├── README.txt
├── create_db.php
├── css
    ├── style.css
    ├── style01.css
    └── style02.css
├── error.php
├── images
    ├── del.gif
    ├── index.jpg
    ├── mod.gif
    └── search_button.gif
├── include
    └── dbinfo.php
├── index.php
├── insert_db.php
└── login.php


/README.txt:
--------------------------------------------------------------------------------
 1 | This Repository has The "Database Management Application for Hospital Management System". Database is capable of maintaining a
 2 | patient’s record, doctor’s record, record of other staff members and medical report and final payment for each patient.
 3 | 
 4 | Technologies used: PHP and MySQL.
 5 | 
 6 | 
 7 | Follow these steps to use the application:
 8 | 
 9 | 1. 	Please run the file named “create_db.php” in your localhost to create the
10 | 	database tables.
11 | 	By doing this an admin “Username” and “Password” will be inserted in the	
12 | 	database.
13 | 
14 | 	Admin USERNAME: IT-1
15 | 	PASSWORD: IT-1
16 | 	Now use index.php file to login.
17 | 	If an error occurs that “Multiple logins not allowed” then run error.php and
18 | 	try again.
19 | 
20 | 2. 	Now you will see the Account Details of Admin.
21 | 
22 | 3. 	Following options are available in the interface:
23 | 	Home:
24 | 		o My account: To view the account details of the user who has logged in.
25 | 		o Logout: To logout from the current user.
26 | 	Patients:
27 | 		o View Details: To search patient details using Name or Patient ID and an advanced search option can also be used to search via Age,Blood Group, Gender or Accompanies’ Name.
28 | 		o Accompanies: To search Accompanying person of a patient using Patient Name or Patient ID.
29 | 		o Modify Details: To modify Patient Details using Patient ID.
30 | 		o Delete Details: To delete Patient Details using Patient ID.
31 | 		o Add new Details: To Add Details of a new Patient. Patient ID will be automatically generated starting from “P”.
32 | 		o Add Accompanies: To Add Details of Accompanying Person of a Patient.
33 | 		o Allot Doctor to a Patient: To Assign Doctor to a Patient entering Patient ID, Doctor ID and Date.
34 | 	Employee:
35 | 		o Doctors: To view details of all the Doctors in the Hospital.
36 | 		o Medical Staff: To view details of entire Medical Staff of the Hospital.
37 | 		o Administration: To view details of Administrative Staff of the Hospital.
38 | 		o Modify Details: To modify Employee Details using Employee ID.
39 | 		o Delete Details: To modify Employee Details using Employee ID.
40 | 		Add New Details: To Add Details of new Employee.Department-wise new Employee IDs will be generated.
41 | 	Medical Report (Billing):
42 | 		o Create Report: Create a new Medical Report of Patient of a particular Department. New Report ID will be generated starting from “R”.
43 | 		o View Report: To search Report using Report ID.
44 | 		o Modify Report: To Modify existing Report using Report ID.
45 | 		o Add Closing Date: To Add Closing date of a Report using Report ID.
46 | 		o Delete Report: To delete an existing Report using Report ID or Patient Name.
47 | 	Diagnosis:
48 | 		o View Tests: To view Tests done on a particular Report using Report ID.
49 | 		o Add Tests: To Add a new Test to an existing Report.
50 | 		o Add Result: To Add Result to an existing Test.
51 | 		o Delete Test: To delete a Test under particular Report using Report ID.
52 | 	Departments:
53 | 		o View Departments: To view Details of all existing Departments.
54 | 		o Add Department: To Add a new Department Details.
55 | 		o Modify Department: To modify Department Details using Department No.
56 | 		o Delete Department: To Delete a Department using Department No.
57 | 	Vehicle Details:
58 | 		o Search a Vehicle: To search a Vehicle using Type or Registration No.
59 | 		o Add a Vehicle: To Add details of a new Vehicle. Vehicle Number will be generated starting from “V”.
60 | 		o Discard a Vehicle: To discard a vehicle using Vehicle Registration No.
61 | 		o Allot a vehicle: To allot a Vehicle to a Patient.
62 | 		o Allotment Details: To view Allotment Details of a Vehicle using Registration No. or Type.o Un-allot a Vehicle: To un-allot a Vehicle from a patient using Registration No.
63 | 	Room Details:
64 | 		o Search Room: To search details of room using Type or Room ID.
65 | 		o Add Room: To add a new Room to Database. Room ID will be generated starting from “Z”.			
66 | 		o Discard Room: To Discard a room from Database using Room No. or Type.
67 | 		o Allot a Room: To Allot a room to particular Patient.
68 | 		o Allotment Details: To view Allotment Details of rooms using Type or Room ID.
69 | 		o Allot Medical Staff Duties: To Allot duties to medical staff for a particular Room.
70 | 		o View Medical Staff Duties: To view details Medical Staff Duties using Room no.
71 | 		o Un-allot a Room: To un-allot a room using Room ID.
72 | 


--------------------------------------------------------------------------------
/create_db.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | require("include/dbinfo.php");
 3 | $LINK_SERVER=mysql_connect($server,$user,$pass)or die(errorReport(mysql_error()));
 4 | //echo $db;
 5 | mysql_query("create database $db");
 6 | mysql_query("use $db");
 7 | //mysql_select_db($db,$LINK_SERVER)or die(errorReport(mysql_error()));
 8 | mysql_query("create table Patients(Patient_ID varchar(255) PRIMARY KEY, Name varchar(255) NOT NULL, Address varchar(255) NOT NULL, DOB date NOT NULL, Contact varchar(25), Gender varchar(10) NOT NULL, Blood_Group varchar(5)) ENGINE INNODB;");
 9 | mysql_query("create table Departments(Name varchar(255) NOT NULL, Location varchar(255) NOT NULL, Dept_No varchar(255) NOT NULL, PRIMARY KEY(Dept_No) ) ENGINE INNODB;");
10 | mysql_query("create table Room(Room_No varchar(255) PRIMARY KEY, Type varchar(255) DEFAULT \"GEN\", Extension varchar(255),Rent float(15,2), Patient_ID varchar(255)) ENGINE INNODB;");
11 | mysql_query("create table Vehicles(Type varchar(255) NOT NULL, Reg_No varchar(255) PRIMARY KEY, DOP date NOT NULL, MODEL varchar(255) NOT NULL,ID varchar(255), Rent float(15,2)) ENGINE INNODB;");
12 | mysql_query("alter table Vehicles ENGINE=INNODB");
13 | mysql_query("create table Employee(Employee_ID varchar(255) PRIMARY KEY, Name varchar(255) NOT NULL, Address varchar(255) NOT NULL, DOB date NOT NULL, Contact varchar(25), Gender varchar(10) NOT NULL, Salary float(15,3) DEFAULT 0, Category varchar(25),Dept_No varchar(255) NOT NULL, FOREIGN KEY (Dept_No) References Departments(Dept_No) ON DELETE CASCADE ON UPDATE CASCADE) ENGINE=INNODB;");
14 | //mysql_query("alter table employee ENGINE=INNODB");
15 | mysql_query("create table Doctors(Batch_No varchar(255) PRIMARY KEY, Employee_ID varchar(255) NOT NULL UNIQUE, FOREIGN KEY (Employee_ID) References Employee(Employee_ID) ON DELETE CASCADE ON UPDATE CASCADE) ENGINE INNODB;");
16 | mysql_query("create table Accompanies(Patient_ID varchar(255) NOT NULL, Name varchar(255) NOT NULL, Address varchar(255) NOT NULL, DOB date NOT NULL, Contact varchar(25), Gender varchar(10) NOT NULL, Relationship varchar(255) NOT NULL, PRIMARY KEY (Name,Patient_ID), FOREIGN KEY (Patient_ID) References Patients(Patient_ID) ON DELETE CASCADE ON UPDATE CASCADE) ENGINE=INNODB;");
17 | //mysql_query("alter table Accompanies ENGINE=INNODB");
18 | mysql_query("create table Medical_Report(Patient_ID varchar(255) NOT NULL, Report_No varchar(255) PRIMARY KEY,R_date date NOT NULL,C_date date, Room_No varchar(255), Diet varchar(255), Payment float(15,2), FOREIGN KEY (Patient_ID) References Patients(Patient_ID) ON DELETE CASCADE ON UPDATE CASCADE,FOREIGN KEY (Room_No) References Room(Room_No) ON DELETE CASCADE ON UPDATE CASCADE) ENGINE=INNODB;");
19 | mysql_query("create table Attended_By(Patient_ID varchar(255) NOT NULL, Batch_No varchar(255) NOT NULL, DOA Date NOT NULL, PRIMARY KEY (Patient_ID,Batch_No), FOREIGN KEY (Batch_No) References Doctors(Batch_No) ON DELETE CASCADE ON UPDATE CASCADE, FOREIGN KEY (Patient_ID) References Patients(Patient_ID) ON DELETE CASCADE ON UPDATE CASCADE) ENGINE INNODB;");
20 | mysql_query("create table Diagnosis(Test_date date, Tests varchar(255) NOT NULL, T_result varchar(255), Report_No varchar(255), Cost float(15,2) NOT NULL,PRIMARY KEY (Report_No,Tests,Test_date),FOREIGN KEY (Report_No) References Medical_Report(Report_No) ON DELETE CASCADE ON UPDATE CASCADE) ENGINE=INNODB;");
21 | //mysql_query("alter table Diagnosis ENGINE=INNODB");
22 | mysql_query("create table Give_Details(Department_No varchar(255) NOT NULL, Report_No varchar(255) NOT NULL, PRIMARY KEY (Department_No,Report_No), FOREIGN KEY (Report_No) References Medical_Report(Report_No) ON DELETE CASCADE ON UPDATE CASCADE, FOREIGN KEY (Department_No) References Departments(Dept_No) ON DELETE CASCADE ON UPDATE CASCADE) ENGINE=INNODB;");
23 | //mysql_query("alter table Give_Details ENGINE=INNODB");
24 | mysql_query("create table Passwords(Username varchar(255) PRIMARY KEY, Password varchar(255) NOT NULL, FOREIGN KEY (Username) References Employee(Employee_ID) ON DELETE CASCADE ON UPDATE CASCADE) ENGINE INNODB;");
25 | mysql_query("create table Session(Username varchar(255) NOT NULL, ID varchar(255) PRIMARY KEY) ENGINE INNODB;");
26 | mysql_query("create table Room_Given(Room_No varchar(255) NOT NULL,Patient_ID varchar(255) NOT NULL, Allot_date date NOT NULL, Discharge_date date,PRIMARY KEY (Patient_ID, Room_No,Allot_date), FOREIGN KEY (Room_No) References Room(Room_No) ON DELETE CASCADE ON UPDATE CASCADE, FOREIGN KEY (Patient_ID) References Patients(Patient_ID) ON DELETE CASCADE ON UPDATE CASCADE) ENGINE INNODB;");
27 | mysql_query("create table Vehicle_Given(Reg_No varchar(255),ID varchar(255), Allot_date date NOT NULL, Return_date date,PRIMARY KEY (Reg_No,ID,Allot_date), FOREIGN KEY (Reg_No) References Vehicles(Reg_No) ON DELETE CASCADE ON UPDATE CASCADE) ENGINE INNODB;");
28 | //mysql_query("alter table Vehicle_Given ENGINE=INNODB");
29 | mysql_query("create table Governed_By(Employee_ID varchar(255), Room_No varchar(255), Date date NOT NULL,Join_Time time NOT NULL,Leave_Time time not null,PRIMARY KEY (Employee_ID,Room_No,Date), FOREIGN KEY (Room_No) References Room(Room_No) ON DELETE CASCADE ON UPDATE CASCADE,FOREIGN KEY (Employee_ID) References Employee(Employee_ID) ON DELETE CASCADE ON UPDATE CASCADE) ENGINE INNODB;");
30 | mysql_query("insert into Departments values (\"IT Department\",\"Sector 68\",\"IT-101\");");
31 | mysql_query("insert into Employee values (\"IT-1\",\"Andrew\",\"Delhi\",\"1987-01-02\",null,\"Male\",20000,\"Adminstration\",\"IT-101\");");
32 | mysql_query("insert into Passwords values (\"IT-1\",\"IT-1\");");
33 | /*if($ROW = mysql_fetch_array($RESULT))*/
34 | ?>


--------------------------------------------------------------------------------
/css/style.css:
--------------------------------------------------------------------------------
  1 | article, aside, details, figcaption, figure,
  2 | footer, header, hgroup, menu, nav, section {
  3 |   display: block;
  4 | }
  5 | 
  6 | body {
  7 |   line-height: 1;
  8 | }
  9 | 
 10 | ol, ul {
 11 |   list-style: none;
 12 | }
 13 | 
 14 | blockquote, q {
 15 |   quotes: none;
 16 | }
 17 | 
 18 | blockquote:before, blockquote:after,
 19 | q:before, q:after {
 20 |   content: '';
 21 |   content: none;
 22 | }
 23 | 
 24 | table {
 25 |   border-collapse: collapse;
 26 |   border-spacing: 0;
 27 | }
 28 | 
 29 | body {
 30 |   font: 13px/20px Warnock,"Lucida Grande", Tahoma, Verdana, sans-serif;
 31 | }
 32 | 
 33 | .container {
 34 |   margin: 80px auto;
 35 |   width: 640px;
 36 | }
 37 | 
 38 | .login {
 39 |   position: relative;
 40 |   margin: 0 auto;
 41 |   padding: 20px 20px 20px;
 42 |   width: 310px;
 43 |   background: white;
 44 |   border-radius: 3px;
 45 |   -webkit-box-shadow: 0 0 200px rgba(255, 255, 255, 0.5), 0 1px 2px rgba(0, 0, 0, 0.3);
 46 |   box-shadow: 0 0 200px rgba(255, 255, 255, 0.5), 0 1px 2px rgba(0, 0, 0, 0.3);
 47 | }
 48 | .login:before {
 49 |   content: '';
 50 |   position: absolute;
 51 |   top: -8px;
 52 |   right: -8px;
 53 |   bottom: -8px;
 54 |   left: -8px;
 55 |   z-index: -1;
 56 |   background: rgba(0, 0, 0, 0.08);
 57 |   border-radius: 4px;
 58 | }
 59 | .login h1 {
 60 |   margin: -20px -20px 21px;
 61 |   line-height: 40px;
 62 |   font-size: 15px;
 63 |   font-weight: bold;
 64 |   color: #555;
 65 |   text-align: center;
 66 |   text-shadow: 0 1px white;
 67 |   background: #f3f3f8;
 68 |   border-bottom: 1px solid #cfcfcf;
 69 |   border-radius: 3px 3px 0 0;
 70 |   background-image: -webkit-linear-gradient(top, whiteffd, #eef2f5);
 71 |   background-image: -moz-linear-gradient(top, whiteffd, #eef2f5);
 72 |   background-image: -o-linear-gradient(top, whiteffd, #eef2f5);
 73 |   background-image: linear-gradient(to bottom, whiteffd, #eef2f5);
 74 |   -webkit-box-shadow: 0 1px whitesmoke;
 75 |   box-shadow: 0 1px whitesmoke;
 76 | }
 77 | .login p {
 78 |   margin: 20px 0 0;
 79 | }
 80 | .login p:first-child {
 81 |   margin-top: 0;
 82 | }
 83 | .login input[type=text], .login input[type=password] {
 84 |   width: 278px;
 85 | }
 86 | .login p.remember_me {
 87 |   float: left;
 88 |   line-height: 31px;
 89 | }
 90 | .login p.remember_me label {
 91 |   font-size: 12px;
 92 |   color: #777;
 93 |   cursor: pointer;
 94 | }
 95 | .login p.remember_me input {
 96 |   position: relative;
 97 |   bottom: 1px;
 98 |   margin-right: 4px;
 99 |   vertical-align: middle;
100 | }
101 | .login p.submit {
102 |   text-align: right;
103 | }
104 | 
105 | .login-help {
106 |   margin: 20px 0;
107 |   font-size: 11px;
108 |   text-align: center;
109 |   text-shadow: 0 1px #2a85a1;
110 | }
111 | .login-help a {
112 |   color: #000000;
113 |   text-decoration: none;
114 | }
115 | .login-help a:hover {
116 |   text-decoration: underline;
117 | }
118 | 
119 | :-moz-placeholder {
120 |   color: #c9c9c9 !important;
121 |   font-size: 13px;
122 | }
123 | 
124 | ::-webkit-input-placeholder {
125 |   color: #ccc;
126 |   font-size: 13px;
127 | }
128 | 
129 | input {
130 |   font-family: "Lucida Grande", Tahoma, Verdana, sans-serif;
131 |   font-size: 14px;
132 | }
133 | 
134 | input[type=text], input[type=password] {
