc}[$option_id_esc]' value='1'";
455 if ($restype) echo " checked";
456 echo " />&nbsp;</td>";
457 $fldlength = htmlspecialchars( $fldlength, ENT_QUOTES);
458 $maxlength = htmlspecialchars( $maxlength, ENT_QUOTES);
459 $resnote = htmlspecialchars( $resnote, ENT_QUOTES);
460 echo "<td><input type='text'" .
461 " name='form_{$field_id_esc}[$option_id_esc]'" .
462 " id='form_{$field_id_esc}[$option_id_esc]'" .
463 " size='$fldlength'" .
464 " maxlength='$maxlength'" .
465 " value='$resnote' /></td>";
466 echo "</tr>";
467 }
468 echo "</table>";
469 }
470
471 // single-selection list with ability to add to it
472 else if ($data_type == 26) {
473 echo "<select class='addtolistclass_$list_id_esc' name='form_$field_id_esc' id='form_$field_id_esc' title='$description'>";
474 if ($showEmpty) echo "<option value=''>" . htmlspecialchars( xl($empty_title), ENT_QUOTES) . "</option>";
475 $lres = sqlStatement("SELECT * FROM list_options " .
476 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
477 $got_selected = FALSE;
478 while ($lrow = sqlFetchArray($lres)) {
479 $optionValue = htmlspecialchars( $lrow['option_id'], ENT_QUOTES);
480 echo "<option value='$optionValue'";
481 if ((strlen($currvalue) == 0 && $lrow['is_default']) ||
482 (strlen($currvalue) > 0 && $lrow['option_id'] == $currvalue))
483 {
484 echo " selected";
485 $got_selected = TRUE;
486 }
487 // Added 5-09 by BM - Translate label if applicable
488 echo ">" . htmlspecialchars( xl_list_label($lrow['title']), ENT_NOQUOTES) . "</option>\n";
489 }
490 if (!$got_selected && strlen($currvalue) > 0) {
491 echo "<option value='$currescaped' selected>* $currescaped *</option>";
492 echo "</select>";
493 $fontTitle = htmlspecialchars( xl('Please choose a valid selection from the list.'), ENT_NOQUOTES);
494 $fontText = htmlspecialchars( xl('Fix this'), ENT_NOQUOTES);
495 echo " <font color='red' title='$fontTitle'>$fontText!</font>";
496 }
497 else {
498 echo "</select>";
499 }
500 // show the add button if user has access to correct list
501 $inputValue = htmlspecialchars( xl('Add'), ENT_QUOTES);
502 $outputAddButton = "<input type='button' id='addtolistid_".$list_id_esc."' fieldid='form_".$field_id_esc."' class='addtolist' value='$inputValue'>";
503 if (aco_exist('lists', $list_id)) {
504 // a specific aco exist for this list, so ensure access
505 if (acl_check('lists', $list_id)) echo $outputAddButton;
506 }
507 else {
508 // no specific aco exist for this list, so check for access to 'default' list
509 if (acl_check('lists', 'default')) echo $outputAddButton;
510 }
511 }
512
513 // a set of labeled radio buttons
514 else if ($data_type == 27) {
515 // In this special case, fld_length is the number of columns generated.
516 $cols = max(1, $frow['fld_length']);
517 $lres = sqlStatement("SELECT * FROM list_options " .
518 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
519 echo "<table cellpadding='0' cellspacing='0' width='100%'>";
520 $tdpct = (int) (100 / $cols);
521 $got_selected = FALSE;
522 for ($count = 0; $lrow = sqlFetchArray($lres); ++$count) {
523 $option_id = $lrow['option_id'];
524 $option_id_esc = htmlspecialchars( $option_id, ENT_QUOTES);
525 if ($count % $cols == 0) {
526 if ($count) echo "</tr>";
527 echo "<tr>";
528 }
529 echo "<td width='$tdpct%'>";
530 echo "<input type='radio' name='form_{$field_id_esc}' id='form_{$field_id_esc}[$option_id_esc]' value='$option_id_esc'";
531 if ((strlen($currvalue) == 0 && $lrow['is_default']) ||
532 (strlen($currvalue) > 0 && $option_id == $currvalue))
533 {
534 echo " checked";
535 $got_selected = TRUE;
536 }
537 echo ">" . htmlspecialchars( xl_list_label($lrow['title']), ENT_NOQUOTES);
538 echo "</td>";
539 }
540 if ($count) {
541 echo "</tr>";
542 if ($count > $cols) {
543 // Add some space after multiple rows of radio buttons.
544 $cols = htmlspecialchars( $cols, ENT_QUOTES);
545 echo "<tr><td colspan='$cols' style='height:0.7em'></td></tr>";
546 }
547 }
548 echo "</table>";
549 if (!$got_selected && strlen($currvalue) > 0) {
550 $fontTitle = htmlspecialchars( xl('Please choose a valid selection.'), ENT_QUOTES);
551 $fontText = htmlspecialchars( xl('Fix this'), ENT_NOQUOTES);
552 echo "$currescaped <font color='red' title='$fontTitle'>$fontText!</font>";
553 }
554 }
555
556 // special case for history of lifestyle status; 3 radio buttons and a date text field:
557 else if ($data_type == 28) {
558 $tmp = explode('|', $currvalue);
559 switch(count($tmp)) {
560 case "3": {
561 $resnote = $tmp[0];
562 $restype = $tmp[1];
563 $resdate = $tmp[2];
564 } break;
565 case "2": {
566 $resnote = $tmp[0];
567 $restype = $tmp[1];
568 $resdate = "";
569 } break;
570 case "1": {
571 $resnote = $tmp[0];
572 $resdate = $restype = "";
573 } break;
574 default: {
575 $restype = $resdate = $resnote = "";
576 } break;
577 }
578 $maxlength = empty($frow['max_length']) ? 255 : $frow['max_length'];
579 $fldlength = empty($frow['fld_length']) ? 20 : $frow['fld_length'];
580
581 $fldlength = htmlspecialchars( $fldlength, ENT_QUOTES);
582 $maxlength = htmlspecialchars( $maxlength, ENT_QUOTES);
583 $resnote = htmlspecialchars( $resnote, ENT_QUOTES);
584 $resdate = htmlspecialchars( $resdate, ENT_QUOTES);
585 echo "<table cellpadding='0' cellspacing='0'>";
586 echo "<tr>";
587 // input text
588 echo "<td><input type='text'" .
589 " name='form_$field_id_esc'" .
590 " id='form_$field_id_esc'" .
591 " size='$fldlength'" .
592 " maxlength='$maxlength'" .
593 " value='$resnote' />&nbsp;</td>";
594 echo "<td class='bold'>&nbsp;&nbsp;&nbsp;&nbsp;".htmlspecialchars( xl('Status'), ENT_NOQUOTES).":&nbsp;</td>";
595 // current
596 echo "<td><input type='radio'" .
597 " name='radio_{$field_id_esc}'" .
598 " id='radio_{$field_id_esc}[current]'" .
599 " value='current".$field_id_esc."'";
600 if ($restype == "current".$field_id) echo " checked";
601 echo "/>".htmlspecialchars( xl('Current'), ENT_NOQUOTES)."&nbsp;</td>";
602 // quit
603 echo "<td><input type='radio'" .
604 " name='radio_{$field_id_esc}'" .
605 " id='radio_{$field_id_esc}[quit]'" .
606 " value='quit".$field_id_esc."'";
607 if ($restype == "quit".$field_id) echo " checked";
608 echo "/>".htmlspecialchars( xl('Quit'), ENT_NOQUOTES)."&nbsp;</td>";
609 // quit date
610 echo "<td><input type='text' size='6' name='date_$field_id_esc' id='date_$field_id_esc'" .
611 " value='$resdate'" .
612 " title='$description'" .
