2 // Copyright (C) 2011 Cassian LUP <cassi.lup@gmail.com>
4 // This program is free software; you can redistribute it and/or
5 // modify it under the terms of the GNU General Public License
6 // as published by the Free Software Foundation; either version 2
7 // of the License, or (at your option) any later version.
10 $sanitize_all_escapes=true;
12 //STOP FAKE REGISTER GLOBALS
13 $fake_register_globals=false;
15 //landing page definition -- where to go if something goes wrong
16 $landingpage = "index.php";
19 // kick out if patient not authenticated
21 if ( isset($_SESSION['pid']) && isset($_SESSION['patient_portal_onsite']) ) {
22 $pid = $_SESSION['pid'];
26 header('Location: '.$landingpage.'?w');
32 include_once('../interface/globals.php');
34 $sql = "SELECT * FROM lists WHERE pid = ? AND type = 'medication' ORDER BY begdate";
36 $res = sqlStatement($sql, array($pid) );
38 if(sqlNumRows($res)>0)
41 <table
class="class1">
43 <th
><?php
echo htmlspecialchars( xl('Drug'),ENT_NOQUOTES
); ?
></th
>
44 <th
><?php
echo htmlspecialchars( xl('Start Date'),ENT_NOQUOTES
); ?
></th
>
45 <th
><?php
echo htmlspecialchars( xl('End Date'),ENT_NOQUOTES
); ?
></th
>
46 <th
><?php
echo htmlspecialchars( xl('Referrer'),ENT_NOQUOTES
); ?
></th
>
50 while ($row = sqlFetchArray($res)) {
58 echo "<tr class='".htmlspecialchars($class,ENT_QUOTES
)."'>";
59 echo "<td>".htmlspecialchars($row['title'],ENT_NOQUOTES
)."</td>";
60 echo "<td>".htmlspecialchars($row['begdate'],ENT_NOQUOTES
)."</td>";
61 echo "<td>".htmlspecialchars($row['enddate'],ENT_NOQUOTES
)."</td>";
62 echo "<td>".htmlspecialchars($row['referredby'],ENT_NOQUOTES
)."</td>";
69 echo htmlspecialchars( xl("No Results"),ENT_NOQUOTES
);