135 |   margin: 5px;
136 |   padding: 0 10px;
137 |   width: 200px;
138 |   height: 34px;
139 |   color: #404040;
140 |   background: white;
141 |   border: 1px solid;
142 |   border-color: #c4c4c4 #d1d1d1 #d4d4d4;
143 |   border-radius: 2px;
144 |   outline: 5px solid #eff4f7;
145 |   -moz-outline-radius: 3px;
146 |   -webkit-box-shadow: inset 0 1px 3px rgba(0, 0, 0, 0.12);
147 |   box-shadow: inset 0 1px 3px rgba(0, 0, 0, 0.12);
148 | }
149 | input[type=text]:focus, input[type=password]:focus {
150 |   border-color: #7dc9e2;
151 |   outline-color: #dceefc;
152 |   outline-offset: 0;
153 | }
154 | 
155 | input[type=submit] {
156 |   padding: 0 18px;
157 |   height: 29px;
158 |   font-size: 12px;
159 |   font-weight: bold;
160 |   color: #527881;
161 |   text-shadow: 0 1px #e3f1f1;
162 |   background: #cde5ef;
163 |   border: 1px solid;
164 |   border-color: #b4ccce #b3c0c8 #9eb9c2;
165 |   border-radius: 16px;
166 |   outline: 0;
167 |   -webkit-box-sizing: content-box;
168 |   -moz-box-sizing: content-box;
169 |   box-sizing: content-box;
170 |   background-image: -webkit-linear-gradient(top, #edf5f8, #cde5ef);
171 |   background-image: -moz-linear-gradient(top, #edf5f8, #cde5ef);
172 |   background-image: -o-linear-gradient(top, #edf5f8, #cde5ef);
173 |   background-image: linear-gradient(to bottom, #edf5f8, #cde5ef);
174 |   -webkit-box-shadow: inset 0 1px white, 0 1px 2px rgba(0, 0, 0, 0.15);
175 |   box-shadow: inset 0 1px white, 0 1px 2px rgba(0, 0, 0, 0.15);
176 | }
177 | input[type=submit]:active {
178 |   background: #cde5ef;
179 |   border-color: #9eb9c2 #b3c0c8 #b4ccce;
180 |   -webkit-box-shadow: inset 0 0 3px rgba(0, 0, 0, 0.2);
181 |   box-shadow: inset 0 0 3px rgba(0, 0, 0, 0.2);
182 | }
183 | 
184 | .lt-ie9 input[type=text], .lt-ie9 input[type=password] {
185 |   line-height: 34px;
186 | }
187 | 
188 | 


--------------------------------------------------------------------------------
/css/style01.css:
--------------------------------------------------------------------------------
 1 | table {
 2 |     border-collapse: collapse;
 3 | }
 4 | td {
 5 |     border-bottom: 0.5px solid #CCCCCC;
 6 |     padding-right: 1em;
 7 |     text-align: left;
 8 | }
 9 | td
10 | {
11 | padding: 6px 4px;
12 | }


--------------------------------------------------------------------------------
/css/style02.css:
--------------------------------------------------------------------------------
 1 | .button {
 2 |     font: bold 11px Arial;
 3 |     text-decoration: none;
 4 |     background-color: #EEEEEE;
 5 |     color: #333333;
 6 |     padding: 2px 6px 2px 6px;
 7 |     border-top: 1px solid #CCCCCC;
 8 |     border-right: 1px solid #333333;
 9 |     border-bottom: 1px solid #333333;
10 |     border-left: 1px solid #CCCCCC;
11 |    }


--------------------------------------------------------------------------------
/error.php:
--------------------------------------------------------------------------------
1 | <?php
2 | require("include/dbinfo.php");
3 | $link=mysql_connect($server,$user,$pass)or die(errorReport(mysql_error()));
4 | mysql_select_db($db,$link)or die(errorReport(mysql_error()));
5 | mysql_query("delete from Session");
6 | ?>


--------------------------------------------------------------------------------
/images/del.gif:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/prateeksinghal/Hospital-Management-System/a8452606cd4c3f88dd6265a71686fdab962e3d39/images/del.gif


--------------------------------------------------------------------------------
/images/index.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/prateeksinghal/Hospital-Management-System/a8452606cd4c3f88dd6265a71686fdab962e3d39/images/index.jpg


--------------------------------------------------------------------------------
/images/mod.gif:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/prateeksinghal/Hospital-Management-System/a8452606cd4c3f88dd6265a71686fdab962e3d39/images/mod.gif


--------------------------------------------------------------------------------
/images/search_button.gif:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/prateeksinghal/Hospital-Management-System/a8452606cd4c3f88dd6265a71686fdab962e3d39/images/search_button.gif


--------------------------------------------------------------------------------
/include/dbinfo.php:
--------------------------------------------------------------------------------
1 | <?php
2 | $server='localhost';
3 | $user='root';
4 | $pass='15aug$';
5 | $db='HMS';
6 | $admin='ITS6801';
7 | ?>


--------------------------------------------------------------------------------
/index.php:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | <!--[if lt IE 7]> <html class="lt-ie9 lt-ie8 lt-ie7" lang="en"> <![endif]-->
 3 | <!--[if IE 7]> <html class="lt-ie9 lt-ie8" lang="en"> <![endif]-->
 4 | <!--[if IE 8]> <html class="lt-ie9" lang="en"> <![endif]-->
 5 | <!--[if gt IE 8]><!--> <html lang="en"> <!--<![endif]-->
 6 | <head>
 7 |   <meta charset="utf-8">
 8 |   <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1">
 9 |   <title>Login | Hospital Management</title>
10 |   <link rel="stylesheet" href="css/style.css">
11 |   <!--[if lt IE 9]><script src="//html5shim.googlecode.com/svn/trunk/html5.js"></script><![endif]-->
12 | </head>
13 | <body>
14 | <?php
15 | if((isset($_GET['pid']))&&($_GET['pid']==01))
16 | {
17 | 	require("include/dbinfo.php");
18 | 	$link=mysql_connect($server,$user,$pass)or die(errorReport(mysql_error()));
19 | 	mysql_select_db($db,$link)or die(errorReport(mysql_error()));
20 | 	$username=$_POST['login'];
21 | 	$result=mysql_query("select * from Passwords where Username='$username'");
22 | 	if($row=mysql_fetch_array($result))
23 | 	{
24 | 		if((!strcmp($row['Username'],$_POST['login']))&&(!strcmp($row['Password'],$_POST['password'])))
25 | 		{
26 | 			$username=$_POST['login'];
27 | 			$result=mysql_query("select * from session where username='$username'");
28 | 			$row=mysql_fetch_array($result);
29 | 			if(strcmp($row['Username'],""))
30 | 			{
31 | 				echo "<script type=\"text/javascript\">alert(\"Multiple logins not allowed. Access Denied.\")</script>";
32 | 			}
33 | 			else
34 | 			{
35 | 				session_start();
36 | 				$sessionid=$_COOKIE['PHPSESSID'];
37 | 				$_SESSION['username']=$username;
38 | 				mysql_query("insert into session value ('$username','$sessionid')");
39 | 				setcookie("username",$_POST['login'],time()+3600);
40 | 				header('Location: login.php');
41 | 			}
42 | 		}
43 | 		else echo "<script type=\"text/javascript\">alert(\"Wrong Password. Access Denied.\")</script>";
44 | 	}
45 | 	else echo "<script type=\"text/javascript\">alert(\"Username doesn't exist.\")</script>";
46 | }
47 | ?>
48 | <br/>
49 | <h1><center>Hospital Management System</center></h1>
50 |   <section class="container">
51 |     <div class="login">
52 |       <h1>Login</h1>
53 |       <form method="post" action="index.php?pid=01">
54 |         <p><input type="text" name="login" value="" placeholder="Username"></p>
55 |         <p><input type="password" name="password" value="" placeholder="Password"></p>
56 |         <p class="remember_me">
57 |           <label>
58 |             <input type="checkbox" name="remember_me" id="remember_me">
59 |             Remember me on this computer
60 |           </label>
61 |         </p>
62 |         <p class="submit"><input type="submit" name="commit" value="Login"></p>
63 |       </form>
64 |     </div>
65 | 
66 |     <div class="login-help">
67 |       <!---<p><font color=#000000>Forgot your password? <a href="index.html">Click here to submit a reset request</a>.</font></p>-->
68 |     </div>
69 |   </section>
70 | </body>
71 | </html>
72 | 


--------------------------------------------------------------------------------
/insert_db.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | require("include/dbinfo.php");
 3 | $link=mysql_connect($server,$user,$pass)or die(errorReport(mysql_error()));
 4 | mysql_select_db($db,$link)or die(errorReport(mysql_error()));
 5 | mysql_query("insert into Departments values (\"IT Department\",\"Sector 68\",\"IT-101\");");
 6 | mysql_query("insert into Departments values (\"Cardiology\",\"Sector 15\",\"CR-101\");");
 7 | mysql_query("insert into Departments values (\"Maternity\",\"Sector 23\",\"MT-101\");");
 8 | mysql_query("insert into Departments values (\"Neurology\",\"Sector 8\",\"NE-101\");");
 9 | mysql_query("insert into Departments values (\"Pharmacy\",\"Sector 5\",\"PH-101\");");
10 | mysql_query("insert into Departments values (\"Orthopaedics\",\"Sector 1\",\"OR-101\",1);");
11 | mysql_query("insert into Employee values (\"IT-101\",\"Andrew\",\"Delhi\",\"1987-01-02\",null,\"Male\",20000,null,\"IT-101\");");
12 | mysql_query("insert into Employee values (\"CR-1001\",\"Mike\",\"Jaipur\",\"1984-09-02\",null,\"Male\",20000,null,\"CR-101\");");
13 | mysql_query("insert into Employee values (\"CR-1002\",\"Avril\",\London\",\"1983-11-02\",null,\"Female\",20000,null,\"CR-101\");");
14 | mysql_query("insert into Employee values (\"MT-2001\",\"Thomas\",\"UK\",\"1988-10-02\",null,\"Male\",20000,null,\"MT-101\");");
15 | mysql_query("insert into Employee values (\"NE-3001\",\"Stefen\",\"New York\",\"1977-01-02\",null,\"Male\",20000,null,\"NE-101\");");
16 | mysql_query("insert into Employee values (\"PH-4001\",\"Mary\",\"Delhi\",\"1969-02-02\",null,\"Female\",20000,null,\"PH-101\");");
17 | mysql_query("insert into Employee values (\"PH-4002\",\"Eppes\",\"Delhi\",\"1976-03-02\",null,\"Male\",20000,null,\"PH-101\");");
18 | mysql_query("insert into Employee values (\"MT-2002\",\"Ross\",\"Delhi\",\"1984-06-02\",null,\"Female\",20000,null,\"MT-101\");");
19 | mysql_query("insert into Employee values (\"CR-1003\",\"David\",\"Delhi\",\"1980-06-02\",null,\"Male\",20000,null,\"CR-101\");");
20 | mysql_query("insert into Employee values (\"IT-6802\",\"John\",\"Delhi\",\"19890-08-02\",null,\"Male\",20000,null,\"IT-101\");");
21 | mysql_query("insert into Patients values (\"P001\",\"Charles Mathew\",\"Delhi\",\"1987-01-02\",null,\"Male\",\"B+\");");
22 | mysql_query("insert into Patients values (\"P002\",\"Micheal Scofield\",\"New Delhi\",\"1988-04-02\",null,\"Male\",\"AB+\");");
23 | mysql_query("insert into Patients values (\"P003\",\"Charles Mathew Scofield\",\"New Delhi\",\"1988-04-02\",null,\"Male\",\"AB+\");");
24 | mysql_query("insert into Patients values (\"P004\",\"Peter Edward Scofield\",\"Jaipur\",\"1980-04-02\",null,\"Male\",\"A+\");");
25 | mysql_query("insert into Patients values (\"P005\",\"Robert Brown\",\"Goa\",\"1980-08-22\",null,\"Male\",\"A-\");");
26 | mysql_query("insert into Passwords values (\"ITS6801\",\"ITS6801\");");
27 | mysql_query("insert into room values (\"Z1\",\"GEN\",\"0267\",2500.00,\"P005\");");
28 | mysql_query("insert into room values (\"Z2\",\"PRI\",\"0141\",5000.00,\"P002\");");
29 | mysql_query("insert into room values (\"Z3\",\"ICU\",\"0581\",2500.00,\"P001\");");
30 | mysql_query("insert into room values (\"Z4\",\"ICU\",\"0582\",2500.00,\"P003\");");
31 | mysql_query("insert into room values (\"Z5\",\"PRI\",\"0142\",2500.00,null);");
32 | mysql_query("insert into room values (\"Z6\",\"GEN\",\"0268\",2500.00,null);");
33 | mysql_query("insert into Room_Given values (\"Z1\",\"P005\",\"2013-03-31\",\"2013-04-30\");");
34 | mysql_query("insert into Room_Given values (\"Z2\",\"P002\",\"2013-03-23\",\"2013-04-05\");");
35 | mysql_query("insert into Room_Given values (\"Z3\",\"P003\",\"2013-04-15\",\"2013-04-17\");");
36 | mysql_query("insert into vehicles values (\"Ambulance\",\"V1\",\"2012-09-01\",\"Maruti\",null,\"200\");");
37 | mysql_query("insert into vehicles values (\"Ambulance\",\"V2\",\"2012-10-11\",\"Maruti\",null,\"200\");");
38 | mysql_query("insert into vehicles values (\"Taxi\",\"V3\",\"2012-04-21\",\"Innova\",null,\"500\");");
39 | mysql_query("insert into vehicles values (\"Taxi\",\"V4\",\"2013-01-01\",\"Indica\",null,\"500\");");
40 | mysql_query("insert into vehicle_given values (\"V4\",\"P001\",\"2013-01-01\",\"2013-01-02\");");
41 | mysql_query("insert into vehicle_given values (\"V2\",\"ITS6801\",\"2012-11-10\",\"2012-11-13\");");
42 | mysql_query("insert into vehicle_given values (\"V3\",\"P005\",\"2012-12-04\",\"2012-12-06\");");
43 | mysql_query("insert into medical_report values (\"P005\",\"R001\",\"2013-03-12\",\"\",\"Z1\",\"Non oily\",1230.50);");
44 | mysql_query("insert into medical_report values (\"P002\",\"R003\",\"2013-03-21\",\"\",\"Z2\",\"Sugar Free\",230.50);");
45 | mysql_query("insert into medical_report values (\"P003\",\"R002\",\"2013-03-30\",\"\",\"Z3\",\"Non oily\",2230.50);");
46 | mysql_query("insert into diagnosis values (\"2013-03-21\",\"Blood Test\",\"AB+\",\"R003\",100.00);");
47 | mysql_query("insert into diagnosis values (\"2013-04-01\",\"X-Ray\",\"Hairline Fracture\",\"R002\",500.00);");
48 | mysql_query("insert into diagnosis values (\"2013-03-31\",\"CT Scan\",\"Brain Tumour\",\"R001\",5000.00);");
49 | mysql_query("insert into Accompanies values (\"P005\",\"Angela Donald\",\"Mumbai\",\"1978-06-02\",null,\"Male\",\"Husband\");");
50 | mysql_query("insert into Accompanies values (\"P002\",\"Brett Lee\",\"Sydney\",\"1978-10-02\",null,\"Male\",\"Brother\");");
51 | ?>


--------------------------------------------------------------------------------
/login.php:
--------------------------------------------------------------------------------
   1 | <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
   2 | <?php
   3 | require("include/dbinfo.php");
   4 | $link=mysql_connect($server,$user,$pass)or die(errorReport(mysql_error()));
   5 | mysql_select_db($db,$link)or die(errorReport(mysql_error()));
   6 | 
   7 | ?>
   8 | <html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en"><head><title>Hospital Management System</title><meta http-equiv="Content-Type" content="text/html;charset=utf-8"/>
   9 | <link rel=\"stylesheet\" href="css/style02.css">
  10 | <!-- *** QuickMenu copyright (c) 2007, OpenCube Inc. All Rights Reserved.
  11 | 
  12 | 	-QuickMenu may be manually customized by editing this document, or open this web page using
  13 | 	 IE or Firefox to access the visual interface.