613 " onkeyup='datekeyup(this,mypcc)' onblur='dateblur(this,mypcc)' />" .
614 "<img src='$rootdir/pic/show_calendar.gif' align='absbottom' width='24' height='22'" .
615 " id='img_$field_id_esc' border='0' alt='[?]' style='cursor:pointer'" .
616 " title='" . htmlspecialchars( xl('Click here to choose a date'), ENT_QUOTES) . "' />&nbsp;</td>";
617 $date_init .= " Calendar.setup({inputField:'date_$field_id', ifFormat:'%Y-%m-%d', button:'img_$field_id'});\n";
618 // never
619 echo "<td><input type='radio'" .
620 " name='radio_{$field_id_esc}'" .
621 " id='radio_{$field_id_esc}[never]'" .
622 " value='never".$field_id_esc."'";
623 if ($restype == "never".$field_id) echo " checked";
624 echo " />".htmlspecialchars( xl('Never'), ENT_NOQUOTES)."&nbsp;</td>";
625 // Not Applicable
626 echo "<td><input type='radio'" .
627 " name='radio_{$field_id}'" .
628 " id='radio_{$field_id}[not_applicable]'" .
629 " value='not_applicable".$field_id."'";
630 if ($restype == "not_applicable".$field_id) echo " checked";
631 echo " />".htmlspecialchars( xl('N/A'), ENT_QUOTES)."&nbsp;</td>";
632 echo "</tr>";
633 echo "</table>";
634 }
635
636 }
637
638 function generate_print_field($frow, $currvalue) {
639 global $rootdir, $date_init;
640
641 $currescaped = htmlspecialchars($currvalue, ENT_QUOTES);
642
643 $data_type = $frow['data_type'];
644 $field_id = $frow['field_id'];
645 $list_id = $frow['list_id'];
646 $fld_length = $frow['fld_length'];
647
648 $description = htmlspecialchars(xl_layout_label($frow['description']), ENT_QUOTES);
649
650 // Can pass $frow['empty_title'] with this variable, otherwise
651 // will default to 'Unassigned'.
652 // If it is 'SKIP' then an empty text title is completely skipped.
653 $showEmpty = true;
654 if (isset($frow['empty_title'])) {
655 if ($frow['empty_title'] == "SKIP") {
656 //do not display an 'empty' choice
657 $showEmpty = false;
658 $empty_title = "Unassigned";
659 }
660 else {
661 $empty_title = $frow['empty_title'];
662 }
663 }
664 else {
665 $empty_title = "Unassigned";
666 }
667
668 // generic single-selection list
669 if ($data_type == 1 || $data_type == 26) {
670 if (empty($fld_length)) {
671 if ($list_id == 'titles') {
672 $fld_length = 3;
673 } else {
674 $fld_length = 10;
675 }
676 }
677 $tmp = '';
678 if ($currvalue) {
679 $lrow = sqlQuery("SELECT title FROM list_options " .
680 "WHERE list_id = ? AND option_id = ?", array($list_id,$currvalue));
681 $tmp = xl_list_label($lrow['title']);
682 if (empty($tmp)) $tmp = "($currvalue)";
683 }
684 /*****************************************************************
685 echo "<input type='text'" .
686 " size='$fld_length'" .
687 " value='$tmp'" .
688 " class='under'" .
689 " />";
690 *****************************************************************/
691 if ($tmp === '') { $tmp = '&nbsp;'; }
692 else { $tmp = htmlspecialchars( $tmp, ENT_QUOTES); }
693 echo $tmp;
694 }
695
696 // simple text field
697 else if ($data_type == 2 || $data_type == 15) {
698 /*****************************************************************
699 echo "<input type='text'" .
700 " size='$fld_length'" .
701 " value='$currescaped'" .
702 " class='under'" .
703 " />";
704 *****************************************************************/
705 if ($currescaped === '') $currescaped = '&nbsp;';
706 echo $currescaped;
707 }
708
709 // long or multi-line text field
710 else if ($data_type == 3) {
711 $fldlength = htmlspecialchars( $fld_length, ENT_QUOTES);
712 $maxlength = htmlspecialchars( $frow['max_length'], ENT_QUOTES);
713 echo "<textarea" .
714 " cols='$fldlength'" .
715 " rows='$maxlength'>" .
716 $currescaped . "</textarea>";
717 }
718
719 // date
720 else if ($data_type == 4) {
721 /*****************************************************************
722 echo "<input type='text' size='10'" .
723 " value='$currescaped'" .
724 " title='$description'" .
725 " class='under'" .
726 " />";
727 *****************************************************************/
728 if ($currvalue === '') { $tmp = oeFormatShortDate('&nbsp;'); }
729 else { $tmp = htmlspecialchars( oeFormatShortDate($currvalue), ENT_QUOTES); }
730 echo $tmp;
731 }
732
733 // provider list
734 else if ($data_type == 10 || $data_type == 11) {
735 $tmp = '';
736 if ($currvalue) {
737 $urow = sqlQuery("SELECT fname, lname, specialty FROM users " .
738 "WHERE id = ?", array($currvalue) );
739 $tmp = ucwords($urow['fname'] . " " . $urow['lname']);
740 if (empty($tmp)) $tmp = "($currvalue)";
741 }
742 /*****************************************************************
743 echo "<input type='text'" .
744 " size='$fld_length'" .
745 " value='$tmp'" .
746 " class='under'" .
747 " />";
748 *****************************************************************/
749 if ($tmp === '') { $tmp = '&nbsp;'; }
750 else { $tmp = htmlspecialchars( $tmp, ENT_QUOTES); }
751 echo $tmp;
752 }
753
754 // pharmacy list
755 else if ($data_type == 12) {
756 $tmp = '';
757 if ($currvalue) {
758 $pres = get_pharmacies();
759 while ($prow = sqlFetchArray($pres)) {
760 $key = $prow['id'];
761 if ($currvalue == $key) {
762 $tmp = $prow['name'] . ' ' . $prow['area_code'] . '-' .
763 $prow['prefix'] . '-' . $prow['number'] . ' / ' .
764 $prow['line1'] . ' / ' . $prow['city'];
765 }
766 }
767 if (empty($tmp)) $tmp = "($currvalue)";
768 }
769 /*****************************************************************
770 echo "<input type='text'" .
771 " size='$fld_length'" .
772 " value='$tmp'" .
773 " class='under'" .
774 " />";
775 *****************************************************************/
776 if ($tmp === '') { $tmp = '&nbsp;'; }
777 else { $tmp = htmlspecialchars( $tmp, ENT_QUOTES); }
778 echo $tmp;
779 }
780
781 // squads
782 else if ($data_type == 13) {
783 $tmp = '';
784 if ($currvalue) {
785 $squads = acl_get_squads();
786 if ($squads) {
787 foreach ($squads as $key => $value) {
788 if ($currvalue == $key) {
789 $tmp = $value[3];
790 }
791 }
792 }
793 if (empty($tmp)) $tmp = "($currvalue)";
794 }
795 /*****************************************************************
796 echo "<input type='text'" .
797 " size='$fld_length'" .
798 " value='$tmp'" .
799 " class='under'" .
800 " />";
801 *****************************************************************/
802 if ($tmp === '') { $tmp = '&nbsp;'; }
803 else { $tmp = htmlspecialchars( $tmp, ENT_QUOTES); }
804 echo $tmp;
805 }
806
807 // Address book.
808 else if ($data_type == 14) {
809 $tmp = '';
810 if ($currvalue) {
811 $urow = sqlQuery("SELECT fname, lname, specialty FROM users " .
812 "WHERE id = ?", array($currvalue) );
813 $uname = $urow['lname'];
814 if ($urow['fname']) $uname .= ", " . $urow['fname'];
815 $tmp = $uname;
816 if (empty($tmp)) $tmp = "($currvalue)";
817 }
818 /*****************************************************************
819 echo "<input type='text'" .