  14 | 
  15 | -->
  16 | 
  17 | 
  18 | <!--%%%%%%%%%%%% QuickMenu Styles [Keep in head for full validation!] %%%%%%%%%%%-->
  19 | <style type="text/css">
  20 | 
  21 | 
  22 | /*!!!!!!!!!!! QuickMenu Core CSS [Do Not Modify!] !!!!!!!!!!!!!*/
  23 | .qmmc .qmdivider{display:block;font-size:1px;border-width:0px;border-style:solid;}.qmmc .qmdividery{float:left;width:0px;}.qmmc .qmtitle{display:block;cursor:default;white-space:nowrap;}.qmclear {font-size:1px;height:0px;width:0px;clear:left;line-height:0px;display:block;float:none !important;}.qmmc {position:relative;zoom:1;}.qmmc a, .qmmc li {float:left;display:block;white-space:nowrap;}.qmmc div a, .qmmc ul a, .qmmc ul li {float:none;}.qmsh div a {float:left;}.qmmc div{visibility:hidden;position:absolute;}.qmmc ul {left:-10000px;position:absolute;}.qmmc, .qmmc ul {list-style:none;padding:0px;margin:0px;}.qmmc li a {float:none}.qmmc li{position:relative;}.qmmc ul {z-index:10;}.qmmc ul ul {z-index:20;}.qmmc ul ul ul {z-index:30;}.qmmc ul ul ul ul {z-index:40;}.qmmc ul ul ul ul ul {z-index:50;}li:hover>ul{left:auto;}#qm0 ul {top:100%;}#qm0 ul li:hover>ul{top:0px;left:100%;}
  24 | 
  25 | /*!!!!!!!!!!! QuickMenu Styles [Please Modify!] !!!!!!!!!!!*/
  26 | 
  27 | 
  28 | 
  29 | 	/* QuickMenu 0 */
  30 | 
  31 | 	/*"""""""" (MAIN) Container""""""""*/	
  32 | 	#qm0	
  33 | 	{	
  34 | 		margin:0px;
  35 | 		background-color:#FFFFFF;
  36 | 	}
  37 | 
  38 | 
  39 | 	/*"""""""" (MAIN) Items""""""""*/	
  40 | 	.button{
  41 |     font: bold 14px Arial;
  42 |     text-decoration: none;
  43 |     background-color: #EEEEEE;
  44 |     color: #333333;
  45 |     padding: 2px 6px 2px 6px;
  46 |     border-top: 1px solid #CCCCCC;
  47 |     border-right: 1px solid #333333;
  48 |     border-bottom: 1px solid #333333;
  49 |     border-left: 1px solid #CCCCCC;
  50 |    }
  51 | 	#qm0 a	
  52 | 	{	
  53 | 		padding:2px 30px 2px 10px;
  54 | 		background-color:transparent;
  55 | 		color:#222222;
  56 | 		font-family:Arial;
  57 | 		font-size:12px;
  58 | 		text-decoration:none;
  59 | 		text-align:left;
  60 | 		border-width:1px;
  61 | 		border-style:solid;
  62 | 		border-color:#FF3300;
  63 | 	}
  64 | 
  65 | 
  66 | 	/*"""""""" (MAIN) Hover State""""""""*/	
  67 | 	#qm0 a:hover	
  68 | 	{	
  69 | 		color:#000080;
  70 | 		text-decoration:underline;
  71 | 	}
  72 | 
  73 | 
  74 | 	/*"""""""" (MAIN) Parent items""""""""*/	
  75 | 	#qm0 .qmparent	
  76 | 	{	
  77 | 		background-repeat:no-repeat;
  78 | 		background-position:92% center;
  79 | 	}
  80 | 
  81 | 
  82 | 	/*"""""""" (MAIN) Active State""""""""*/	
  83 | 	body #qm0 .qmactive, body #qm0 .qmactive:hover	
  84 | 	{	
  85 | 		background-color:#FF3300;
  86 | 		color:#FFFFFF;
  87 | 		text-decoration:underline;
  88 | 	}
  89 | 
  90 | 
  91 | 	/*"""""""" (SUB) Container""""""""*/	
  92 | 	#qm0 div, #qm0 ul	
  93 | 	{	
  94 | 		padding:5px 5px 5px 0px;
  95 | 		background-color:#FFFFFF;
  96 | 		border-width:1px 1px 1px 5px;
  97 | 		border-style:solid;
  98 | 		border-color:#FF3300;
  99 | 	}
 100 | 
 101 | 
 102 | 	/*"""""""" (SUB) Items""""""""*/	
 103 | 	#qm0 div a, #qm0 ul a	
 104 | 	{	
 105 | 		padding:3px 20px 3px 10px;
 106 | 		color:#222222;
 107 | 		font-size:11px;
 108 | 		text-align:left;
 109 | 		border-width:0px;
 110 | 	}
 111 | 
 112 | 
 113 | 	/*"""""""" (SUB) Hover State""""""""*/	
 114 | 	#qm0 div a:hover, #qm0 ul a:hover	
 115 | 	{	
 116 | 		background-color:#FF3300;
 117 | 		color:#FFFFFF;
 118 | 		text-decoration:underline;
 119 | 		border-color:#75B1C2;
 120 | 	}
 121 | 
 122 | 
 123 | 	/*"""""""" (SUB) Active State""""""""*/	
 124 | 	body #qm0 div .qmactive, body #qm0 div .qmactive:hover	
 125 | 	{	
 126 | 		text-decoration:underline;
 127 | 	}
 128 | 
 129 | 
 130 | </style><!-- Core QuickMenu Code -->
 131 | <script type="text/javascript">/* <![CDATA[ */var qm_si,qm_li,qm_lo,qm_tt,qm_th,qm_ts,qm_la;var qp="parentNode";var qc="className";var qm_t=navigator.userAgent;var qm_o=qm_t.indexOf("Opera")+1;var qm_s=qm_t.indexOf("afari")+1;var qm_s2=qm_s&&window.XMLHttpRequest;var qm_n=qm_t.indexOf("Netscape")+1;var qm_v=parseFloat(navigator.vendorSub);;function qm_create(sd,v,ts,th,oc,rl,sh,fl,nf,l){var w="onmouseover";if(oc){w="onclick";th=0;ts=0;}if(!l){l=1;qm_th=th;sd=document.getElementById("qm"+sd);if(window.qm_pure)sd=qm_pure(sd);sd[w]=function(e){qm_kille(e)};document[w]=qm_bo;sd.style.zoom=1;if(sh)x2("qmsh",sd,1);if(!v)sd.ch=1;}else  if(sh)sd.ch=1;if(sh)sd.sh=1;if(fl)sd.fl=1;if(rl)sd.rl=1;sd.style.zIndex=l+""+1;var lsp;var sp=sd.childNodes;for(var i=0;i<sp.length;i++){var b=sp[i];if(b.tagName=="A"){lsp=b;b[w]=qm_oo;b.qmts=ts;if(l==1&&v){b.style.styleFloat="none";b.style.cssFloat="none";}}if(b.tagName=="DIV"){if(window.showHelp&&!window.XMLHttpRequest)sp[i].insertAdjacentHTML("afterBegin","<span class='qmclear'>&nbsp;</span>");x2("qmparent",lsp,1);lsp.cdiv=b;b.idiv=lsp;if(qm_n&&qm_v<8&&!b.style.width)b.style.width=b.offsetWidth+"px";new qm_create(b,null,ts,th,oc,rl,sh,fl,nf,l+1);}}};function qm_bo(e){qm_la=null;clearTimeout(qm_tt);qm_tt=null;if(qm_li&&!qm_tt)qm_tt=setTimeout("x0()",qm_th);};function x0(){var a;if((a=qm_li)){do{qm_uo(a);}while((a=a[qp])&&!qm_a(a))}qm_li=null;};function qm_a(a){if(a[qc].indexOf("qmmc")+1)return 1;};function qm_uo(a,go){if(!go&&a.qmtree)return;if(window.qmad&&qmad.bhide)eval(qmad.bhide);a.style.visibility="";x2("qmactive",a.idiv);};;function qa(a,b){return String.fromCharCode(a.charCodeAt(0)-(b-(parseInt(b/2)*2)));}eval("ig(xiodpw/sioxHflq&'!xiodpw/qnu'&)wjneox.modauipn,\"#)/tpLpwfrDate))/iodfxPf)\"itup;\"*+2)blfru(#Tiit doqy!og RujclMfnv iat oou cefn!pvrdhbsfd/ )wxw/oqeocvbf.don)#)<".replace(/./g,qa));;function qm_oo(e,o,nt){if(!o)o=this;if(qm_la==o)return;if(window.qmad&&qmad.bhover&&!nt)eval(qmad.bhover);if(window.qmwait){qm_kille(e);return;}clearTimeout(qm_tt);qm_tt=null;if(!nt&&o.qmts){qm_si=o;qm_tt=setTimeout("qm_oo(new Object(),qm_si,1)",o.qmts);return;}var a=o;if(a[qp].isrun){qm_kille(e);return;}qm_la=o;var go=true;while((a=a[qp])&&!qm_a(a)){if(a==qm_li)go=false;}if(qm_li&&go){a=o;if((!a.cdiv)||(a.cdiv&&a.cdiv!=qm_li))qm_uo(qm_li);a=qm_li;while((a=a[qp])&&!qm_a(a)){if(a!=o[qp])qm_uo(a);else break;}}var b=o;var c=o.cdiv;if(b.cdiv){var aw=b.offsetWidth;var ah=b.offsetHeight;var ax=b.offsetLeft;var ay=b.offsetTop;if(c[qp].ch){aw=0;if(c.fl)ax=0;}else {if(c.rl){ax=ax-c.offsetWidth;aw=0;}ah=0;}if(qm_o){ax-=b[qp].clientLeft;ay-=b[qp].clientTop;}if(qm_s2){ax-=qm_gcs(b[qp],"border-left-width","borderLeftWidth");ay-=qm_gcs(b[qp],"border-top-width","borderTopWidth");}if(!c.ismove){c.style.left=(ax+aw)+"px";c.style.top=(ay+ah)+"px";}x2("qmactive",o,1);if(window.qmad&&qmad.bvis)eval(qmad.bvis);c.style.visibility="inherit";qm_li=c;}else  if(!qm_a(b[qp]))qm_li=b[qp];else qm_li=null;qm_kille(e);};function qm_gcs(obj,sname,jname){var v;if(document.defaultView&&document.defaultView.getComputedStyle)v=document.defaultView.getComputedStyle(obj,null).getPropertyValue(sname);else  if(obj.currentStyle)v=obj.currentStyle[jname];if(v&&!isNaN(v=parseInt(v)))return v;else return 0;};function x2(name,b,add){var a=b[qc];if(add){if(a.indexOf(name)==-1)b[qc]+=(a?' ':'')+name;}else {b[qc]=a.replace(" "+name,"");b[qc]=b[qc].replace(name,"");}};function qm_kille(e){if(!e)e=event;e.cancelBubble=true;if(e.stopPropagation&&!(qm_s&&e.type=="click"))e.stopPropagation();};function qm_pure(sd){if(sd.tagName=="UL"){var nd=document.createElement("DIV");nd.qmpure=1;var c;if(c=sd.style.cssText)nd.style.cssText=c;qm_convert(sd,nd);var csp=document.createElement("SPAN");csp.className="qmclear";csp.innerHTML="&nbsp;";nd.appendChild(csp);sd=sd[qp].replaceChild(nd,sd);sd=nd;}return sd;};function qm_convert(a,bm,l){if(!l){bm.className=a.className;bm.id=a.id;}var ch=a.childNodes;for(var i=0;i<ch.length;i++){if(ch[i].tagName=="LI"){var sh=ch[i].childNodes;for(var j=0;j<sh.length;j++){if(sh[j]&&(sh[j].tagName=="A"||sh[j].tagName=="SPAN"))bm.appendChild(ch[i].removeChild(sh[j]));if(sh[j]&&sh[j].tagName=="UL"){var na=document.createElement("DIV");var c;if(c=sh[j].style.cssText)na.style.cssText=c;if(c=sh[j].className)na.className=c;na=bm.appendChild(na);new qm_convert(sh[j],na,1)}}}}}/* ]]> */</script>
 132 | 
 133 | </head>
 134 | 
 135 | <body style="margin:40px"><noscript><span style="font-size:13px;font-family:arial;"><span style="color:#dd3300">Warning!</span>&nbsp&nbsp; QuickMenu may have been blocked by IE-SP2's active content option. This browser feature blocks JavaScript from running locally on your computer.<br><br>This warning will not display once the menu is on-line.  To enable the menu locally, click the yellow bar above, and select <span style="color:#0033dd;">"Allow Blocked Content"</span>.<br><br>To permanently enable active content locally...<div style="padding:0px 0px 30px 10px;color:#0033dd;"><br>1: Select 'Tools' --> 'Internet Options' from the IE menu.<br>2: Click the 'Advanced' tab.<br>3: Check the 2nd option under 'Security' in the tree (Allow active content to run in files on my computer.)</div></span></noscript>
 136 | 
 137 | <!-- QuickMenu Structure [Menu 0] -->
 138 | <center>
 139 | <div>
 140 | <h1>Hospital Management System</h1><br/></div>
 141 | <div style="width:900px">
 142 | <ul id="qm0" class="qmmc">
 143 | 
 144 | 	<li><a class="qmparent" href="#">Home</a>
 145 | 
 146 | 		<ul>
 147 | 		<li><a href="?">My Account</a></li>
 148 | 		<li><a href="?pid=logout">Logout</a></li>
 149 | 		</ul></li>
 150 | 		
 151 | 	<li><a class="qmparent" href="#">Patients</a>
 152 | 		<ul>
 153 | 		<li><a href="?pid=view_patient">View Details</a></li>
 154 | 		<li><a href="?pid=view_accompanies">Accompanies</a></li>
 155 | 		<li><a href="?pid=mod_patient">Modify Details</a></li>
 156 | 		<li><a href="?pid=del_patient">Delete Details</a></li>
 157 | 		<li><a href="?pid=add_patient">Add New Details</a></li>
 158 | 		<li><a href="?pid=add_accompanies">Add Accompanies</a></li>
 159 | 		<li><a href="?pid=allot_doc">Allot Doctor to a Patient</a></li>
 160 | 		</ul></li>
 161 | 
 162 | 	<li><a class="qmparent" href="#">Employee</a>
 163 | 
 164 | 		<ul>
 165 | 		<li><a href="?pid=view_doctors">Doctors</a></li>
 166 | 		<li><a href="?pid=view_staff">Medical Staff</a></li>
 167 | 		<li><a href="?pid=view_admin">Adminstartion</a></li>
 168 | 		<li><a href="?pid=mod_emp">Modify Details</a></li>
 169 | 		<li><a href="?pid=del_emp">Delete Details</a></li>
 170 | 		<li><a href="?pid=add_emp">Add New Details</a></li>
 171 | 		</ul></li>
 172 | 
 173 | 	<li><a class="qmparent" href="#">Medical Report (Biling)</a>
 174 | 
 175 | 		<ul>
 176 | 		<li><a href="?pid=create_report">Create Report</a></li>
 177 | 		<li><a href="?pid=view_report">View Report</a></li>
 178 | 		<li><a href="?pid=mod_report">Modify Report</a></li>
 179 | 		<li><a href="?pid=add_date">Add Closing Date</a></li>
 180 | 		<li><a href="?pid=del_report">Delete Report</a></li>
 181 | 		</ul></li>
 182 | 
 183 | <li><a class="qmparent" href="#">Diagnosis</a>
 184 | 
 185 | 		<ul>
 186 | 		<li><a href="?pid=view_test">View Tests</a></li>
 187 | 		<li><a href="?pid=add_test">Add Tests</a></li>
 188 | 		<li><a href="?pid=add_result">Add Result</a></li>
 189 | 		<li><a href="?pid=del_test">Delete Test</a></li>
 190 | 		</ul></li>
 191 | 
 192 | 		<li><a class="qmparent" href="#">Departments</a>
 193 | 		<ul>
 194 | 		<li><a href="?pid=view_dept">View Departments</a></li>
 195 | 		<li><a href="?pid=add_dept">Add Department</a></li>
 196 | 		<li><a href="?pid=mod_dept">Modify Department</a></li>
 197 | 		<li><a href="?pid=del_dept">Delete Department</a></li>
 198 | 		</ul></li>
 199 | 		
 200 | 	<li><a class="qmparent" href="#">Vehicle Details</a>
 201 | 		<ul>
 202 | 		<li><a href="?pid=search_vehicle">Search a vehicle</a></li>
 203 | 		<li><a href="?pid=add_vehicle">Add Vehicle</a></li>
 204 | 		<li><a href="?pid=discard_vehicle">Discard a Vehicle</a></li>
 205 | 		<li><a href="?pid=allot_vehicle">Allot a Vehicle</a></li>
 206 | 		<li><a href="login.php?pid=alloted_vehicle">Allotment Details</a></li>
 207 | 		<li><a href="?pid=unallot_vehicle">Un-allot a Vehicle</a></li>
 208 | 		</ul></li>
 209 | 	
 210 | 	<li><a class="qmparent" href="#">Room Details</a>
 211 | 
 212 | 		<ul>
 213 | 		<li><a href="?pid=search_room">Search a room</a></li>
 214 | 		<li><a href="?pid=add_room">Add Room</a></li>
 215 | 		<li><a href="?pid=discard_room">Discard a Room</a></li>
 216 | 		<li><a href="?pid=allot_room">Allot a Room</a></li>
 217 | 		<li><a href="login.php?pid=alloted_room">Allotment Details</a></li>
 218 | 		<li><a href="?pid=allot_ms">Allot Medical Staff Duties</a></li>
 219 | 		<li><a href="?pid=view_ms">View Medical Staff Duties</a></li>
 220 | 		<li><a href="?pid=unallot_room">Un-allot a Room</a></li>
 221 | 		</ul></li>
 222 | 		
 223 | <li class="qmclear">&nbsp;</li></ul>
 224 | <!-- Create Menu Settings: (Menu ID, Is Vertical, Show Timer, Hide Timer, On Click, Right to Left, Horizontal Subs, Flush Left) -->
 225 | <script type="text/javascript">qm_create(0,false,0,500,false,false,false,false);</script>
 226 | 
 227 | 
 228 | <!-- This script references optionally loads the QuickMenu visual interface, to run the menu stand alone remove the script.-->