820 " size='$fld_length'" .
821 " value='$tmp'" .
822 " class='under'" .
823 " />";
824 *****************************************************************/
825 if ($tmp === '') { $tmp = '&nbsp;'; }
826 else { $tmp = htmlspecialchars( $tmp, ENT_QUOTES); }
827 echo $tmp;
828 }
829
830 // a set of labeled checkboxes
831 else if ($data_type == 21) {
832 // In this special case, fld_length is the number of columns generated.
833 $cols = max(1, $fld_length);
834 $avalue = explode('|', $currvalue);
835 $lres = sqlStatement("SELECT * FROM list_options " .
836 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
837 echo "<table cellpadding='0' cellspacing='0' width='100%'>";
838 $tdpct = (int) (100 / $cols);
839 for ($count = 0; $lrow = sqlFetchArray($lres); ++$count) {
840 $option_id = $lrow['option_id'];
841 if ($count % $cols == 0) {
842 if ($count) echo "</tr>";
843 echo "<tr>";
844 }
845 echo "<td width='$tdpct%'>";
846 echo "<input type='checkbox'";
847 if (in_array($option_id, $avalue)) echo " checked";
848 echo ">" . htmlspecialchars( xl_list_label($lrow['title']), ENT_NOQUOTES);
849 echo "</td>";
850 }
851 if ($count) {
852 echo "</tr>";
853 if ($count > $cols) {
854 // Add some space after multiple rows of checkboxes.
855 $cols = htmlspecialchars( $cols, ENT_QUOTES);
856 echo "<tr><td colspan='$cols' style='height:0.7em'></td></tr>";
857 }
858 }
859 echo "</table>";
860 }
861
862 // a set of labeled text input fields
863 else if ($data_type == 22) {
864 $tmp = explode('|', $currvalue);
865 $avalue = array();
866 foreach ($tmp as $value) {
867 if (preg_match('/^([^:]+):(.*)$/', $value, $matches)) {
868 $avalue[$matches[1]] = $matches[2];
869 }
870 }
871 $lres = sqlStatement("SELECT * FROM list_options " .
872 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
873 echo "<table cellpadding='0' cellspacing='0'>";
874 while ($lrow = sqlFetchArray($lres)) {
875 $option_id = $lrow['option_id'];
876 $maxlength = empty($frow['max_length']) ? 255 : $frow['max_length'];
877 $fldlength = empty($fld_length) ? 20 : $fld_length;
878 echo "<tr><td>" . htmlspecialchars( xl_list_label($lrow['title']), ENT_NOQUOTES) . "&nbsp;</td>";
879 $fldlength = htmlspecialchars( $fldlength, ENT_QUOTES);
880 $inputValue = htmlspecialchars( $avalue[$option_id], ENT_QUOTES);
881 echo "<td><input type='text'" .
882 " size='$fldlength'" .
883 " value='$inputValue'" .
884 " class='under'" .
885 " /></td></tr>";
886 }
887 echo "</table>";
888 }
889
890 // a set of exam results; 3 radio buttons and a text field:
891 else if ($data_type == 23) {
892 $tmp = explode('|', $currvalue);
893 $avalue = array();
894 foreach ($tmp as $value) {
895 if (preg_match('/^([^:]+):(.*)$/', $value, $matches)) {
896 $avalue[$matches[1]] = $matches[2];
897 }
898 }
899 $maxlength = empty($frow['max_length']) ? 255 : $frow['max_length'];
900 $fldlength = empty($fld_length) ? 20 : $fld_length;
901 $lres = sqlStatement("SELECT * FROM list_options " .
902 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
903 echo "<table cellpadding='0' cellspacing='0'>";
904 echo "<tr><td>&nbsp;</td><td class='bold'>" .
905 htmlspecialchars( xl('N/A'), ENT_NOQUOTES) .
906 "&nbsp;</td><td class='bold'>" .
907 htmlspecialchars( xl('Nor'), ENT_NOQUOTES) . "&nbsp;</td>" .
908 "<td class='bold'>" .
909 htmlspecialchars( xl('Abn'), ENT_NOQUOTES) . "&nbsp;</td><td class='bold'>" .
910 htmlspecialchars( xl('Date/Notes'), ENT_NOQUOTES) . "</td></tr>";
911 while ($lrow = sqlFetchArray($lres)) {
912 $option_id = $lrow['option_id'];
913 $restype = substr($avalue[$option_id], 0, 1);
914 $resnote = substr($avalue[$option_id], 2);
915 echo "<tr><td>" . htmlspecialchars( xl_list_label($lrow['title']), ENT_NOQUOTES) . "&nbsp;</td>";
916 for ($i = 0; $i < 3; ++$i) {
917 echo "<td><input type='radio'";
918 if ($restype === "$i") echo " checked";
919 echo " /></td>";
920 }
921 $resnote = htmlspecialchars( $resnote, ENT_QUOTES);
922 $fldlength = htmlspecialchars( $fldlength, ENT_QUOTES);
923 echo "<td><input type='text'" .
924 " size='$fldlength'" .
925 " value='$resnote'" .
926 " class='under' /></td>" .
927 "</tr>";
928 }
929 echo "</table>";
930 }
931
932 // the list of active allergies for the current patient
933 // this is read-only!
934 else if ($data_type == 24) {
935 $query = "SELECT title, comments FROM lists WHERE " .
936 "pid = ? AND type = 'allergy' AND enddate IS NULL " .
937 "ORDER BY begdate";
938 $lres = sqlStatement($query, array($GLOBALS['pid']) );
939 $count = 0;
940 while ($lrow = sqlFetchArray($lres)) {
941 if ($count++) echo "<br />";
942 echo htmlspecialchars( $lrow['title'], ENT_QUOTES);
943 if ($lrow['comments']) echo htmlspecialchars( ' (' . $lrow['comments'] . ')', ENT_QUOTES);
944 }
945 }
946
947 // a set of labeled checkboxes, each with a text field:
948 else if ($data_type == 25) {
949 $tmp = explode('|', $currvalue);
950 $avalue = array();
951 foreach ($tmp as $value) {
952 if (preg_match('/^([^:]+):(.*)$/', $value, $matches)) {
953 $avalue[$matches[1]] = $matches[2];
954 }
955 }
956 $maxlength = empty($frow['max_length']) ? 255 : $frow['max_length'];
957 $fldlength = empty($fld_length) ? 20 : $fld_length;
958 $lres = sqlStatement("SELECT * FROM list_options " .
959 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
960 echo "<table cellpadding='0' cellspacing='0'>";
961 while ($lrow = sqlFetchArray($lres)) {
962 $option_id = $lrow['option_id'];
963 $restype = substr($avalue[$option_id], 0, 1);
964 $resnote = substr($avalue[$option_id], 2);
965 echo "<tr><td>" . htmlspecialchars( xl_list_label($lrow['title']), ENT_NOQUOTES) . "&nbsp;</td>";
966 echo "<td><input type='checkbox'";
967 if ($restype) echo " checked";
968 echo " />&nbsp;</td>";
969 $fldlength = htmlspecialchars( $fldlength, ENT_QUOTES);
970 $resnote = htmlspecialchars( $resnote, ENT_QUOTES);
971 echo "<td><input type='text'" .
972 " size='$fldlength'" .
973 " value='$resnote'" .
974 " class='under'" .
975 " /></td>" .
976 "</tr>";
977 }
978 echo "</table>";
979 }
980
981 // a set of labeled radio buttons
982 else if ($data_type == 27) {
983 // In this special case, fld_length is the number of columns generated.
984 $cols = max(1, $frow['fld_length']);
985 $lres = sqlStatement("SELECT * FROM list_options " .