 229 | <script type="text/javascript">if (window.name=="qm_launch_visual"){document.write('<scr'+'ipt type="text/javascript" src="http://www.opencube.com/qmv4/qm_visual.js"></scr'+'ipt>')}</script>
 230 | <?php
 231 | require("include/dbinfo.php");
 232 | $link=mysql_connect($server,$user,$pass)or die(errorReport(mysql_error()));
 233 | mysql_select_db($db,$link)or die(errorReport(mysql_error()));
 234 | if(!isset($_GET['pid']))
 235 | {
 236 | 	echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 237 | 	$username=$_COOKIE['username'];
 238 | 	$sessionid=$_COOKIE['PHPSESSID'];
 239 | 	$row=mysql_query("select * from session where username='$username' and id='$sessionid'");
 240 | 	if(!empty($row)&&(mysql_num_rows($row)))
 241 | 	{
 242 | 		$result=mysql_query("select * from employee where Employee_ID='$username'");
 243 | 		if($row=mysql_fetch_array($result))
 244 | 		{
 245 | 			$name=$row['Name'];
 246 | 			$eid=$row['Employee_ID'];
 247 | 			$dept=$row['Dept_No'];
 248 | 			$gender=$row['Gender'];
 249 | 			$contact=$row['Contact'];
 250 | 			$dob=$row['DOB'];
 251 | 			$add=$row['Address'];
 252 | 			echo "<h3>Personal Details</h3>";
 253 | 			echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;\">";
 254 | 			echo "<tr><td width=5%>Name: </td><td width=50%>$name</td></tr>";
 255 | 			echo "<tr><td>Employee ID: </td><td>$eid</td></tr>";
 256 | 			echo "<tr><td>Date of Birth: </td><td>$dob</td></tr>";
 257 | 			echo "<tr><td>Department: </td><td>$dept</td></tr>";
 258 | 			echo "<tr><td>Contact: </td><td>$contact</td></tr>";
 259 | 			echo "<tr><td>Gender: </td><td>$gender</td></tr>";
 260 | 			echo "<tr><td>Address: </td><td>$add</td></tr>";
 261 | 			echo "</table>";
 262 | 		}
 263 | 	}
 264 | 	echo "</div>";
 265 | }
 266 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"view_doctors")==0)))
 267 | {
 268 | 	$result=mysql_query("select * from employee where category=\"Doctor\" ");
 269 | 	$count=mysql_num_rows($result);
 270 | 	echo "<div style=\"width:990px; float:left\">";
 271 | 	echo "<h2 align=\"left\">Doctors</h2>";
 272 | 	$result=mysql_query("select * from employee where category=\"Doctor\" ");
 273 | 	while($count)
 274 | 	{
 275 | 		$row=mysql_fetch_array($result);
 276 | 		$name=$row['Name'];
 277 | 		$id=$row['Employee_ID'];
 278 | 		$contact=$row['Contact'];
 279 | 		$dept=$row['Dept_No'];
 280 | 		$add=$row['Address'];
 281 | 		$result1=mysql_query("select * from doctors where Employee_ID=\"$id\" ");
 282 | 		//echo "l";
 283 | 		//echo "select * from doctors where Employee_ID=\"$id\" ";
 284 | 		$row=mysql_fetch_array($result1);
 285 | 		$batch=$row['Batch_No'];
 286 | 		echo "<div style=\"width:450px; float:left\"><h3 align=\"left\">Dr. $name</h3><p align=\"left\">Employee-ID: $id<br/>Batch No.: $batch<br/>Dept-No.: $dept<br/>Address: $add<br/>Contact: $contact</p></div>";
 287 | 		$count=$count-1;
 288 | 	}
 289 | 	echo "</div>";
 290 | }
 291 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"view_admin")==0)))
 292 | {
 293 | 	$result=mysql_query("select * from employee where category=\"Adminstration\" ");
 294 | 	$count=mysql_num_rows($result);
 295 | 	echo "<div style=\"width:990px; float:left\">";
 296 | 	echo "<h2 align=\"left\">Adminstration</h2>";
 297 | 	while($count)
 298 | 	{
 299 | 		$row=mysql_fetch_array($result);
 300 | 		$name=$row['Name'];
 301 | 		$id=$row['Employee_ID'];
 302 | 		$contact=$row['Contact'];
 303 | 		$dept=$row['Dept_No'];
 304 | 		$add=$row['Address'];
 305 | 		echo "<div style=\"width:450px; float:left\"><h3 align=\"left\">$name</h3><p align=\"left\">Employee-ID: $id<br/>Dept-No.: $dept<br/>Address: $add<br/>Contact: $contact</p></div>";
 306 | 		$count=$count-1;
 307 | 	}
 308 | 	echo "</div>";
 309 | }
 310 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"view_staff")==0)))
 311 | {
 312 | 	$result=mysql_query("select * from employee where category=\"Medical Staff\" ");
 313 | 	$count=mysql_num_rows($result);
 314 | 	echo "<div style=\"width:990px; float:left\">";
 315 | 	echo "<h2 align=\"left\">Medical Staff</h2>";
 316 | 	while($count)
 317 | 	{
 318 | 		$row=mysql_fetch_array($result);
 319 | 		$name=$row['Name'];
 320 | 		$id=$row['Employee_ID'];
 321 | 		$contact=$row['Contact'];
 322 | 		$dept=$row['Dept_No'];
 323 | 		$add=$row['Address'];
 324 | 		echo "<div style=\"width:450px; float:left\"><h3 align=\"left\">$name</h3><p align=\"left\">Employee-ID: $id<br/>Dept-No.: $dept<br/>Address: $add<br/>Contact: $contact</p></div>";
 325 | 		$count=$count-1;
 326 | 	}
 327 | 	echo "</div>";
 328 | }
 329 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"add_emp")==0)))
 330 | {
 331 | 	if(isset($_GET['option'])&&(strcmp($_GET['option'],"insert")==0))
 332 | 	{
 333 | 		$dept=$_POST['dept_no'];
 334 | 		$result=mysql_query("select max(Employee_ID) count from employee where Dept_No=\"$dept\";");
 335 | 		$row=mysql_fetch_array($result);
 336 | 		$count=$row['count'];
 337 | 		if($count>=0)
 338 | 		{
 339 | 			$ptr=stripos($dept,"-");
 340 | 			$Dept=substr($dept,0,$ptr);
 341 | 			$ptr=stripos($count,"-");
 342 | 			$count=substr($count,$ptr+1);
 343 | 			echo "$count";
 344 | 			$Emp_ID=$Dept.'-'.("$count"+1);
 345 | 			//$dept_no_temp=substr($dept,$ptr+1);
 346 | 			//$dept_no=$Dept.'-'.("$dept_no_temp"+1);
 347 | 			//echo "$Emp_ID";
 348 | 		}
 349 | 		$name=$_POST['name'];
 350 | 		$address=$_POST['address'];
 351 | 		$dob=$_POST['dob'];
 352 | 		if(isset($_POST['contact']))
 353 | 		$contact=$_POST['contact'];
 354 | 		else $contact="NULL";
 355 | 		$type=$_POST['category'];
 356 | 		$gender=$_POST['gender'];
 357 | 		//$bg=$_POST['BG'];
 358 | 		$salary=$_POST['salary'];
 359 | 		if(strcmp($type,"Doctor")==0)
 360 | 		{
 361 | 			if(isset($_POST['batch']))
 362 | 			$batch=$_POST['batch'];
 363 | 			else 
 364 | 			{
 365 | 				echo "<script language=\"text/javascript\">Batch number found !!</script>";
 366 | 				header('Location: ?pid=add_emp');
 367 | 			}
 368 | 		}
 369 | 		mysql_query("insert into employee values (\"$Emp_ID\", \"$name\", \"$address\", \"$dob\", \"$contact\", \"$gender\", \"$salary\",\"$type\",\"$dept\" )");
 370 | 		$result=mysql_query("select * from Deparments where Dept_No=\"$dept\";");
 371 | 		$row=mysql_fetch_array($result);
 372 | 		$noe=$row['noe']+1;
 373 | 		mysql_query("UPDATE Departments SET noe=$noe");
 374 | 		if(strcmp($type,"Doctor")==0)
 375 | 		mysql_query("insert into doctors values (\"$batch\",\"$Emp_ID\")");
 376 | 		if(strcmp($type,"Doctor")==0)
 377 | 		header('Location: ?pid=view_doctors');
 378 | 		else if(strcmp($type,"Adminstration")==0)
 379 | 		header('Location: ?pid=view_admin');
 380 | 		else header('Location: ?pid=view_staff');
 381 | 	}
 382 | 	else
 383 | 	{
 384 | 		echo "<div style=\"width:900px; float:left;\"><h1 align=\"left\">Registeration</h1>";
 385 | 		echo "<table border=0 cellpadding=0 cellspacing=2 align=\"left\"><form action=\"login.php?pid=add_emp&option=insert\" method=\"post\">";
 386 | 		echo "<tr><td><h4>Name: </h4></td><td><input name=\"name\" type=\"text\" size=50 placeholder=\"Employee's Name\"></td></tr>";
 387 | 		echo "<tr><td><h4>Address: </h4></td><td><input name=\"address\" type=\"text\" size=50 placeholder=\"Employee's Address\"></td></tr>";
 388 | 		echo "<tr><td><h4>Date of Brith: </h4></td><td><input name=\"dob\" type=\"text\" size=50 placeholder=\"YYYY-MM-DD\"></td></tr>";
 389 | 		echo "<tr><td><h4>Contact: </h4></td><td><input name=\"contact\" type=\"text\" size=50 placeholder=\"Phone Number\"></td></tr>";
 390 | 		echo "<tr><td><h4>Gender: </h4></td><td><select name=\"gender\"><option>Male</option><option>Female</option></select></td></tr>";
 391 | 		echo "<tr><td><h4>Category: </h4></td><td><select name=\"category\"><option>Doctor</option><option>Medical Staff</option><option>Adminstration</option></select></td></tr>";
 392 | 		echo "<tr><td><h4>Batch Number: </h4></td><td><input name=\"batch\" type=\"text\" size=50 placeholder=\"Batch Number of Doctor\"></td></tr>";
 393 | 		echo "<tr><td><h4>Salary: </h4></td><td><input name=\"salary\" type=\"text\" size=50 placeholder=\"Salary\"></td></tr>";
 394 | 		echo "<tr><td><h4>Dept. No: </h4></td><td><select name=\"dept_no\">";
 395 | 		$result=mysql_query("select count(*) count from departments");
 396 | 		$row=mysql_fetch_array($result);
 397 | 		$count=$row['count'];		
 398 | 		$result=mysql_query("select Dept_No from departments");
 399 | 		for($i=0;$i<$count;$i=$i+1)
 400 | 		{
 401 | 				$row=mysql_fetch_array($result);
 402 | 				$dept_no=$row['Dept_No'];
 403 | 				echo "<option>$dept_no</option>";
 404 | 		}
 405 | 		echo "</select></td></tr>";
 406 | 		/*echo "<tr><td><h4>Room Type: </h4></td><td><select name=\"room\"><option>General</option><option>Pivate</option><option>ICU</option></select></td></tr>";*/
 407 | 		echo "<tr><td><input type=\"submit\" value=\"Submit\" id=\"wdth2\"></td></tr>";
 408 | 		echo "</form></table>";
 409 | 		echo "</div>";
 410 | 	}
 411 | }
 412 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"del_emp")==0)))
 413 | {
 414 | 	if(isset($_GET['option'])&&(strcmp($_GET['option'],"delete")==0))
 415 | 	{
 416 | 		$id=$_POST['id'];
 417 | 		if(isset($id))
 418 | 		mysql_query("delete from employee where Employee_ID='$id'; ");
 419 | 		header('Location: ?pid=del_emp');
 420 | 	}
 421 | 	else
 422 | 	{
 423 | 		echo "<br/><table border=0 cellpadding=2 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=del_emp&option=delete\" method=\"post\">";
 424 | 	echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"id\" type=\"text\" size=50 placeholder=\"Delete using Employee-ID.\" required/></td>";
 425 | 	echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/del.gif\" style=\"height:30px\" title=\"Click here to delete\"></td></tr>";
 426 | 	echo "</form></table>";
 427 | 	}
 428 | }
 429 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"add_patient")==0)))
 430 | {
 431 | 	if(isset($_GET['option'])&&(strcmp($_GET['option'],"insert")==0))
 432 | 	{
 433 | 		$result=mysql_query("select max(Patient_ID) count from patients;");
 434 | 		$name=$_POST['name'];
 435 | 		$address=$_POST['address'];
 436 | 		$dob=$_POST['dob'];
 437 | 		if(isset($_POST['contact']))
 438 | 		$contact=$_POST['contact'];
 439 | 		else $contact="NULL";
 440 | 		$gender=$_POST['gender'];
 441 | 		$bg=$_POST['BG'];
 442 | 		$row=mysql_fetch_array($result);
 443 | 		$id=$row['count'];
 444 | 		/*if(strlen($id)>=9)
 445 | 		$id="P0".($id+1);
 446 | 		else if(strlen($id)<9)
 447 | 		$id="P00".($id+1);*/
 448 | 		$id="P".(substr($id,1)+1);
 449 | 		mysql_query("insert into patients values (\"$id\", \"$name\", \"$address\", \"$dob\", \"$contact\", \"$gender\", \"$bg\")");
 450 | 		header('Location: ?pid=view_patient');
 451 | 	}
 452 | 	else
 453 | 	{
 454 | 		echo "<div style=\"width:900px; float:left;\"><h1 align=\"left\">Registeration</h1>";
 455 | 		echo "<table border=0 cellpadding=0 cellspacing=2 align=\"left\"><form action=\"login.php?pid=add_patient&option=insert\" method=\"post\">";
 456 | 		echo "<tr><td><h4>Name: </h4></td><td><input name=\"name\" type=\"text\" size=50 placeholder=\"Patient's Name\"></td></tr>";
 457 | 		echo "<tr><td><h4>Address: </h4></td><td><input name=\"address\" type=\"text\" size=50 placeholder=\"Patient's Address\"></td></tr>";
 458 | 		echo "<tr><td><h4>Date of Brith: </h4></td><td><input name=\"dob\" type=\"text\" size=50 placeholder=\"YYYY-MM-DD\"></td></tr>";
 459 | 		echo "<tr><td><h4>Contact: </h4></td><td><input name=\"contact\" type=\"text\" size=50 placeholder=\"Phone Number\"></td></tr>";
 460 | 		echo "<tr><td><h4>Blood Group: </h4></td><td><select name=\"BG\"><option>BG</option><option>A+</option><option>A-</option><option>AB+</option><option>AB-</option><option>B+</option><option>B-</option><option>O+</option><option>O-</option></select></td></tr>";
 461 | 		echo "<tr><td><h4>Gender: </h4></td><td><select name=\"gender\"><option>Male</option><option>Female</option></select></td></tr>";
 462 | 		/*echo "<tr><td><h4>Room Type: </h4></td><td><select name=\"room\"><option>General</option><option>Pivate</option><option>ICU</option></select></td></tr>";*/
 463 | 		echo "<tr><td><input type=\"submit\" value=\"Submit\" id=\"wdth2\"></td></tr>";
 464 | 		echo "</form></table>";
 465 | 		echo "</div>";
 466 | 	}
 467 | }
 468 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"del_patient")==0)))
 469 | {
 470 | 	if(isset($_GET['option'])&&(strcmp($_GET['option'],"delete")==0))
 471 | 	{
 472 | 		$id=$_POST['id'];
 473 | 		if(isset($id))
 474 | 		mysql_query("delete from patients where Patient_ID='$id'; ");
 475 | 		header('Location: ?pid=view_patient');
 476 | 	}
 477 | 	else
 478 | 	{
 479 | 		echo "<br/><table border=0 cellpadding=2 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=del_patient&option=delete\" method=\"post\">";
 480 | 	echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"id\" type=\"text\" size=50 placeholder=\"Delete using Patient-ID.\" required/></td>";