986 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
987 echo "<table cellpadding='0' cellspacing='0' width='100%'>";
988 $tdpct = (int) (100 / $cols);
989 for ($count = 0; $lrow = sqlFetchArray($lres); ++$count) {
990 $option_id = $lrow['option_id'];
991 if ($count % $cols == 0) {
992 if ($count) echo "</tr>";
993 echo "<tr>";
994 }
995 echo "<td width='$tdpct%'>";
996 echo "<input type='radio'";
997 if ((strlen($currvalue) == 0 && $lrow['is_default']) ||
998 (strlen($currvalue) > 0 && $option_id == $currvalue))
999 {
1000 echo " checked";
1001 }
1002 echo ">" . htmlspecialchars( xl_list_label($lrow['title']), ENT_NOQUOTES);
1003 echo "</td>";
1004 }
1005 if ($count) {
1006 echo "</tr>";
1007 if ($count > $cols) {
1008 // Add some space after multiple rows of radio buttons.
1009 $cols = htmlspecialchars( $cols, ENT_QUOTES);
1010 echo "<tr><td colspan='$cols' style='height:0.7em'></td></tr>";
1011 }
1012 }
1013 echo "</table>";
1014 }
1015
1016 // special case for history of lifestyle status; 3 radio buttons and a date text field:
1017 else if ($data_type == 28) {
1018 $tmp = explode('|', $currvalue);
1019 switch(count($tmp)) {
1020 case "3": {
1021 $resnote = $tmp[0];
1022 $restype = $tmp[1];
1023 $resdate = $tmp[2];
1024 } break;
1025 case "2": {
1026 $resnote = $tmp[0];
1027 $restype = $tmp[1];
1028 $resdate = "";
1029 } break;
1030 case "1": {
1031 $resnote = $tmp[0];
1032 $resdate = $restype = "";
1033 } break;
1034 default: {
1035 $restype = $resdate = $resnote = "";
1036 } break;
1037 }
1038 $maxlength = empty($frow['max_length']) ? 255 : $frow['max_length'];
1039 $fldlength = empty($frow['fld_length']) ? 20 : $frow['fld_length'];
1040 echo "<table cellpadding='0' cellspacing='0'>";
1041 echo "<tr>";
1042 $fldlength = htmlspecialchars( $fldlength, ENT_QUOTES);
1043 $resnote = htmlspecialchars( $resnote, ENT_QUOTES);
1044 $resdate = htmlspecialchars( $resdate, ENT_QUOTES);
1045 echo "<td><input type='text'" .
1046 " size='$fldlength'" .
1047 " class='under'" .
1048 " value='$resnote' /></td>";
1049 echo "<td class='bold'>&nbsp;&nbsp;&nbsp;&nbsp;".
1050 htmlspecialchars( xl('Status'), ENT_NOQUOTES).":&nbsp;</td>";
1051 echo "<td><input type='radio'";
1052 if ($restype == "current".$field_id) echo " checked";
1053 echo "/>".htmlspecialchars( xl('Current'), ENT_NOQUOTES)."&nbsp;</td>";
1054
1055 echo "<td><input type='radio'";
1056 if ($restype == "current".$field_id) echo " checked";
1057 echo "/>".htmlspecialchars( xl('Quit'), ENT_NOQUOTES)."&nbsp;</td>";
1058
1059 echo "<td><input type='text' size='6'" .
1060 " value='$resdate'" .
1061 " class='under'" .
1062 " /></td>";
1063
1064 echo "<td><input type='radio'";
1065 if ($restype == "current".$field_id) echo " checked";
1066 echo " />".htmlspecialchars( xl('Never'), ENT_NOQUOTES)."</td>";
1067
1068 echo "<td><input type='radio'";
1069 if ($restype == "not_applicable".$field_id) echo " checked";
1070 echo " />".htmlspecialchars( xl('N/A'), ENT_NOQUOTES)."&nbsp;</td>";
1071 echo "</tr>";
1072 echo "</table>";
1073 }
1074
1075 }
1076
1077 function generate_display_field($frow, $currvalue) {
1078 $data_type = $frow['data_type'];
1079 $field_id = $frow['field_id'];
1080 $list_id = $frow['list_id'];
1081 $s = '';
1082
1083 // generic selection list or the generic selection list with add on the fly
1084 // feature, or radio buttons
1085 if ($data_type == 1 || $data_type == 26 || $data_type == 27) {
1086 $lrow = sqlQuery("SELECT title FROM list_options " .
1087 "WHERE list_id = ? AND option_id = ?", array($list_id,$currvalue) );
1088 $s = htmlspecialchars(xl_list_label($lrow['title']),ENT_NOQUOTES);
1089 }
1090
1091 // simple text field
1092 else if ($data_type == 2) {
1093 $s = htmlspecialchars($currvalue,ENT_NOQUOTES);
1094 }
1095
1096 // long or multi-line text field
1097 else if ($data_type == 3) {
1098 $s = nl2br(htmlspecialchars($currvalue,ENT_NOQUOTES));
1099 }
1100
1101 // date
1102 else if ($data_type == 4) {
1103 $s = htmlspecialchars(oeFormatShortDate($currvalue),ENT_NOQUOTES);
1104 }
1105
1106 // provider
1107 else if ($data_type == 10 || $data_type == 11) {
1108 $urow = sqlQuery("SELECT fname, lname, specialty FROM users " .
1109 "WHERE id = ?", array($currvalue) );
1110 $s = htmlspecialchars(ucwords($urow['fname'] . " " . $urow['lname']),ENT_NOQUOTES);
1111 }
1112
1113 // pharmacy list
1114 else if ($data_type == 12) {
1115 $pres = get_pharmacies();
1116 while ($prow = sqlFetchArray($pres)) {
1117 $key = $prow['id'];
1118 if ($currvalue == $key) {
1119 $s .= htmlspecialchars($prow['name'] . ' ' . $prow['area_code'] . '-' .
1120 $prow['prefix'] . '-' . $prow['number'] . ' / ' .
1121 $prow['line1'] . ' / ' . $prow['city'],ENT_NOQUOTES);
1122 }
1123 }
1124 }
1125
1126 // squads
1127 else if ($data_type == 13) {
1128 $squads = acl_get_squads();
1129 if ($squads) {
1130 foreach ($squads as $key => $value) {
1131 if ($currvalue == $key) {
1132 $s .= htmlspecialchars($value[3],ENT_NOQUOTES);
1133 }
1134 }
1135 }
1136 }
1137
1138 // address book
1139 else if ($data_type == 14) {
1140 $urow = sqlQuery("SELECT fname, lname, specialty FROM users " .
1141 "WHERE id = ?", array($currvalue));
1142 $uname = $urow['lname'];
1143 if ($urow['fname']) $uname .= ", " . $urow['fname'];
1144 $s = htmlspecialchars($uname,ENT_NOQUOTES);
1145 }
1146
1147 // billing code
1148 else if ($data_type == 15) {
1149 $s = htmlspecialchars($currvalue,ENT_NOQUOTES);
1150 }
1151
1152 // a set of labeled checkboxes
1153 else if ($data_type == 21) {
1154 $avalue = explode('|', $currvalue);
1155 $lres = sqlStatement("SELECT * FROM list_options " .
1156 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
1157 $count = 0;
1158 while ($lrow = sqlFetchArray($lres)) {
1159 $option_id = $lrow['option_id'];
1160 if (in_array($option_id, $avalue)) {
1161 if ($count++) $s .= "<br />";
1162
1163 // Added 5-09 by BM - Translate label if applicable
1164 $s .= htmlspecialchars(xl_list_label($lrow['title']),ENT_NOQUOTES);
1165
1166 }
1167 }
1168 }
1169
1170 // a set of labeled text input fields
1171 else if ($data_type == 22) {
1172 $tmp = explode('|', $currvalue);
1173 $avalue = array();
1174 foreach ($tmp as $value) {
1175 if (preg_match('/^([^:]+):(.*)$/', $value, $matches)) {
1176 $avalue[$matches[1]] = $matches[2];
1177 }
1178 }
1179 $lres = sqlStatement("SELECT * FROM list_options " .