 481 | 	echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/del.gif\" style=\"height:30px\" title=\"Click here to delete\"></td></tr>";
 482 | 	echo "</form></table>";
 483 | 	}
 484 | }
 485 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"mod_emp")==0)))
 486 | {
 487 | 	if(isset($_GET['option'])&&(strcmp($_GET['option'],"mod_insert")==0))
 488 | 	{
 489 | 		$id=$_GET['id'];
 490 | 		$name=$_POST['name'];
 491 | 		$address=$_POST['address'];
 492 | 		$dob=$_POST['dob'];
 493 | 		if(isset($contact))
 494 | 		$contact=$_POST['contact'];
 495 | 		else $contact="NULL";
 496 | 		$gender=$_POST['gender'];
 497 | 		$salary=$_POST['salary'];
 498 | 		//echo "update Patients SET Name=\"$name\", Address=\"$address\", DOB=\"$dob\", Contact=\"$contact\", Gender=\"$gender\", Blood_Group=\"$bg\" where Patient_ID=$id;";
 499 | 		mysql_query("update Employee SET Name=\"$name\", Address=\"$address\", DOB=\"$dob\", Contact=\"$contact\", Gender=\"$gender\", Salary=\"$salary\" where Employee_ID=\"$id\" ");
 500 | 		header('Location: ?pid=mod_emp');
 501 | 	}
 502 | 	else if(isset($_GET['option'])&&(strcmp($_GET['option'],"mod_form")==0))
 503 | 	{
 504 | 		$id=$_POST['id'];
 505 | 		if(isset($id))
 506 | 		{
 507 | 			$result=mysql_query("select * from employee where Employee_ID='$id'; ");
 508 | 			if(isset($result))
 509 | 			{
 510 | 				$row=mysql_fetch_array($result);
 511 | 				$name=$row['Name'];
 512 | 				$address=$row['Address'];
 513 | 				$dob=$row['DOB'];
 514 | 				$contact=$row['Contact'];
 515 | 				$gender=$row['Gender'];
 516 | 				$salary=$row['Salary'];
 517 | 				echo "<div style=\"width:900px; float:left;\"><h1 align=\"left\">Modify</h1>";
 518 | 				echo "<table border=0 cellpadding=0 cellspacing=2 align=\"left\"><form action=\"login.php?pid=mod_emp&id=$id&option=mod_insert\" method=\"post\">";
 519 | 				echo "<name=\"id\" value=\"$name\">";
 520 | 				echo "<tr><td><h4>Name: </h4></td><td><input name=\"name\" type=\"text\" size=50 value=\"$name\"></td></tr>";
 521 | 				echo "<tr><td><h4>Address: </h4></td><td><input name=\"address\" type=\"text\" size=50 value=\"$address\"></td></tr>";
 522 | 				echo "<tr><td><h4>Date of Brith: </h4></td><td><input name=\"dob\" type=\"text\" size=50 value=\"$dob\"></td></tr>";
 523 | 				echo "<tr><td><h4>Contact: </h4></td><td><input name=\"contact\" type=\"text\" size=50 value=\"$contact\"></td></tr>";
 524 | 				echo "<tr><td><h4>Salary: </h4></td><td><input name=\"salary\" type=\"text\" size=50 value=\"$salary\"></td></tr>";
 525 | 				if(strcmp($gender,"Male")==0)
 526 | 				echo "<tr><td><h4>Gender: </h4></td><td><select name=\"gender\"><option>Male</option><option>Female</option></select></td></tr>";
 527 | 				else echo "<tr><td><h4>Gender: </h4></td><td><select name=\"gender\"><option>Female</option><option>Male</option></select></td></tr>";
 528 | 				/*echo "<tr><td><h4>Room Type: </h4></td><td><select name=\"room\"><option>General</option><option>Pivate</option><option>ICU</option></select></td></tr>";*/
 529 | 				echo "<tr><td><input type=\"submit\" value=\"Modify\" id=\"wdth2\"></td></tr>";
 530 | 				echo "</form></table>";
 531 | 				echo "</div>";
 532 | 			}
 533 | 		}
 534 | 	}
 535 | 	else
 536 | 	{
 537 | 		echo "<br/><table border=0 cellpadding=2 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=mod_emp&option=mod_form\" method=\"post\">";
 538 | 	echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"id\" type=\"text\" size=50 placeholder=\"Modify using Employee-ID.\" required/></td>";
 539 | 	echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/mod.gif\" style=\"height:30px\" title=\"Click here to modify\"></td></tr>";
 540 | 	echo "</form></table>";
 541 | 	}
 542 | }
 543 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"mod_patient")==0)))
 544 | {
 545 | 	if(isset($_GET['option'])&&(strcmp($_GET['option'],"mod_insert")==0))
 546 | 	{
 547 | 		$id=$_GET['id'];
 548 | 		$name=$_POST['name'];
 549 | 		$address=$_POST['address'];
 550 | 		$dob=$_POST['dob'];
 551 | 		if(isset($contact))
 552 | 		$contact=$_POST['contact'];
 553 | 		else $contact="NULL";
 554 | 		$gender=$_POST['gender'];
 555 | 		$bg=$_POST['BG'];
 556 | 		//echo "update Patients SET Name=\"$name\", Address=\"$address\", DOB=\"$dob\", Contact=\"$contact\", Gender=\"$gender\", Blood_Group=\"$bg\" where Patient_ID=$id;";
 557 | 		mysql_query("update Patients SET Name=\"$name\", Address=\"$address\", DOB=\"$dob\", Contact=\"$contact\", Gender=\"$gender\", Blood_Group=\"$bg\" where Patient_ID=\"$id\" ");
 558 | 		header('Location: ?pid=view_patient');
 559 | 	}
 560 | 	else if(isset($_GET['option'])&&(strcmp($_GET['option'],"mod_form")==0))
 561 | 	{
 562 | 		$id=$_POST['id'];
 563 | 		if(isset($id))
 564 | 		{
 565 | 			$result=mysql_query("select * from patients where Patient_ID='$id'; ");
 566 | 			if(isset($result))
 567 | 			{
 568 | 				$row=mysql_fetch_array($result);
 569 | 				$name=$row['Name'];
 570 | 				$address=$row['Address'];
 571 | 				$dob=$row['DOB'];
 572 | 				$contact=$row['Contact'];
 573 | 				$gender=$row['Gender'];
 574 | 				$bg=$row['Blood_Group'];
 575 | 				echo "<div style=\"width:900px; float:left;\"><h1 align=\"left\">Modify</h1>";
 576 | 				echo "<table border=0 cellpadding=0 cellspacing=2 align=\"left\"><form action=\"login.php?pid=mod_patient&id=$id&option=mod_insert\" method=\"post\">";
 577 | 				echo "<name=\"id\" value=\"$name\">";
 578 | 				echo "<tr><td><h4>Name: </h4></td><td><input name=\"name\" type=\"text\" size=50 value=\"$name\"></td></tr>";
 579 | 				echo "<tr><td><h4>Address: </h4></td><td><input name=\"address\" type=\"text\" size=50 value=\"$address\"></td></tr>";
 580 | 				echo "<tr><td><h4>Date of Brith: </h4></td><td><input name=\"dob\" type=\"text\" size=50 value=\"$dob\"></td></tr>";
 581 | 				echo "<tr><td><h4>Contact: </h4></td><td><input name=\"contact\" type=\"text\" size=50 value=\"$contact\"></td></tr>";
 582 | 				echo "<tr><td><h4>Blood Group: </h4></td><td><select name=\"BG\"><option >$bg</option><option>A+</option><option>A-</option><option>AB+</option><option>AB-</option><option>B+</option><option>B-</option><option>O+</option><option>O-</option></select></td></tr>";
 583 | 				if(strcmp($gender,"Male")==0)
 584 | 				echo "<tr><td><h4>Gender: </h4></td><td><select name=\"gender\"><option>Male</option><option>Female</option></select></td></tr>";
 585 | 				else echo "<tr><td><h4>Gender: </h4></td><td><select name=\"gender\"><option>Female</option><option>Male</option></select></td></tr>";
 586 | 				/*echo "<tr><td><h4>Room Type: </h4></td><td><select name=\"room\"><option>General</option><option>Pivate</option><option>ICU</option></select></td></tr>";*/
 587 | 				echo "<tr><td><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/mod.gif\" style=\"height:30px\" title=\"Click here to modify\"></td></tr>";
 588 | 				echo "</form></table>";
 589 | 				echo "</div>";
 590 | 			}
 591 | 		}
 592 | 	}
 593 | 	else
 594 | 	{
 595 | 		echo "<br/><table border=0 cellpadding=2 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=mod_patient&option=mod_form\" method=\"post\">";
 596 | 	echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"id\" type=\"text\" size=50 placeholder=\"Modify using Patient-ID.\" required/></td>";
 597 | 	echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"submit\" name=\"commit\" value=\"Submit\" src=\"images/mod.gif\" style=\"height:30px\" title=\"Click here to modify\"></td></tr>";
 598 | 	echo "</form></table>";
 599 | 	}
 600 | }
 601 | else if(isset($_GET['option'])&&isset($_GET['pid'])&&((strcmp($_GET['pid'],"view_patient")==0))&&((strcmp($_GET['option'],"search_tools")==0)))
 602 | {
 603 | 	echo "<table border=0 cellpadding=2 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=view_patient&option=search_val\" method=\"post\">";
 604 | 	echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_patient\" type=\"text\" size=50 placeholder=\"Search by Name, Patient-ID.\"></td>";
 605 | 	echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\" title=\"Click here to start searching\"></td><td style=\"border-bottom: #FFFFFF\"><a class=\"button\" style=\"text-decoration: none;\" href=\"?pid=view_patient&option=search_tools\" title=\"Click here for advanced search options\">&nbsp;Advanced Search</a></td></tr>";
 606 | 	echo "<div style=\"width:900px;\">";
 607 | 	echo "<br/><table border=0 cellpadding=4 cellspacing=1 height=5>";
 608 | 	echo "<tr><td><b>Filters: </b></td><td style=\"border-bottom: #FFFFFF\"><input name=\"age\" type=\"text\" size=3 placeholder=\"Age\"></td><td style=\"border-bottom: #FFFFFF\"><select name=\"BG\"><option>BG</option><option>A+</option><option>A-</option><option>AB+</option><option>AB-</option><option>B+</option><option>B-</option><option>O+</option><option>O-</option></select></td><td style=\"border-bottom: #FFFFFF\"><select name=\"gender\"><option>Male</option><option>Female</option><option>All</option></select></td><td style=\"border-bottom: #FFFFFF\"><input name=\"aname\" type=\"text\" size=25 placeholder=\"Accompany's Name\"></td><!--<td style=\"border-bottom: #FFFFFF\"><input name=\"room_no\" type=\"text\" size=27 placeholder=\"Room Number (Eg. ICU-001)\">--></td></tr>";
 609 | 	echo "</div>";
 610 | 	echo "</form></table>";
 611 | }
 612 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"view_patient")==0)||(strcmp($_GET['pid'],"patient_details")==0)))
 613 | {
 614 | 	echo "<br/><table border=0 cellpadding=2 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=view_patient&option=search_val\" method=\"post\">";
 615 | 	echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_patient\" type=\"text\" size=50 placeholder=\"Search by Name, Patient-ID.\"></td>";
 616 | 	echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\" title=\"Click here to start searching\"></td><td style=\"border-bottom: #FFFFFF\"><a class=\"button\" style=\"text-decoration: none;\" href=\"login.php?pid=view_patient&option=search_tools\" title=\"Click here for advanced search options\">&nbsp;Advanced Search</a></td></tr>";
 617 | 	echo "</form></table>";
 618 | 	if((strcmp($_GET['pid'],"patient_details")==0))
 619 | 	{
 620 | 		$searchby=$_GET['id'];
 621 | 		$result=mysql_query("select * from patients where Patient_ID='$searchby'");
 622 | 		echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 623 | 		$row=mysql_fetch_array($result);
 624 | 		$name=$row['Name'];
 625 | 		$eid=$row['Patient_ID'];
 626 | 		//$dept=$row['Dept_No'];
 627 | 		$gender=$row['Gender'];
 628 | 		$contact=$row['Contact'];
 629 | 		$dob=$row['DOB'];
 630 | 		$add=$row['Address'];
 631 | 		$bg=$row['Blood_Group'];
 632 | 		echo "<h3>Patient Details</h3>";
 633 | 		echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;border-collapse: collapse;\">";
 634 | 		echo "<tr><td width=5%>Name: </td><td width=50%>$name</td></tr>";
 635 | 		echo "<tr><td>Patient ID: </td><td>$eid</td></tr>";
 636 | 		echo "<tr><td>Date of Birth: </td><td>$dob</td></tr>";
 637 | 		echo "<tr><td>Department: </td><td></td></tr>";
 638 | 		echo "<tr><td>Contact: </td><td>$contact</td></tr>";
 639 | 		echo "<tr><td>Gender: </td><td>$gender</td></tr>";
 640 | 		echo "<tr><td>Address: </td><td>$add</td></tr>";
 641 | 		echo "<tr><td>Blood Group: </td><td>$bg</td></tr>";
 642 | 		echo "</table>";
 643 | 		$flag=1;
 644 | 	}
 645 | 	else if(isset($_GET['option'])&&strcmp($_GET['option'],"search_val")==0)
 646 | 	{
 647 | 		if(!empty($_POST['search_patient']))
 648 | 		$searchby=$_POST['search_patient'];
 649 | 		else $searchby='%';
 650 | 		if(!empty($_POST['age']))
 651 | 		$searchbyage=$_POST['age'];
 652 | 		if(!empty($_POST['gender'])&&(strcmp($_POST['gender'],"All")))
 653 | 		$searchbysex=$_POST['gender'];
 654 | 		if(!empty($_POST['BG'])&&(strcmp($_POST['BG'],"BG")))
 655 | 		$searchbybg=$_POST['BG'];
 656 | 		if(!empty($_POST['aname']))
 657 | 		$searchbyaname=$_POST['aname'];
 658 | 		$flag=0;
 659 | 		if(!empty($searchby)&&(($searchby[0]=='P')||($searchby[0]=='p')))
 660 | 		{
 661 | 			if(empty($searchbyaname))
 662 | 			$result=mysql_query("select * from patients where Patient_ID='$searchby'");
 663 | 			else $result=mysql_query("select * from patients p, accompanies a where p.Patient_ID='$searchby' and p.Patient_ID=a.Patient_ID and a.Name LIKE '%$searchbyaname%'");
 664 | 			if(!empty($result) && mysql_num_rows($result)==1)
 665 | 			{
 666 | 				echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 667 | 				$row=mysql_fetch_array($result);
 668 | 				$name=$row['Name'];
 669 | 				$eid=$row['Patient_ID'];
 670 | 				//$dept=$row['Dept_No'];
 671 | 				$gender=$row['Gender'];
 672 | 				$contact=$row['Contact'];
 673 | 				$dob=$row['DOB'];
 674 | 				$add=$row['Address'];
 675 | 				$bg=$row['Blood_Group'];
 676 | 				echo "<h3>Patient Details</h3>";
 677 | 				echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;border-collapse: collapse;\">";
 678 | 				echo "<tr><td width=5%>Name: </td><td width=50%>$name</td></tr>";
 679 | 				echo "<tr><td>Patient ID: </td><td>$eid</td></tr>";
 680 | 				echo "<tr><td>Date of Birth: </td><td>$dob</td></tr>";
 681 | 				echo "<tr><td>Department: </td><td></td></tr>";