1180 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
1181 $s .= "<table cellpadding='0' cellspacing='0'>";
1182 while ($lrow = sqlFetchArray($lres)) {
1183 $option_id = $lrow['option_id'];
1184 if (empty($avalue[$option_id])) continue;
1185
1186 // Added 5-09 by BM - Translate label if applicable
1187 $s .= "<tr><td class='bold' valign='top'>" . htmlspecialchars(xl_list_label($lrow['title']),ENT_NOQUOTES) . ":&nbsp;</td>";
1188
1189 $s .= "<td class='text' valign='top'>" . htmlspecialchars($avalue[$option_id],ENT_NOQUOTES) . "</td></tr>";
1190 }
1191 $s .= "</table>";
1192 }
1193
1194 // a set of exam results; 3 radio buttons and a text field:
1195 else if ($data_type == 23) {
1196 $tmp = explode('|', $currvalue);
1197 $avalue = array();
1198 foreach ($tmp as $value) {
1199 if (preg_match('/^([^:]+):(.*)$/', $value, $matches)) {
1200 $avalue[$matches[1]] = $matches[2];
1201 }
1202 }
1203 $lres = sqlStatement("SELECT * FROM list_options " .
1204 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
1205 $s .= "<table cellpadding='0' cellspacing='0'>";
1206 while ($lrow = sqlFetchArray($lres)) {
1207 $option_id = $lrow['option_id'];
1208 $restype = substr($avalue[$option_id], 0, 1);
1209 $resnote = substr($avalue[$option_id], 2);
1210 if (empty($restype) && empty($resnote)) continue;
1211
1212 // Added 5-09 by BM - Translate label if applicable
1213 $s .= "<tr><td class='bold' valign='top'>" . htmlspecialchars(xl_list_label($lrow['title']),ENT_NOQUOTES) . "&nbsp;</td>";
1214
1215 $restype = ($restype == '1') ? xl('Normal') : (($restype == '2') ? xl('Abnormal') : xl('N/A'));
1216 // $s .= "<td class='text' valign='top'>$restype</td></tr>";
1217 // $s .= "<td class='text' valign='top'>$resnote</td></tr>";
1218 $s .= "<td class='text' valign='top'>" . htmlspecialchars($restype,ENT_NOQUOTES) . "&nbsp;</td>";
1219 $s .= "<td class='text' valign='top'>" . htmlspecialchars($resnote,ENT_NOQUOTES) . "</td>";
1220 $s .= "</tr>";
1221 }
1222 $s .= "</table>";
1223 }
1224
1225 // the list of active allergies for the current patient
1226 else if ($data_type == 24) {
1227 $query = "SELECT title, comments FROM lists WHERE " .
1228 "pid = ? AND type = 'allergy' AND enddate IS NULL " .
1229 "ORDER BY begdate";
1230 // echo "<!-- $query -->\n"; // debugging
1231 $lres = sqlStatement($query, array($GLOBALS['pid']) );
1232 $count = 0;
1233 while ($lrow = sqlFetchArray($lres)) {
1234 if ($count++) $s .= "<br />";
1235 $s .= htmlspecialchars($lrow['title'],ENT_NOQUOTES);
1236 if ($lrow['comments']) $s .= ' (' . htmlspecialchars($lrow['comments'],ENT_NOQUOTES) . ')';
1237 }
1238 }
1239
1240 // a set of labeled checkboxes, each with a text field:
1241 else if ($data_type == 25) {
1242 $tmp = explode('|', $currvalue);
1243 $avalue = array();
1244 foreach ($tmp as $value) {
1245 if (preg_match('/^([^:]+):(.*)$/', $value, $matches)) {
1246 $avalue[$matches[1]] = $matches[2];
1247 }
1248 }
1249 $lres = sqlStatement("SELECT * FROM list_options " .
1250 "WHERE list_id = ? ORDER BY seq, title", array($list_id) );
1251 $s .= "<table cellpadding='0' cellspacing='0'>";
1252 while ($lrow = sqlFetchArray($lres)) {
1253 $option_id = $lrow['option_id'];
1254 $restype = substr($avalue[$option_id], 0, 1);
1255 $resnote = substr($avalue[$option_id], 2);
1256 if (empty($restype) && empty($resnote)) continue;
1257
1258 // Added 5-09 by BM - Translate label if applicable
1259 $s .= "<tr><td class='bold' valign='top'>" . htmlspecialchars(xl_list_label($lrow['title']),ENT_NOQUOTES) . "&nbsp;</td>";
1260
1261 $restype = $restype ? xl('Yes') : xl('No');
1262 $s .= "<td class='text' valign='top'>" . htmlspecialchars($restype,ENT_NOQUOTES) . "</td></tr>";
1263 $s .= "<td class='text' valign='top'>" . htmlspecialchars($resnote,ENT_NOQUOTES) . "</td></tr>";
1264 $s .= "</tr>";
1265 }
1266 $s .= "</table>";
1267 }
1268
1269 // special case for history of lifestyle status; 3 radio buttons and a date text field:
1270 else if ($data_type == 28) {
1271 $tmp = explode('|', $currvalue);
1272 switch(count($tmp)) {
1273 case "3": {
1274 $resnote = $tmp[0];
1275 $restype = $tmp[1];
1276 $resdate = $tmp[2];
1277 } break;
1278 case "2": {
1279 $resnote = $tmp[0];
1280 $restype = $tmp[1];
1281 $resdate = "";
1282 } break;
1283 case "1": {
1284 $resnote = $tmp[0];
1285 $resdate = $restype = "";
1286 } break;
1287 default: {
1288 $restype = $resdate = $resnote = "";
1289 } break;
1290 }
1291 $s .= "<table cellpadding='0' cellspacing='0'>";
1292
1293 $s .= "<tr>";
1294 $res = "";
1295 if ($restype == "current".$field_id) $res = xl('Current');
1296 if ($restype == "quit".$field_id) $res = xl('Quit');
1297 if ($restype == "never".$field_id) $res = xl('Never');
1298 if ($restype == "not_applicable".$field_id) $res = xl('N/A');
1299 // $s .= "<td class='text' valign='top'>$restype</td></tr>";
1300 // $s .= "<td class='text' valign='top'>$resnote</td></tr>";
1301 if (!empty($resnote)) $s .= "<td class='text' valign='top'>" . htmlspecialchars($resnote,ENT_NOQUOTES) . "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</td>";
1302 if (!empty($res)) $s .= "<td class='text' valign='top'><b>" . htmlspecialchars(xl('Status'),ENT_NOQUOTES) . "</b>:&nbsp;" . htmlspecialchars($res,ENT_NOQUOTES) . "&nbsp;</td>";
1303 if ($restype == "quit".$field_id) $s .= "<td class='text' valign='top'>" . htmlspecialchars($resdate,ENT_NOQUOTES) . "&nbsp;</td>";
1304 $s .= "</tr>";
1305 $s .= "</table>";
1306 }
1307
1308 return $s;
1309 }
1310
1311 $CPR = 4; // cells per row of generic data
1312 $last_group = '';
1313 $cell_count = 0;
1314 $item_count = 0;
1315
1316 function disp_end_cell() {
1317 global $item_count, $cell_count;
1318 if ($item_count > 0) {
1319 echo "</td>";
1320 $item_count = 0;
1321 }
1322 }
1323
1324 function disp_end_row() {
1325 global $cell_count, $CPR;
1326 disp_end_cell();
1327 if ($cell_count > 0) {
1328 for (; $cell_count < $CPR; ++$cell_count) echo "<td></td>";
1329 echo "</tr>\n";
1330 $cell_count = 0;
1331 }
1332 }
1333
1334 function disp_end_group() {
1335 global $last_group;
1336 if (strlen($last_group) > 0) {
1337 disp_end_row();
1338 }
1339 }
1340
1341 function display_layout_rows($formtype, $result1, $result2='') {
1342 global $item_count, $cell_count, $last_group, $CPR;
1343
1344 $fres = sqlStatement("SELECT * FROM layout_options " .
1345 "WHERE form_id = ? AND uor > 0 " .
1346 "ORDER BY group_name, seq", array($formtype) );
1347
1348 while ($frow = sqlFetchArray($fres)) {
1349 $this_group = $frow['group_name'];
1350 $titlecols = $frow['titlecols'];
1351 $datacols = $frow['datacols'];
1352 $data_type = $frow['data_type'];
1353 $field_id = $frow['field_id'];
1354 $list_id = $frow['list_id'];
1355 $currvalue = '';
1356
1357 if ($formtype == 'DEM') {
1358 if ($GLOBALS['athletic_team']) {
1359 // Skip fitness level and return-to-play date because those appear
1360 // in a special display/update form on this page.
1361 if ($field_id === 'fitness' || $field_id === 'userdate1') continue;
1362 }
1363 if (strpos($field_id, 'em_') === 0) {
1364 // Skip employer related fields, if it's disabled.
1365 if ($GLOBALS['omit_employers']) continue;
1366 $tmp = substr($field_id, 3);
1367 if (isset($result2[$tmp])) $currvalue = $result2[$tmp];
1368 }
1369 else {
1370 if (isset($result1[$field_id])) $currvalue = $result1[$field_id];
1371 }
1372 }
1373 else {
1374 if (isset($result1[$field_id])) $currvalue = $result1[$field_id];
1375 }
1376
1377 // Handle a data category (group) change.
1378 if (strcmp($this_group, $last_group) != 0) {
1379 $group_name = substr($this_group, 1);
1380 // totally skip generating the employer category, if it's disabled.
1381 if ($group_name === 'Employer' && $GLOBALS['omit_employers']) continue;
1382 disp_end_group();
1383 $last_group = $this_group;
1384 }
1385
1386 // Handle starting of a new row.
1387 if (($titlecols > 0 && $cell_count >= $CPR) || $cell_count == 0) {
1388 disp_end_row();
1389 echo "<tr>";
1390 if ($group_name) {
1391 echo "<td class='groupname'>";
1392 //echo "<td class='groupname' style='padding-right:5pt' valign='top'>";
1393 //echo "<font color='#008800'>$group_name</font>";
1394
1395 // Added 5-09 by BM - Translate label if applicable
1396 echo htmlspecialchars(xl_layout_label($group_name),ENT_NOQUOTES);
1397
1398 $group_name = '';
1399 } else {
1400 //echo "<td class='' style='padding-right:5pt' valign='top'>";
1401 echo "<td valign='top'>&nbsp;";
1402 }
1403 echo "</td>";
1404 }
1405
1406 if ($item_count == 0 && $titlecols == 0) $titlecols = 1;
1407
1408 // Handle starting of a new label cell.
1409 if ($titlecols > 0) {
1410 disp_end_cell();
1411 //echo "<td class='label' colspan='$titlecols' valign='top'";
1412 $titlecols_esc = htmlspecialchars( $titlecols, ENT_QUOTES);
1413 echo "<td class='label' colspan='$titlecols_esc' ";
1414 //if ($cell_count == 2) echo " style='padding-left:10pt'";
1415 echo ">";
1416 $cell_count += $titlecols;
1417 }
1418 ++$item_count;
1419
1420 // Added 5-09 by BM - Translate label if applicable
1421 if ($frow['title']) echo htmlspecialchars(xl_layout_label($frow['title']).":",ENT_NOQUOTES); else echo "&nbsp;";
1422
1423 // Handle starting of a new data cell.
1424 if ($datacols > 0) {
1425 disp_end_cell();
1426 //echo "<td class='text data' colspan='$datacols' valign='top'";
1427 $datacols_esc = htmlspecialchars( $datacols, ENT_QUOTES);
1428 echo "<td class='text data' colspan='$datacols_esc'";
1429 //if ($cell_count > 0) echo " style='padding-left:5pt'";
1430 echo ">";
1431 $cell_count += $datacols;
1432 }
1433
1434 ++$item_count;
1435 echo generate_display_field($frow, $currvalue);
1436 }
1437
1438 disp_end_group();
1439 }
1440
1441 function display_layout_tabs($formtype, $result1, $result2='') {
1442 global $item_count, $cell_count, $last_group, $CPR;
1443
1444 $fres = sqlStatement("SELECT distinct group_name FROM layout_options " .
1445 "WHERE form_id = ? AND uor > 0 " .
1446 "ORDER BY group_name, seq", array($formtype) );
1447
1448 $first = true;
1449 while ($frow = sqlFetchArray($fres)) {
1450 $this_group = $frow['group_name'];
1451 $group_name = substr($this_group, 1);
1452 ?>
1453 <li <?php echo $first ? 'class="current"' : '' ?>>
1454 <a href="/play/javascript-tabbed-navigation/" id="header_tab_<?php echo ".htmlspecialchars($group_name,ENT_QUOTES)."?>">
1455 <?php echo htmlspecialchars(xl_layout_label($group_name),ENT_NOQUOTES); ?></a>
1456 </li>
1457 <?php
1458 $first = false;
1459 }
1460 }
1461
1462 function display_layout_tabs_data($formtype, $result1, $result2='') {
1463 global $item_count, $cell_count, $last_group, $CPR;
1464
1465 $fres = sqlStatement("SELECT distinct group_name FROM layout_options " .
1466 "WHERE form_id = ? AND uor > 0 " .
1467 "ORDER BY group_name, seq", array($formtype));
1468
1469 $first = true;
1470 while ($frow = sqlFetchArray($fres)) {
1471 $this_group = $frow['group_name'];
1472 $titlecols = $frow['titlecols'];
1473 $datacols = $frow['datacols'];
1474 $data_type = $frow['data_type'];
1475 $field_id = $frow['field_id'];
1476 $list_id = $frow['list_id'];
1477 $currvalue = '';
1478
1479 $group_fields_query = sqlStatement("SELECT * FROM layout_options " .
1480 "WHERE form_id = ? AND uor > 0 AND group_name = ? " .
1481 "ORDER BY seq", array($formtype, $this_group) );
1482 ?>
1483
1484 <div class="tab <?php echo $first ? 'current' : '' ?>">
1485 <table border='0' cellpadding='0'>
1486
1487 <?php
1488 while ($group_fields = sqlFetchArray($group_fields_query)) {
1489
1490 $titlecols = $group_fields['titlecols'];
1491 $datacols = $group_fields['datacols'];
1492 $data_type = $group_fields['data_type'];
1493 $field_id = $group_fields['field_id'];
1494 $list_id = $group_fields['list_id'];
1495 $currvalue = '';
1496
1497 if ($formtype == 'DEM') {
1498 if ($GLOBALS['athletic_team']) {
1499 // Skip fitness level and return-to-play date because those appear
1500 // in a special display/update form on this page.
1501 if ($field_id === 'fitness' || $field_id === 'userdate1') continue;
1502 }
1503 if (strpos($field_id, 'em_') === 0) {
1504 // Skip employer related fields, if it's disabled.
1505 if ($GLOBALS['omit_employers']) continue;
1506 $tmp = substr($field_id, 3);
1507 if (isset($result2[$tmp])) $currvalue = $result2[$tmp];
1508 }
1509 else {
1510 if (isset($result1[$field_id])) $currvalue = $result1[$field_id];
1511 }
1512 }
1513 else {
1514 if (isset($result1[$field_id])) $currvalue = $result1[$field_id];
1515 }
1516
1517 // Handle a data category (group) change.