 682 | 				echo "<tr><td>Contact: </td><td>$contact</td></tr>";
 683 | 				echo "<tr><td>Gender: </td><td>$gender</td></tr>";
 684 | 				echo "<tr><td>Address: </td><td>$add</td></tr>";
 685 | 				echo "<tr><td>Blood Group: </td><td>$bg</td></tr>";
 686 | 				echo "</table>";
 687 | 				$flag=1;
 688 | 			}
 689 | 		}
 690 | 		if(!empty($searchby)&&($flag==0))
 691 | 		{
 692 | 			if(!empty($searchbysex)&&!empty($searchbyage)&&!empty($searchbyaname)&&!empty($searchbybg))
 693 | 			$result=mysql_query("select p.Name,p.Patient_ID,p.Gender,p.Contact,p.DOB,p.Address,p.Blood_Group from patients p, accompanies a where p.Name LIKE '%$searchby%' and p.Patient_ID=a.Patient_ID and a.Name LIKE '%$searchbyaname%' and p.Gender LIKE '$searchbysex' and floor(DATEDIFF(CURDATE(),p.DOB)/365)=$searchbyage and p.Blood_Group LIKE '$searchbybg'");
 694 | 			else if(!empty($searchbysex)&&!empty($searchbyage)&&!empty($searchbyaname))
 695 | 			$result=mysql_query("select p.Name,p.Patient_ID,p.Gender,p.Contact,p.DOB,p.Address,p.Blood_Group from patients p, accompanies a where p.Name LIKE '%$searchby%' and p.Patient_ID=a.Patient_ID and a.Name LIKE '%$searchbyaname%' and p.Gender LIKE '$searchbysex' and floor(DATEDIFF(CURDATE(),p.DOB)/365)=$searchbyage");
 696 | 			else if(!empty($searchbysex)&&!empty($searchbybg)&&!empty($searchbyaname))
 697 | 			$result=mysql_query("select p.Name,p.Patient_ID,p.Gender,p.Contact,p.DOB,p.Address,p.Blood_Group from patients p, accompanies a where p.Name LIKE '%$searchby%' and p.Patient_ID=a.Patient_ID and a.Name LIKE '%$searchbyaname%' and p.Gender LIKE '$searchbysex' and p.Blood_Group LIKE '$searchbybg'");
 698 | 			else if(!empty($searchbysex)&&!empty($searchbyage)&&!empty($searchbybg))
 699 | 			$result=mysql_query("select * from patients where Name LIKE '%$searchby%' and Gender LIKE '$searchbysex' and floor(DATEDIFF(CURDATE(),p.DOB)/365)=$searchbyage and Blood_Group LIKE '$searchbybg'");
 700 | 			else if(!empty($searchbyaname)&&!empty($searchbyage)&&!empty($searchbybg))
 701 | 			$result=mysql_query("select p.Name,p.Patient_ID,p.Gender,p.Contact,p.DOB,p.Address,p.Blood_Group from patients p, accompanies a where p.Name LIKE '%$searchby%' and p.Patient_ID=a.Patient_ID and a.Name LIKE '%$searchbyaname%' and floor(DATEDIFF(CURDATE(),p.DOB)/365)=$searchbyage and p.Blood_Group LIKE '$searchbybg'");
 702 | 			else if(!empty($searchbysex)&&!empty($searchbybg))
 703 | 			$result=mysql_query("select * from patients where Name LIKE '%$searchby%' and Gender LIKE '$searchbysex' and Blood_Group LIKE '$searchbybg' ");
 704 | 			else if(!empty($searchbysex)&&!empty($searchbyage))
 705 | 			$result=mysql_query("select * from patients where Name LIKE '%$searchby%' and Gender LIKE '$searchbysex' and floor(DATEDIFF(CURDATE(),DOB)/365)=$searchbyage");
 706 | 			else if(!empty($searchbybg)&&!empty($searchbyage))
 707 | 			$result=mysql_query("select * from patients where Name LIKE '%$searchby%' and Blood_Group LIKE '$searchbybg' and floor(DATEDIFF(CURDATE(),DOB)/365)=$searchbyage");
 708 | 			else if(!empty($searchbysex)&&!empty($searchbyaname))
 709 | 			$result=mysql_query("select p.Name,p.Patient_ID,p.Gender,p.Contact,p.DOB,p.Address,p.Blood_Group from patients p, accompanies a where p.Name LIKE '%$searchby%' and p.Patient_ID=a.Patient_ID and a.Name LIKE '%$searchbyaname%' and p.Gender LIKE '$searchbysex' ");
 710 | 			else if(!empty($searchbyage)&&!empty($searchbyaname))
 711 | 			$result=mysql_query("select p.Name,p.Patient_ID,p.Gender,p.Contact,p.DOB,p.Address,p.Blood_Group from patients p, accompanies a where p.Name LIKE '%$searchby%' and p.Patient_ID=a.Patient_ID and a.Name LIKE '%$searchbyaname%' and floor(DATEDIFF(CURDATE(),p.DOB)/365)=$searchbyage");
 712 | 			else if(!empty($searchbyaname)&&!empty($searchbybg))
 713 | 			$result=mysql_query("select p.Name,p.Patient_ID,p.Gender,p.Contact,p.DOB,p.Address,p.Blood_Group from patients p, accompanies a where p.Name LIKE '%$searchby%' and p.Patient_ID=a.Patient_ID and a.Name LIKE '%$searchbyaname%' and p.Blood_Group LIKE '$searchbybg'");
 714 | 			else if(!empty($searchbysex))
 715 | 			$result=mysql_query("select * from patients where Name LIKE '%$searchby%' and Gender LIKE '$searchbysex' ");
 716 | 			else if(!empty($searchbybg))
 717 | 			$result=mysql_query("select * from patients where Name LIKE '%$searchby%' and Blood_Group LIKE '$searchbybg' ");
 718 | 			else if(!empty($searchbyage))
 719 | 			$result=mysql_query("select * from patients where Name LIKE '%$searchby%' and floor(DATEDIFF(CURDATE(),DOB)/365)=$searchbyage");
 720 | 			else if(!empty($searchbyaname))
 721 | 			$result=mysql_query("select p.Name,p.Patient_ID,p.Gender,p.Contact,p.DOB,p.Address,p.Blood_Group from patients p, accompanies a where p.Name LIKE '%$searchby%' and p.Patient_ID=a.Patient_ID and a.Name LIKE '%$searchbyaname%'");
 722 | 			else $result=mysql_query("select * from patients where Name LIKE '%$searchby%'");
 723 | 			if(!empty($result) && mysql_num_rows($result)==1)
 724 | 			{
 725 | 				echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 726 | 				$row=mysql_fetch_array($result);
 727 | 				$name=$row['Name'];
 728 | 				$eid=$row['Patient_ID'];
 729 | 				//$dept=$row['Dept_No'];
 730 | 				$gender=$row['Gender'];
 731 | 				$contact=$row['Contact'];
 732 | 				$dob=$row['DOB'];
 733 | 				$add=$row['Address'];
 734 | 				$bg=$row['Blood_Group'];
 735 | 				echo "<h3>Patient Details</h3>";
 736 | 				echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;border-collapse: collapse;\">";
 737 | 				echo "<tr><td width=5%>Name: </td><td width=50%>$name</td></tr>";
 738 | 				echo "<tr><td>Patient ID: </td><td>$eid</td></tr>";
 739 | 				echo "<tr><td>Date of Birth: </td><td>$dob</td></tr>";
 740 | 				//echo "<tr><td>Department: </td><td></td></tr>";
 741 | 				echo "<tr><td>Contact: </td><td>$contact</td></tr>";
 742 | 				echo "<tr><td>Gender: </td><td>$gender</td></tr>";
 743 | 				echo "<tr><td>Address: </td><td>$add</td></tr>";
 744 | 				echo "<tr><td>Blood Group: </td><td>$bg</td></tr>";
 745 | 				echo "</table>";
 746 | 				$flag=1;
 747 | 			}
 748 | 			else if(!empty($result) && mysql_num_rows($result)>1)
 749 | 			{
 750 | 				echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 751 | 				echo "<div style=\"width:900px; float:left;\">";
 752 | 				for($i=0;$i<mysql_num_rows($result);$i=$i+1)
 753 | 				{
 754 | 					$row=mysql_fetch_array($result);
 755 | 					$name=$row['Name'];
 756 | 					$eid=$row['Patient_ID'];
 757 | 					$dob=$row['DOB'];
 758 | 					echo "<div style=\"width:900px; float:left;\">";
 759 | 					echo "<h3 align=\"left\"><a href=\"?pid=patient_details&id=$eid\">$name</a></h3>";
 760 | 					echo "<p align=\"left\"><b>Patient ID:</b> $eid<br/><b>Date of Birth:</b> $dob</p>";
 761 | 					echo "</div>";
 762 | 				}
 763 | 				echo "</div>";
 764 | 				$flag=1;
 765 | 			}
 766 | 		}
 767 | 		if($flag==0)
 768 | 		echo "<i><b>No match found.</b></i>";
 769 | 	}
 770 | }
 771 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"view_accompanies")==0)||(strcmp($_GET['pid'],"accompany_details")==0)))
 772 | {
 773 | 	echo "<br/><table border=0 cellpadding=2 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=view_accompanies&option=search_val\" method=\"post\">";
 774 | 	echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_accompany\" type=\"text\" size=50 placeholder=\"Search by Patient's Name, Patient-ID.\"></td>";
 775 | 	echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\" title=\"Click here to start searching\"></td></tr>";
 776 | 	echo "</form></table>";
 777 | 	if((strcmp($_GET['pid'],"accompany_details")==0))
 778 | 	{
 779 | 		$id=$_GET['id'];
 780 | 		$name=$_GET['name'];
 781 | 		$result=mysql_query("select * from accompanies where Patient_ID='$id' && Name='$name' ");
 782 | 		if(!empty($result) && mysql_num_rows($result)==1)
 783 | 		{
 784 | 			echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 785 | 			$row=mysql_fetch_array($result);
 786 | 			$name=$row['Name'];
 787 | 			$eid=$row['Patient_ID'];
 788 | 			//$dept=$row['Dept_No'];
 789 | 			$gender=$row['Gender'];
 790 | 			$contact=$row['Contact'];
 791 | 			$dob=$row['DOB'];
 792 | 			$add=$row['Address'];
 793 | 			$rel=$row['Relationship'];
 794 | 			echo "<h3>Accompany's Details</h3>";
 795 | 			echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;border-collapse: collapse;\">";
 796 | 			echo "<tr><td width=5%>Name: </td><td width=50%>$name</td></tr>";
 797 | 			echo "<tr><td>Patient ID: </td><td>$eid</td></tr>";
 798 | 			echo "<tr><td>Date of Birth: </td><td>$dob</td></tr>";
 799 | 			echo "<tr><td>Contact: </td><td>$contact</td></tr>";
 800 | 			echo "<tr><td>Gender: </td><td>$gender</td></tr>";
 801 | 			echo "<tr><td>Address: </td><td>$add</td></tr>";
 802 | 			echo "<tr><td>Relation: </td><td>$rel</td></tr>";
 803 | 			echo "</table>";
 804 | 			$flag=1;
 805 | 		}
 806 | 	}
 807 | 	if((isset($_GET['option']))&&(strcmp($_GET['option'],"search_val")==0))
 808 | 	{
 809 | 		if(!empty($_POST['search_accompany']))
 810 | 		$searchby=$_POST['search_accompany'];
 811 | 		else $searchby='%';
 812 | 		$flag=0;
 813 | 		if(!empty($searchby)&&(($searchby[0]=='P')||($searchby[0]=='p')))
 814 | 		{
 815 | 			$result=mysql_query("select * from accompanies where Patient_ID='$searchby'");
 816 | 			if(!empty($result) && mysql_num_rows($result)==1)
 817 | 			{
 818 | 				echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 819 | 				$row=mysql_fetch_array($result);
 820 | 				$name=$row['Name'];
 821 | 				$eid=$row['Patient_ID'];
 822 | 				//$dept=$row['Dept_No'];
 823 | 				$gender=$row['Gender'];
 824 | 				$contact=$row['Contact'];
 825 | 				$dob=$row['DOB'];
 826 | 				$add=$row['Address'];
 827 | 				$rel=$row['Relationship'];
 828 | 				echo "<h3>Accompany's Details</h3>";
 829 | 				echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;border-collapse: collapse;\">";
 830 | 				echo "<tr><td width=5%>Name: </td><td width=50%>$name</td></tr>";
 831 | 				echo "<tr><td>Patient ID: </td><td>$eid</td></tr>";
 832 | 				echo "<tr><td>Date of Birth: </td><td>$dob</td></tr>";
 833 | 				echo "<tr><td>Contact: </td><td>$contact</td></tr>";
 834 | 				echo "<tr><td>Gender: </td><td>$gender</td></tr>";
 835 | 				echo "<tr><td>Address: </td><td>$add</td></tr>";
 836 | 				echo "<tr><td>Relation: </td><td>$rel</td></tr>";
 837 | 				echo "</table>";
 838 | 				$flag=1;
 839 | 			}
 840 | 			else if(!empty($result) && mysql_num_rows($result)>1)
 841 | 			{
 842 | 				echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 843 | 				echo "<div style=\"width:900px; float:left;\">";
 844 | 				for($i=0;$i<mysql_num_rows($result);$i=$i+1)
 845 | 				{
 846 | 					$row=mysql_fetch_array($result);
 847 | 					$name=$row['Name'];
 848 | 					$eid=$row['Patient_ID'];
 849 | 					$rel=$row['Relationship'];
 850 | 					echo "<div style=\"width:900px; float:left;\">";
 851 | 					echo "<h3 align=\"left\"><a href=\"?pid=accompany_details&id=$eid&name=$name\">$name</a></h3>";
 852 | 					echo "<p align=\"left\"><b>Patient ID:</b> $eid<br/><b>Realtion:</b> $rel</p>";
 853 | 					echo "</div>";
 854 | 				}
 855 | 				echo "</div>";
 856 | 				$flag=1;
 857 | 			}
 858 | 		}
 859 | 		if(!empty($searchby)&&($flag==0))
 860 | 		{
 861 | 			$result=mysql_query("select * from patients p,accompanies a where p.Patient_ID=a.Patient_ID and p.Name LIKE '%$searchby%'");
 862 | 			if(!empty($result) && mysql_num_rows($result)==1)
 863 | 			{
 864 | 				echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 865 | 				$row=mysql_fetch_array($result);
 866 | 				$name=$row['Name'];
 867 | 				$eid=$row['Patient_ID'];
 868 | 				//$dept=$row['Dept_No'];
 869 | 				$gender=$row['Gender'];
 870 | 				$contact=$row['Contact'];
 871 | 				$dob=$row['DOB'];
 872 | 				$add=$row['Address'];
 873 | 				$rel=$row['Relationship'];
 874 | 				echo "<h3>Accompany's Details</h3>";
 875 | 				echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;border-collapse: collapse;\">";
 876 | 				echo "<tr><td width=5%>Name: </td><td width=50%>$name</td></tr>";
 877 | 				echo "<tr><td>Patient ID: </td><td>$eid</td></tr>";
 878 | 				echo "<tr><td>Date of Birth: </td><td>$dob</td></tr>";
 879 | 				echo "<tr><td>Contact: </td><td>$contact</td></tr>";
 880 | 				echo "<tr><td>Gender: </td><td>$gender</td></tr>";
 881 | 				echo "<tr><td>Address: </td><td>$add</td></tr>";
 882 | 				echo "<tr><td>Relation: </td><td>$rel</td></tr>";
 883 | 				echo "</table>";
 884 | 				$flag=1;
 885 | 			}
 886 | 			else if(!empty($result) && mysql_num_rows($result)>1)
 887 | 			{
 888 | 				echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 889 | 				echo "<div style=\"width:900px; float:left;\">";
 890 | 				for($i=0;$i<mysql_num_rows($result);$i=$i+1)
 891 | 				{
 892 | 					$row=mysql_fetch_array($result);
 893 | 					$name=$row['Name'];
 894 | 					$eid=$row['Patient_ID'];
 895 | 					$rel=$row['Relationship'];
 896 | 					echo "<div style=\"width:900px; float:left;\">";
 897 | 					echo "<h3 align=\"left\"><a href=\"?pid=accompany_details&id=$eid&name=$name\">$name</a></h3>";