1518 if (strcmp($this_group, $last_group) != 0) {
1519 $group_name = substr($this_group, 1);
1520 // totally skip generating the employer category, if it's disabled.
1521 if ($group_name === 'Employer' && $GLOBALS['omit_employers']) continue;
1522 $last_group = $this_group;
1523 }
1524
1525 // Handle starting of a new row.
1526 if (($titlecols > 0 && $cell_count >= $CPR) || $cell_count == 0) {
1527 disp_end_row();
1528 echo "<tr>";
1529 }
1530
1531 if ($item_count == 0 && $titlecols == 0) {
1532 $titlecols = 1;
1533 }
1534
1535 // Handle starting of a new label cell.
1536 if ($titlecols > 0) {
1537 disp_end_cell();
1538 $titlecols_esc = htmlspecialchars( $titlecols, ENT_QUOTES);
1539 echo "<td class='label' colspan='$titlecols_esc' ";
1540 echo ">";
1541 $cell_count += $titlecols;
1542 }
1543 ++$item_count;
1544
1545 // Added 5-09 by BM - Translate label if applicable
1546 if ($group_fields['title']) echo htmlspecialchars(xl_layout_label($group_fields['title']).":",ENT_NOQUOTES); else echo "&nbsp;";
1547
1548 // Handle starting of a new data cell.
1549 if ($datacols > 0) {
1550 disp_end_cell();
1551 $datacols_esc = htmlspecialchars( $datacols, ENT_QUOTES);
1552 echo "<td class='text data' colspan='$datacols_esc'";
1553 echo ">";
1554 $cell_count += $datacols;
1555 }
1556
1557 ++$item_count;
1558 echo generate_display_field($group_fields, $currvalue);
1559 }
1560 ?>
1561
1562 </table>
1563 </div>
1564
1565 <?php
1566
1567 $first = false;
1568
1569 }
1570
1571 }
1572
1573 function display_layout_tabs_data_editable($formtype, $result1, $result2='') {
1574 global $item_count, $cell_count, $last_group, $CPR;
1575
1576 $fres = sqlStatement("SELECT distinct group_name FROM layout_options " .
1577 "WHERE form_id = ? AND uor > 0 " .
1578 "ORDER BY group_name, seq", array($formtype) );
1579
1580 $first = true;
1581 while ($frow = sqlFetchArray($fres)) {
1582 $this_group = $frow['group_name'];
1583 $group_name = substr($this_group, 1);
1584 $group_name_esc = htmlspecialchars( $group_name, ENT_QUOTES);
1585 $titlecols = $frow['titlecols'];
1586 $datacols = $frow['datacols'];
1587 $data_type = $frow['data_type'];
1588 $field_id = $frow['field_id'];
1589 $list_id = $frow['list_id'];
1590 $currvalue = '';
1591
1592 $group_fields_query = sqlStatement("SELECT * FROM layout_options " .
1593 "WHERE form_id = ? AND uor > 0 AND group_name = ? " .
1594 "ORDER BY seq", array($formtype,$this_group) );
1595 ?>
1596
1597 <div class="tab <?php echo $first ? 'current' : '' ?>" id="tab_<?php echo $group_name_esc?>" >
1598 <table border='0' cellpadding='0'>
1599
1600 <?php
1601 while ($group_fields = sqlFetchArray($group_fields_query)) {
1602
1603 $titlecols = $group_fields['titlecols'];
1604 $datacols = $group_fields['datacols'];
1605 $data_type = $group_fields['data_type'];
1606 $field_id = $group_fields['field_id'];
1607 $list_id = $group_fields['list_id'];
1608 $currvalue = '';
1609
1610 if ($formtype == 'DEM') {
1611 if ($GLOBALS['athletic_team']) {
1612 // Skip fitness level and return-to-play date because those appear
1613 // in a special display/update form on this page.
1614 if ($field_id === 'fitness' || $field_id === 'userdate1') continue;
1615 }
1616 if (strpos($field_id, 'em_') === 0) {
1617 // Skip employer related fields, if it's disabled.
1618 if ($GLOBALS['omit_employers']) continue;
1619 $tmp = substr($field_id, 3);
1620 if (isset($result2[$tmp])) $currvalue = $result2[$tmp];
1621 }
1622 else {
1623 if (isset($result1[$field_id])) $currvalue = $result1[$field_id];
1624 }
1625 }
1626 else {
1627 if (isset($result1[$field_id])) $currvalue = $result1[$field_id];
1628 }
1629
1630 // Handle a data category (group) change.
1631 if (strcmp($this_group, $last_group) != 0) {
1632 $group_name = substr($this_group, 1);
1633 // totally skip generating the employer category, if it's disabled.
1634 if ($group_name === 'Employer' && $GLOBALS['omit_employers']) continue;
1635 $last_group = $this_group;
1636 }
1637
1638 // Handle starting of a new row.
1639 if (($titlecols > 0 && $cell_count >= $CPR) || $cell_count == 0) {
1640 disp_end_row();
1641 echo "<tr>";
1642 }
1643
1644 if ($item_count == 0 && $titlecols == 0) {
1645 $titlecols = 1;
1646 }
1647
1648 // Handle starting of a new label cell.
1649 if ($titlecols > 0) {
1650 disp_end_cell();
1651 $titlecols_esc = htmlspecialchars( $titlecols, ENT_QUOTES);
1652 echo "<td class='label' colspan='$titlecols_esc' ";
1653 echo ">";
1654 $cell_count += $titlecols;
1655 }
1656 ++$item_count;
1657
1658 // Added 5-09 by BM - Translate label if applicable
1659 if ($group_fields['title']) echo (htmlspecialchars( xl_layout_label($group_fields['title']), ENT_NOQUOTES).":"); else echo "&nbsp;";
1660
1661 // Handle starting of a new data cell.
1662 if ($datacols > 0) {
1663 disp_end_cell();
1664 $datacols_esc = htmlspecialchars( $datacols, ENT_QUOTES);
1665 echo "<td class='text data' colspan='$datacols_esc'";
1666 echo ">";
1667 $cell_count += $datacols;
1668 }
1669
1670 ++$item_count;
1671 echo generate_form_field($group_fields, $currvalue);
1672 }
1673 ?>
1674
1675 </table>
1676 </div>
1677
1678 <?php
1679
1680 $first = false;
1681
1682 }
1683 }
1684
1685 // From the currently posted HTML form, this gets the value of the
1686 // field corresponding to the provided layout_options table row.
1687 //
1688 function get_layout_form_value($frow, $maxlength=255) {
1689 // Bring in $sanitize_all_escapes variable, which will decide
1690 // the variable escaping method.
1691 global $sanitize_all_escapes;
1692
1693 $data_type = $frow['data_type'];
1694 $field_id = $frow['field_id'];
1695 $value = '';
1696 if (isset($_POST["form_$field_id"])) {
1697 if ($data_type == 21) {
1698 // $_POST["form_$field_id"] is an array of checkboxes and its keys
1699 // must be concatenated into a |-separated string.
1700 foreach ($_POST["form_$field_id"] as $key => $val) {
1701 if (strlen($value)) $value .= '|';
1702 $value .= $key;
1703 }
1704 }
1705 else if ($data_type == 22) {
1706 // $_POST["form_$field_id"] is an array of text fields to be imploded
1707 // into "key:value|key:value|...".
1708 foreach ($_POST["form_$field_id"] as $key => $val) {
1709 $val = str_replace('|', ' ', $val);
1710 if (strlen($value)) $value .= '|';
1711 $value .= "$key:$val";
1712 }
1713 }
1714 else if ($data_type == 23) {
1715 // $_POST["form_$field_id"] is an array of text fields with companion
1716 // radio buttons to be imploded into "key:n:notes|key:n:notes|...".