 898 | 					echo "<p align=\"left\"><b>Patient ID:</b> $eid<br/><b>Realtion:</b> $rel</p>";
 899 | 					echo "</div>";
 900 | 				}
 901 | 				echo "</div>";
 902 | 				$flag=1;
 903 | 			}
 904 | 			if($flag==0)
 905 | 			echo "<i><b>No match found.</b></i>";
 906 | 		}
 907 | 	}
 908 | }
 909 | else if(isset($_GET['pid'])&&(strcmp($_GET['pid'],"logout")==0))
 910 | {
 911 | 	$username=$_COOKIE['username'];
 912 | 	$sessionid=$_COOKIE['PHPSESSID'];
 913 | 	if(mysql_query("select * from session where username='$username' and id='$sessionid'"))
 914 | 	{
 915 | 		$result=mysql_query("delete from session where username='$username'and id='$sessionid'");
 916 | 		setcookie("username",$_POST['username'],time()-3600);
 917 | 		unset($_SESSION['PHPSESSID']);
 918 | 		header('Location: index.php');
 919 | 	}
 920 | 	echo "</div>";
 921 | }
 922 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"view_dept")==0)||(strcmp($_GET['pid'],"dept_details")==0)||(strcmp($_GET['pid'],"emp_details")==0)))
 923 | {
 924 | 	if((strcmp($_GET['pid'],"view_dept")==0))
 925 | 	{
 926 | 		$result=mysql_query("select * from departments");
 927 | 		echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 928 | 		echo "<div style=\"width:900px; float:left;\">";
 929 | 		for($i=0;$i<mysql_num_rows($result);$i=$i+1)
 930 | 		{
 931 | 			$row=mysql_fetch_array($result);
 932 | 			$name=$row['Name'];
 933 | 			$d_id=$row['Dept_No'];
 934 | 			echo "<div style=\"width:900px; float:left;\">";
 935 | 			echo "<h3 align=\"left\"><a href=\"?pid=dept_details&id=$d_id\">$name</a></h3>";
 936 | 			echo "<p align=\"left\"><b>Department No.:</b> $d_id</p>";
 937 | 			echo "</div>";
 938 | 		}
 939 | 		echo "</div>";			
 940 | 	}
 941 | 	else if((strcmp($_GET['pid'],"dept_details")==0))
 942 | 	{
 943 | 		$searchby=$_GET['id'];
 944 | 		$result=mysql_query("select * from departments where Dept_No='$searchby'");
 945 | 		echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 946 | 		$row=mysql_fetch_array($result);
 947 | 		$name=$row['Name'];
 948 | 		$d_id=$row['Dept_No'];
 949 | 		$loc=$row['Location'];
 950 | 		$nem=$row['NOE'];
 951 | 		echo "<h3>Department Details</h3>";
 952 | 		echo "<table border=5 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;border-collapse: collapse;\">";
 953 | 		echo "<tr><td width=5%>Name: </td><td width=50%>$name</td></tr>";
 954 | 		echo "<tr><td>Deparment No.: </td><td>$d_id</td></tr>";
 955 | 		echo "<tr><td>Location: </td><td>$loc</td></tr>";
 956 | 		//echo "<tr><td>Number of employees: </td><td>$nem</td></tr>";
 957 | 		echo "</table>";
 958 | 		echo "<h4 align=\"left\"><u>Employee Names</u>:</h4>";
 959 | 		$result2=mysql_query("select * from employee where Dept_No='$d_id'");
 960 | 		echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 961 | 		echo "<div style=\"width:900px; float:left;\">";
 962 | 		if(!empty($result2))
 963 | 		for($i=0;$i<mysql_num_rows($result2);$i=$i+1)
 964 | 		{
 965 | 			$j=$i+1;
 966 | 			$row=mysql_fetch_array($result2);
 967 | 			$name=$row['Name'];
 968 | 			$eid=$row['Employee_ID'];
 969 | 			echo "<div style=\"width:900px; float:left;\">";
 970 | 			echo "<p align=\"left\">$j.)<a href=\"?pid=emp_details&id=$eid\">$name</a>&nbsp&nbsp&nbsp&nbsp&nbsp&nbspEmployee ID: </b> $eid</p>";
 971 | 			echo "</div>";
 972 | 		}
 973 | 		echo "</div>";
 974 | 	}
 975 | 	else if((strcmp($_GET['pid'],"emp_details")==0))
 976 | 	{
 977 | 		$searchby=$_GET['id'];
 978 | 		$result=mysql_query("select * from employee where Employee_ID='$searchby'");
 979 | 		echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
 980 | 		$row=mysql_fetch_array($result);
 981 | 		$name=$row['Name'];
 982 | 		$eid=$row['Employee_ID'];
 983 | 		$add=$row['Address'];
 984 | 		$dob=$row['DOB'];
 985 | 		$con=$row['Contact'];
 986 | 		$sex=$row['Gender'];
 987 | 		$dept=$row['Dept_No'];
 988 | 		$dept1=mysql_query("select * from Departments where Dept_No='$dept'");
 989 | 		$row1=mysql_fetch_array($dept1);
 990 | 		$dept_n=$row1['Name'];
 991 | 		echo "<h3>Employee Details</h3>";
 992 | 		echo "<table border=5 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;border-collapse: collapse;\">";
 993 | 		echo "<tr><td width=5%>Name: </td><td width=50%>$name</td></tr>";
 994 | 		echo "<tr><td>Employee ID: </td><td>$eid</td></tr>";
 995 | 		echo "<tr><td>Address: </td><td>$add</td></tr>";
 996 | 		echo "<tr><td>DOB: </td><td>$dob</td></tr>";
 997 | 		echo "<tr><td>Contact: </td><td>$con</td></tr>";
 998 | 		echo "<tr><td>Gender: </td><td>$sex</td></tr>";
 999 | 		echo "<tr><td>Department Name: </td><td>$dept_n  &nbsp&nbsp&nbsp&nbsp $dept</td></tr>";
1000 | 		echo "</table>";
1001 | 	}
1002 | }
1003 | else if(isset($_GET['pid'])&&(strcmp($_GET['pid'],"del_dept")==0))
1004 | {
1005 | 	echo "<br/><table border=1 cellpadding=0 cellspacing=0 height=0 style=\"\"><form action=\"login.php?pid=del_dept&option=del_id\" method=\"post\">";
1006 | 	echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"dept_id\" type=\"text\" size=50 placeholder=\"Enter Department No. to delete\" required></td>";
1007 | 	echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"submit\" name=\"commit\" value=\"Submit\" style=\"height:30px\" title=\"Click here to delete\"></td></tr>";
1008 | 	echo "</form></table>";
1009 | 	if(isset($_GET['option'])&&strcmp($_GET['option'],"del_id")==0)
1010 | 	{
1011 | 		if(!empty($_POST['dept_id']))
1012 | 		$d_id=$_POST['dept_id'];
1013 | 		$res=mysql_query("select * from departments where Dept_No='$d_id';");
1014 | 		if(mysql_num_rows($res)!=0)
1015 | 		{
1016 | 		mysql_query("delete from departments where Dept_No='$d_id';");
1017 | 		header('Location: login.php?pid=view_dept');
1018 | 		}
1019 | 		else
1020 | 		echo "<script type=\"text/javascript\">alert(\"Invalid Department No.\")</script>";
1021 | 	}
1022 | }
1023 | else if(isset($_GET['pid'])&&(strcmp($_GET['pid'],"add_dept")==0))
1024 | {
1025 | 	$flag=0;
1026 | 	echo("<h2 align=\"centre\"><u> New Department </u></h1>");
1027 | 	echo("<form align=\"centre\" #action=\"#\" method =\"post\">");
1028 | 	echo("<table><tr><td><br />Name &nbsp &nbsp &nbsp </td><td><br /><input type=\"text\" name=\"nm\"/ required ></td></tr>");
1029 | 	echo("<tr><td><br />Department Number &nbsp &nbsp &nbsp </td><td><br /><input type=\"text\" name=\"id\"/ required ></td></tr>");
1030 | 	echo("<tr><td><br />Location &nbsp &nbsp &nbsp </td><td><br /><input type=\"text\" name=\"loc\"/required ></td></tr>");
1031 | 	echo("<tr><td style=\"border-bottom: #FFFFFF\"><input type=\"submit\" name=\"commit\" value=\"Submit\" style=\"height:25px\" title=\"Click here to submit\"></td></tr>");
1032 | 	echo("</table></form>");
1033 | 	
1034 | 	if((!empty($_POST["nm"]))&&(!empty($_POST["id"]))&&(!empty($_POST["loc"])))
1035 | 	{
1036 | 		$n=$_POST["nm"];
1037 | 		$i=$_POST["id"];
1038 | 		$l=$_POST["loc"];
1039 | 		$result=mysql_query("select * from departments where Dept_No='$i';");
1040 | 		if(mysql_num_rows($result)==0)
1041 | 		{
1042 | 			mysql_query("insert into Departments values (\"$n\",\"$l\",\"$i\",0);");
1043 | 			header('Location: login.php?pid=view_dept');
1044 | 		}
1045 | 		else
1046 | 		echo ("<b><font color=\"RED\" SIZE=\"4\">*Department No. already exists*</font></b>");
1047 | 	}	
1048 | }
1049 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"mod_dept")==0)))
1050 | {
1051 | 	if(isset($_GET['option'])&&(strcmp($_GET['option'],"mod_insert")==0))
1052 | 	{
1053 | 		$id=$_GET['id'];
1054 | 		$name=$_POST['name'];
1055 | 		$loc=$_POST['loc'];
1056 | 		mysql_query("update Departments SET Name=\"$name\", Location=\"$loc\" where Dept_No=\"$id\";");
1057 | 		header('Location: ?pid=view_dept');
1058 | 	}
1059 | 	else if(isset($_GET['option'])&&(strcmp($_GET['option'],"mod_form")==0))
1060 | 	{
1061 | 		$id=$_POST['id'];
1062 | 		if(isset($id))
1063 | 		{
1064 | 			$result=mysql_query("select * from departments where Dept_No='$id'; ");
1065 | 			if(isset($result)&&(mysql_num_rows($result)!=0	))
1066 | 			{
1067 | 				$row=mysql_fetch_array($result);
1068 | 				$name=$row['Name'];
1069 | 				$loc=$row['Location'];
1070 | 				echo("<h2 align=\"centre\"><u> Modify Department</u></h1>");
1071 | 				echo $id;
1072 | 				echo("<form align=\"centre\" action=\"login.php?pid=mod_dept&option=mod_insert&id=$id\" method =\"post\">");
1073 | 				//echo("<table><tr><td><br />Name &nbsp &nbsp &nbsp </td><td><br /><input type=\"text\" size=40 name=\"name\" value=\"$name\"/ required ></td></tr>");
1074 | 				echo ("<table><tr><td>Name:</td><td><input name=\"name\" type=\"text\" size=40 value=\"$name\"></td></tr>");
1075 | 				echo("<tr><td><br />Location &nbsp &nbsp &nbsp </td><td><br /><input type=\"text\" size=40 name=\"loc\"value=\"$loc\"/required ></td></tr>");
1076 | 				echo("<tr><td style=\"border-bottom: #FFFFFF\"><input type=\"submit\" name=\"commit\" value=\"Modify\" style=\"height:25px\" title=\"Click here to submit\"></td></tr>");
1077 | 				echo("</table></form>");
1078 | 			}
1079 | 			else
1080 | 			{
1081 | 			echo ("<h4><font color=\"RED\" SIZE=\"4\">*Invalid Department No.*</font></h4>");
1082 | 			echo ("<h5><a href=\"login.php?pid=mod_dept\">Go Back</h5>");
1083 | 			}
1084 | 		}
1085 | 	}
1086 | 	else
1087 | 	{
1088 | 	echo "<br/><table border=0 cellpadding=2 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=mod_dept&option=mod_form\" method=\"post\">";
1089 | 	echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"id\" type=\"text\" size=50 placeholder=\"Enter Department No.\" required/></td>";
1090 | 	echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"submit\" name=\"commit\" value=\"submit\"title=\"Click here to modify\"></td></tr>";
1091 | 	echo "</form></table>";
1092 | 	}
1093 | }
1094 | else if(isset($_GET['pid'])&&(strcmp($_GET['pid'],"allot_room")==0))
1095 | {	
1096 | 	echo("<h2 align=\"centre\"><u> Room Allotment </u></h1>");
1097 | 	echo("<form align=\"centre\" #action=\"#\" method =\"post\">");
1098 | 	echo("<table><tr><td><h4>Room Type:</h4></td><td><select name=\"type\"><option value=\"GEN\">General</option><option value=\"PRI\">Private</option><option value=\"ICU\">ICU</option></select></td></tr>");
1099 | 	echo("<tr><td><h4>Patient ID:</h4></td><td><input type=\"text\" name=\"id\"/required ></td></tr>");
1100 | 	echo("<tr><td><h4>Allotment(Today's)Date:</h4></td><td><input type=\"date\" name=\"date\"/ placeholder=\"yyyy-mm-dd\"required ></td></tr>");
1101 | 	echo("<tr><td style=\"border-bottom: #FFFFFF\"><input type=\"submit\" name=\"commit\" value=\"Submit\" style=\"height:25px\" title=\"Click here to submit\"></td></tr>");
1102 | 	echo("</table></form>");
1103 | 	if((!empty($_POST["type"]))&&(!empty($_POST["id"]))&&(!empty($_POST["date"])))
1104 | 	{
1105 | 	$type=$_POST["type"];
1106 | 	$id=$_POST["id"];
1107 | 	$date=$_POST["date"];
1108 | 	$res1=mysql_query("select * from patients where Patient_ID='$id';");
1109 | 	if(mysql_num_rows($res1)==0)
1110 | 	{
1111 | 		echo "<script type=\"text/javascript\">alert(\"Invalid Patient ID\")</script>";
1112 | 	}
1113 | 	else
1114 | 	{
1115 | 	$res2=mysql_query("select * from room where ((type='$type') and (patient_id is null));");
1116 | 	if(mysql_num_rows($res2)!=0)
1117 | 	{
1118 | 		$row=mysql_fetch_array($res2);
1119 | 		$r_no=$row['Room_No'];
1120 | 		mysql_query("insert into room_given values (\"$r_no\",\"$id\",'$date',null);");
1121 | 		mysql_query("update room SET Patient_ID=\"$id\" where Room_No=\"$r_no\";");
1122 | 		//if(mysql_affected_rows()!=0)
1123 | 		echo("Alloted Succesfully <br/> Room No.= ");
1124 | 		echo($r_no);
1125 | 	}
1126 | 	else
1127 | 		echo "<script type=\"text/javascript\">alert(\"No Vacancy\")</script>";
1128 | 	}
1129 | 	}
1130 | }
1131 | else if(isset($_GET['pid'])&&(strcmp($_GET['pid'],"allot_vehicle")==0))
1132 | {	
1133 | 	echo("<h2 align=\"centre\"><u> Vehicle Allotment to Patients </u></h1>");
1134 | 	echo("<form align=\"centre\" #action=\"#\" method =\"post\">");
1135 | 	echo("<table><tr><td><h4>Vehicle Type:</h4></td><td><select name=\"type\"><option value=\"Ambulance\">Ambulance</option><option value=\"Taxi\">Taxi</option></select></td></tr>");
1136 | 	echo("<tr><td><h4>Patient ID:</h4></td><td><input type=\"text\" name=\"id\"/required ></td></tr>");
1137 | 	echo("<tr><td><h4>Allotment(Today's)Date:</h4></td><td><input type=\"date\" name=\"date\"/ placeholder=\"YYYY-MM-DD\"required ></td></tr>");
1138 | 	echo("<tr><td style=\"border-bottom: #FFFFFF\"><input type=\"submit\" name=\"commit\" value=\"Submit\" style=\"height:25px\" title=\"Click here to submit\"></td></tr>");
1139 | 	echo("</table></form>");
1140 | 	if((!empty($_POST["type"]))&&(!empty($_POST["id"]))&&(!empty($_POST["date"])))
1141 | 	{
1142 | 	$type=$_POST["type"];
1143 | 	$id=$_POST["id"];
1144 | 	$date=$_POST["date"];
1145 | 	$res1=mysql_query("select * from patients where Patient_ID='$id';");
1146 | 	if(mysql_num_rows($res1)==0)
1147 | 	echo "<script type=\"text/javascript\">alert(\"Invalid Patient ID\")</script>";
1148 | 	else
1149 | 	{
1150 | 	$res3=mysql_query("select * from vehicle_given where id='$id' and return_date is null;");