1717 foreach ($_POST["form_$field_id"] as $key => $val) {
1718 $restype = $_POST["radio_{$field_id}"][$key];
1719 if (empty($restype)) $restype = '0';
1720 $val = str_replace('|', ' ', $val);
1721 if (strlen($value)) $value .= '|';
1722 $value .= "$key:$restype:$val";
1723 }
1724 }
1725 else if ($data_type == 25) {
1726 // $_POST["form_$field_id"] is an array of text fields with companion
1727 // checkboxes to be imploded into "key:n:notes|key:n:notes|...".
1728 foreach ($_POST["form_$field_id"] as $key => $val) {
1729 $restype = empty($_POST["check_{$field_id}"][$key]) ? '0' : '1';
1730 $val = str_replace('|', ' ', $val);
1731 if (strlen($value)) $value .= '|';
1732 $value .= "$key:$restype:$val";
1733 }
1734 }
1735 else if ($data_type == 28) {
1736 // $_POST["form_$field_id"] is an date text fields with companion
1737 // radio buttons to be imploded into "notes|type|date".
1738 $restype = $_POST["radio_{$field_id}"];
1739 if (empty($restype)) $restype = '0';
1740 $resdate = str_replace('|', ' ', $_POST["date_$field_id"]);
1741 $resnote = str_replace('|', ' ', $_POST["form_$field_id"]);
1742 $value = "$resnote|$restype|$resdate";
1743 }
1744 else {
1745 $value = $_POST["form_$field_id"];
1746 }
1747 }
1748
1749 // Better to die than to silently truncate data!
1750 if ($maxlength && $data_type != 3 && strlen($value) > $maxlength)
1751 die(htmlspecialchars( xl('ERROR: Field') . " '$field_id' " . xl('is too long'), ENT_NOQUOTES) .
1752 ":<br />&nbsp;<br />".htmlspecialchars( $value, ENT_NOQUOTES));
1753
1754 // Make sure the return value is quote-safe.
1755 if ($sanitize_all_escapes) {
1756 //escapes already removed and using binding/placemarks in sql calls
1757 // so only need to trim value
1758 return trim($value);
1759 }
1760 else {
1761 //need to explicitly prepare value
1762 return formTrim($value);
1763 }
1764 }
1765
1766 // Generate JavaScript validation logic for the required fields.
1767 //
1768 function generate_layout_validation($form_id) {
1769 $fres = sqlStatement("SELECT * FROM layout_options " .
1770 "WHERE form_id = ? AND uor > 0 AND field_id != '' " .
1771 "ORDER BY group_name, seq", array($form_id) );
1772
1773 while ($frow = sqlFetchArray($fres)) {
1774 if ($frow['uor'] < 2) continue;
1775 $data_type = $frow['data_type'];
1776 $field_id = $frow['field_id'];
1777 $fldtitle = $frow['title'];
1778 if (!$fldtitle) $fldtitle = $frow['description'];
1779 $fldname = htmlspecialchars( "form_$field_id", ENT_QUOTES);
1780 switch($data_type) {
1781 case 1:
1782 case 11:
1783 case 12:
1784 case 13:
1785 case 14:
1786 case 26:
1787 echo
1788 " if (f.$fldname.selectedIndex <= 0) {\n" .
1789 " if (f.$fldname.focus) f.$fldname.focus();\n" .
1790 " errMsgs[errMsgs.length] = '" . htmlspecialchars( (xl_layout_label($fldtitle)), ENT_QUOTES) . "'; \n" .
1791 " }\n";
1792 break;
1793 case 27: // radio buttons
1794 echo
1795 " var i = 0;\n" .
1796 " for (; i < f.$fldname.length; ++i) if (f.$fldname[i].checked) break;\n" .
1797 " if (i >= f.$fldname.length) {\n" .
1798 " errMsgs[errMsgs.length] = '" . htmlspecialchars( (xl_layout_label($fldtitle)), ENT_QUOTES) . "'; \n" .
1799 " }\n";
1800 break;
1801 case 2:
1802 case 3:
1803 case 4:
1804 case 15:
1805 echo
1806 " if (trimlen(f.$fldname.value) == 0) {\n" .
1807 " if (f.$fldname.focus) f.$fldname.focus();\n" .
1808 " $('#" . $fldname . "').parents('div.tab').each( function(){ var tabHeader = $('#header_' + $(this).attr('id') ); tabHeader.css('color','red'); } ); " .
1809 " $('#" . $fldname . "').attr('style','background:red'); \n" .
1810 " errMsgs[errMsgs.length] = '" . htmlspecialchars( (xl_layout_label($fldtitle)), ENT_QUOTES) . "'; \n" .
1811 " } else { " .
1812 " $('#" . $fldname . "').attr('style',''); " .
1813 " $('#" . $fldname . "').parents('div.tab').each( function(){ var tabHeader = $('#header_' + $(this).attr('id') ); tabHeader.css('color',''); } ); " .
1814 " } \n";
1815 break;
1816 }
1817 }
1818 }
1819
1820 /**
1821 * DROPDOWN FOR FACILITIES
1822 *
1823 * build a dropdown with all facilities
1824 *
1825 * @param string $selected - name of the currently selected facility
1826 * use '0' for "unspecified facility"
1827 * use '' for "All facilities" (the default)
1828 * @param string $name - the name/id for select form (defaults to "form_facility")
1829 * @param boolean $allow_unspecified - include an option for "unspecified" facility
1830 * defaults to true
1831 * @return void - just echo the html encoded string
1832 *
1833 * Note: This should become a data-type at some point, according to Brady
1834 */
1835 function dropdown_facility($selected = '', $name = 'form_facility', $allow_unspecified = true) {
1836 $have_selected = false;
1837 $query = "SELECT id, name FROM facility ORDER BY name";
1838 $fres = sqlStatement($query);
1839
1840 $name = htmlspecialchars($name, ENT_QUOTES);
1841 echo " <select name=\"$name\">\n";
1842
1843 $option_value = '';
1844 $option_selected_attr = '';
1845 if ($selected == '') {
1846 $option_selected_attr = ' selected="selected"';
1847 $have_selected = true;
1848 }
1849 $option_content = htmlspecialchars('-- ' . xl('All Facilities') . ' --', ENT_NOQUOTES);
1850 echo " <option value=\"$option_value\" $option_selected_attr>$option_content</option>\n";
1851
1852 while ($frow = sqlFetchArray($fres)) {
1853 $facility_id = $frow['id'];
1854 $option_value = htmlspecialchars($facility_id, ENT_QUOTES);
1855 $option_selected_attr = '';
1856 if ($selected == $facility_id) {
1857 $option_selected_attr = ' selected="selected"';
1858 $have_selected = true;
1859 }
1860 $option_content = htmlspecialchars($frow['name'], ENT_NOQUOTES);
1861 echo " <option value=\"$option_value\" $option_selected_attr>$option_content</option>\n";
1862 }
1863
1864 if ($allow_unspecified) {
1865 $option_value = '0';
1866 $option_selected_attr = '';
1867 if ( $selected == '0' ) {
1868 $option_selected_attr = ' selected="selected"';
1869 $have_selected = true;
1870 }
1871 $option_content = htmlspecialchars('-- ' . xl('Unspecified') . ' --', ENT_NOQUOTES);
1872 echo " <option value=\"$option_value\" $option_selected_attr>$option_content</option>\n";
1873 }
1874
1875 if (!$have_selected) {
1876 $option_value = htmlspecialchars($selected, ENT_QUOTES);
1877 $option_label = htmlspecialchars('(' . xl('Do not change') . ')', ENT_QUOTES);
1878 $option_content = htmlspecialchars(xl('Missing or Invalid'), ENT_NOQUOTES);
1879 echo " <option value='$option_value' label='$option_label' selected='selected'>$option_content</option>\n";
1880 }
1881 echo " </select>\n";
1882 }
1883
1884 ?>
Mirror of official OpenEMR Sourceforge repository