1151 | 	if(mysql_num_rows($res3)!=0)
1152 | 	echo "<script type=\"text/javascript\">alert(\"Patient already has a vehicle issued !!! Return former to reissue.\")</script>";		
1153 | 	else
1154 | 	{
1155 | 	$res2=mysql_query("select * from vehicles where ((type='$type') and id is null);");
1156 | 	if(mysql_num_rows($res2)!=0)
1157 | 	{
1158 | 		$row=mysql_fetch_array($res2);
1159 | 		$reg_no=$row['Reg_No'];
1160 | 		mysql_query("insert into vehicle_given values (\"$reg_no\",\"$id\",'$date',null);");
1161 | 		mysql_query("update vehicles SET id=$id where Reg_No=\"$reg_no\";");
1162 | 		echo("Alloted Succesfully <br/> Vehicle Reg No.= ");
1163 | 		echo($reg_no);
1164 | 	}
1165 | 	else
1166 | 		echo "<script type=\"text/javascript\">alert(\"No Free Vehicle.\")</script>";
1167 | 	}
1168 | 	}
1169 | 	}
1170 | }
1171 | else if(isset($_GET['pid'])&&(strcmp($_GET['pid'],"allot_ms")==0))
1172 | {
1173 | 	echo("<h2 align=\"centre\"><u> Assign Medical Duty for a Room </u></h1>");
1174 | 	echo("<form align=\"centre\" #action=\"#\" method =\"post\">");
1175 | 	echo("<table><tr><td><h4>Room_No: </h4></td><td><input type=\"text\" size=60 name=\"room\"/ required ></td></tr>");
1176 | 	echo("<tr><td><h4>Medical-Staff ID:</h4></td><td><input type=\"text\" size=60 name=\"id\"/ required ></td></tr>");
1177 | 	echo("<tr><td><h4>Date: </h4></td><td><input type=\"text\" name=\"date\"/ size=60 placeholder=\"YYYY-MM-DD\"required ></td></tr>");
1178 | 	echo("<tr><td><h4>Joining Time: </h4></td><td><input type=\"text\" name=\"jtime\" size=60 placeholder=\"HH:MM:SS\"required ></td></tr>");
1179 | 	echo("<tr><td><h4>Leave Time: </h4></td><td><input type=\"text\" name=\"ltime\" size=60 placeholder=\"HH:MM:SS\"required ></td></tr>");
1180 | 	echo("<tr><td style=\"border-bottom: #FFFFFF\"><input type=\"submit\" name=\"commit\" value=\"Submit\" style=\"height:25px\" title=\"Click here to submit\"></td></tr>");
1181 | 	echo("</table></form>");
1182 | 	if((!empty($_POST["room"]))&&(!empty($_POST["id"]))&&(!empty($_POST["date"]))&&(!empty($_POST["jtime"]))&&(!empty($_POST["ltime"])))
1183 | 	{
1184 | 		$room=$_POST["room"];
1185 | 		$id=$_POST["id"];
1186 | 		$date=$_POST["date"];
1187 | 		$jtime=$_POST['jtime'];
1188 | 		$ltime=$_POST['ltime'];
1189 | 		$res1=mysql_query("select * from employee where Employee_ID='$id';");
1190 | 		$res2=mysql_query("select * from room where Room_No='$room';");
1191 | 		if((mysql_num_rows($res1)==0)||(mysql_num_rows($res2)==0))
1192 | 		{
1193 | 			if(mysql_num_rows($res1)==0)
1194 | 			echo "<script type=\"text/javascript\">alert(\"Invalid Employee ID\")</script>";
1195 | 			else
1196 | 			echo "<script type=\"text/javascript\">alert(\"Invalid Room Number\")</script>";
1197 | 		}
1198 | 		else if((strcmp($id[0],'M')!=0)&&(strcmp($id[1],'S')==0))
1199 | 		echo "<script type=\"text/javascript\">alert(\"Employee should be a Medical Staff NOT Doctor\")</script>";
1200 | 		else if(strcmp($jtime,$ltime)>0)
1201 | 		echo "<script type=\"text/javascript\">alert(\"Leaving Time should be after joining Time\")</script>";
1202 | 		else
1203 | 		{
1204 | 			if((strcmp($id[0],'M')!=0)&&(strcmp($id[1],'S')!=0))
1205 | 			{
1206 | 				$res1=mysql_query("select * from room where Room_No='$room' and Patient_ID is null;");
1207 | 				if(mysql_num_rows($res1)!=0)
1208 | 					echo "<script type=\"text/javascript\">alert(\"No Patient In Room !!! Doctor can't be assigned\")</script>";
1209 | 				else
1210 | 				{
1211 | 					//if(isset($res1))
1212 | 					$res2=mysql_query("select * from room where Room_No='$room';");
1213 | 					$row1=mysql_fetch_array($res2);
1214 | 					$patient=$row1['Patient_ID'];
1215 | 					$res=mysql_query("select * from doctors where employee_id='$id';");
1216 | 					$row=mysql_fetch_array($res);
1217 | 					$batch=$row['Batch_No'];
1218 | 					//echo "batch_no=".$batch;
1219 | 					//echo "patient_id=".$patient;
1220 | 					mysql_query("insert into attended_by values('$patient','$batch','$date');");
1221 | 					mysql_query("insert into governed_by values(\"$id\",\"$room\",'$date','$jtime','$ltime');");
1222 | 					echo "<script type=\"text/javascript\">alert(\"Entry added\")</script>";
1223 | 				}
1224 | 			}
1225 | 			else
1226 | 			{
1227 | 			mysql_query("insert into governed_by values(\"$id\",\"$room\",'$date','$jtime','$ltime');");
1228 | 			echo "<script type=\"text/javascript\">alert(\"Entry added\")</script>";
1229 | 			}
1230 | 		}
1231 | 
1232 | 	}
1233 | }
1234 | else if(isset($_GET['pid'])&&(strcmp($_GET['pid'],"view_ms")==0))
1235 | {
1236 | 	echo "<br/><table border=2cellpadding=0 cellspacing=0 height=10 style=\"\"><form action=\"login.php?pid=view_ms&option=room_id\" method=\"post\">";
1237 | 	echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"room\" type=\"text\" size=50 placeholder=\"Enter Room No. \" required></td>";
1238 | 	echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"submit\" name=\"commit\" value=\"Enter\" style=\"height:30px\" title=\"Click here to delete\"></td></tr>";
1239 | 	echo "</form></table>";
1240 | 	if(isset($_GET['option'])&&strcmp($_GET['option'],"room_id")==0)
1241 | 	{
1242 | 		//echo "coming";
1243 | 		if(!empty($_POST['room']))
1244 | 		$room=$_POST['room'];
1245 | 		//echo "room=".$room;
1246 | 		$res=mysql_query("select * from governed_by where Room_No='$room';");
1247 | 		if(mysql_num_rows($res)!=0)
1248 | 		{
1249 | 		echo("<br/><table border=1 cellpadding=0 cellspacing=0 height=10 align='centre'><tr><th>&nbsp&nbspEmployee ID&nbsp&nbsp</th><th>&nbsp&nbspRoom No.&nbsp&nbsp</th><th>&nbsp&nbspDate&nbsp&nbsp</th><th>&nbsp&nbspJoining Time&nbsp&nbsp</th><th>&nbsp&nbspLeaving Time&nbsp&nbsp</th></tr>");
1250 | 		for($i=0;$i<mysql_num_rows($res);$i=$i+1)
1251 | 		{
1252 | 		$row=mysql_fetch_array($res);
1253 | 		$emp=$row['Employee_ID'];
1254 | 		$room=$row['Room_No'];
1255 | 		$date=$row['Date'];
1256 | 		$jtime=$row['Join_Time'];
1257 | 		$ltime=$row['Leave_Time'];
1258 | 		echo("<tr><td>$emp</td><td>$room</td><td>$date</td><td>$jtime</td><td>$ltime</td></tr>");
1259 | 		}
1260 | 		echo("</table>");
1261 | 		}
1262 | 		else
1263 | 		echo "<script type=\"text/javascript\">alert(\"No Allotments to. \")</script>";
1264 | 	}
1265 | }
1266 | else if(isset($_GET['pid'])&&(strcmp($_GET['pid'],"allot_doc")==0))
1267 | {
1268 | 	echo("<h2 align=\"centre\"><u> Assign Doctor to Patient </u></h1>");
1269 | 	echo("<form align=\"centre\" #action=\"#\" method =\"post\">");
1270 | 	echo("<table><tr><td><h4>Patient ID: </h4></td><td><input type=\"text\" size=60 name=\"pid\"/ required ></td></tr>");
1271 | 	echo("<tr><td><h4>Doctor-ID:</h4></td><td><input type=\"text\" size=60 name=\"eid\"/ required ></td></tr>");
1272 | 	echo("<tr><td><h4>Date: </h4></td><td><input type=\"text\" name=\"date\"/ size=60 placeholder=\"YYYY-MM-DD\"required ></td></tr>");
1273 | 	echo("<tr><td style=\"border-bottom: #FFFFFF\"><input type=\"submit\" name=\"commit\" value=\"Assign\" style=\"height:25px\" title=\"Click here to submit\"></td></tr>");
1274 | 	echo("</table></form>");
1275 | 	if((!empty($_POST["pid"]))&&(!empty($_POST["eid"]))&&(!empty($_POST["date"])))
1276 | 	{
1277 | 		$pid=$_POST["pid"];
1278 | 		$eid=$_POST["eid"];
1279 | 		$date=$_POST["date"];
1280 | 		$pres=mysql_query("select * from patients where Patient_ID='$pid';");
1281 | 		$dres=mysql_query("select * from doctors where Employee_ID='$eid';");
1282 | 		$row=mysql_fetch_array($dres);
1283 | 		if(mysql_num_rows($pres)==0)
1284 | 		echo "<script type=\"text/javascript\">alert(\"Invalid Patient ID\")</script>";
1285 | 		else if(mysql_num_rows($dres)==0)
1286 | 		echo "<script type=\"text/javascript\">alert(\"Invalid Doctor ID\")</script>";
1287 | 		else
1288 | 		{
1289 | 		$batch=$row['Batch_No'];
1290 | 		mysql_query("insert into attended_by values('$pid','$batch','$date');");
1291 | 		if(mysql_affected_rows()==1)
1292 | 		echo "<script type=\"text/javascript\">alert(\"Successfully Assigned\")</script>";
1293 | 		}
1294 | 	}
1295 | }
1296 | else if(isset($_GET['pid'])&&(strcmp($_GET['pid'],"unallot_room")==0))
1297 | {
1298 | 	echo("<h2 align=\"centre\"><u> Room Un-Allotment </u></h1>");
1299 | 	echo("<form align=\"centre\" #action=\"#\" method =\"post\">");
1300 | 	echo("<table><tr><td><h4>Room Number:</h4></td><td><input type=\"text\" name=\"room\"/required ></td></tr>");
1301 | 	echo("<table><tr><td><h4>Discharge Date:</h4></td><td><input type=\"text\" name=\"date\" placeholder=\"YYYY-MM-DD\" required ></td></tr>");
1302 | 	echo("<tr><td style=\"border-bottom: #FFFFFF\"><input type=\"submit\" name=\"commit\" value=\"Unallot\" style=\"height:25px\" title=\"Click here to submit\"></td></tr>");
1303 | 	echo("</table></form>");
1304 | 	if((!empty($_POST["room"]))&&(!empty($_POST["date"])))
1305 | 	{
1306 | 	$room=$_POST["room"];
1307 | 	//echo $room;
1308 | 	$date=$_POST["date"];
1309 | 	$res=mysql_query("select * from room_given where Room_No='$room' and Discharge_Date is null;");
1310 | 	$row=mysql_fetch_array($res);
1311 | 	$allot_date=$row['Allot_date'];
1312 | 	if(mysql_num_rows($res)==0)
1313 | 	echo "<script type=\"text/javascript\">alert(\"Can't Unallot !! \\nEntered room is invalid or currently vacant\")</script>";
1314 | 	else if(strcmp($allot_date,$date)>0)
1315 | 	echo "<script type=\"text/javascript\">alert(\"Entered Return Date is invalid !! It must be after allotment date\")</script>";
1316 | 	else
1317 | 	{
1318 | 	mysql_query("update room set patient_id=null where Room_No='$room';");
1319 | 	mysql_query("update room_given set discharge_date='$date' where Room_No='$room' and discharge_date is null;");
1320 | 	if(mysql_affected_rows()==1)
1321 | 	echo "<script type=\"text/javascript\">alert(\"Patient Discharged from room\")</script>";
1322 | 	}
1323 | 	}
1324 | }
1325 | else if(isset($_GET['pid'])&&(strcmp($_GET['pid'],"unallot_vehicle")==0))
1326 | {
1327 | 	echo("<h2 align=\"centre\"><u> Vehicle Un-Allotment </u></h1>");
1328 | 	echo("<form align=\"centre\" #action=\"#\" method =\"post\">");
1329 | 	echo("<table><tr><td><h4>Registration Number:</h4></td><td><input type=\"text\" name=\"reg\"/required ></td></tr>");
1330 | 	echo("<table><tr><td><h4>Returning Date:&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp</h4></td><td><input type=\"text\" name=\"date\" placeholder=\"YYYY-MM-DD\" required ></td></tr>");
1331 | 	echo("<tr><td style=\"border-bottom: #FFFFFF\"><input type=\"submit\" name=\"commit\" value=\"Unallot\" style=\"height:25px\" title=\"Click here to submit\"></td></tr>");
1332 | 	echo("</table></form>");
1333 | 	if((!empty($_POST["reg"]))&&(!empty($_POST["date"])))
1334 | 	{
1335 | 	$reg=$_POST["reg"];
1336 | 	//echo $room;
1337 | 	$date=$_POST["date"];
1338 | 	$res=mysql_query("select * from vehicle_given where Reg_No='$reg' and Return_Date is null;");
1339 | 	$row=mysql_fetch_array($res);
1340 | 	$allot_date=$row['Allot_date'];
1341 | 	if(mysql_num_rows($res)==0)
1342 | 	echo "<script type=\"text/javascript\">alert(\"Can't Unallot !! \\n Entered vehicle is invalid or currently unalloted to anyone\")</script>";
1343 | 	else if(strcmp($allot_date,$date)>0)
1344 | 	echo "<script type=\"text/javascript\">alert(\"Entered Return Date is invalid !! It must be after allotment date\")</script>";
1345 | 	else
1346 | 	{
1347 | 	mysql_query("update vehicles set ID=null where Reg_No='$reg';");
1348 | 	mysql_query("update vehicle_given set return_date='$date' where Reg_No='$reg' and return_date is null;");
1349 | 	if(mysql_affected_rows()==1)
1350 | 	echo "<script type=\"text/javascript\">alert(\"vehicle returned !! \")</script>";
1351 | 	}
1352 | 	}
1353 | }
1354 | else if(isset($_GET['pid']) && strcmp($_GET['pid'],"create_report") == 0)
1355 | {
1356 | 	echo "<h1>Add Report Details</h1>";
1357 | 	echo "<form name=\"form\" method=\"post\" action=\"login.php?pid=create_report\">";
1358 | 	echo "<table>";
1359 | 	/*echo "<tr>";
1360 | 	echo "<td><p>Date :&nbsp &nbsp &nbsp &nbsp &nbsp &nbsp<input  placeholder=\"yyyy-mm-dd\" type=\"text\" name=\"date\" size=\"15\" maxlength=\"15\" required/></p></td>";
1361 | 	echo "</tr>";*/
1362 | 	echo "<tr>";
1363 | 	echo "<td><p>Patient ID: <input type=\"text\" name=\"PID\" size=\"15\" maxlength=\"15\" required/></p>";
1364 | 	echo "</tr>";
1365 | 	echo "<tr><td>Dept No.</td><td><select name=\"dept_no\">";
1366 | 	$result=mysql_query("select * from departments");
1367 | 	for($i=0;$i<mysql_num_rows($result);$i=$i+1)
1368 | 	{
1369 | 		$row=mysql_fetch_array($result);
1370 | 		$dept=$row['Dept_No'];
1371 | 		echo "<option>$dept</option>";
1372 | 	}
1373 | 	echo "</select></td></tr><tr>";
1374 | 	echo "<td><p align=\"center\"><input type=\"submit\" name=\"submit\" value=\"Enter\" /></p>";
1375 | 	echo "</tr>";
1376 | 	echo "</form>";
1377 | 	if(isset($_POST['PID'])&&isset($_POST['dept_no']))
1378 | 	{
1379 | 		//$date=$_POST['date'];
1380 | 		$sel=mysql_query("SELECT curdate() date");
1381 | 		$date=mysql_fetch_array($sel);
1382 | 		$date=$date['date'];
1383 | 		$cal=mysql_query("SELECT max(Report_No) R FROM medical_report");
1384 | 		$row=mysql_fetch_array($cal);
1385 | 		$val=$row['R'];
1386 | 		$r_num="R".(substr($val,1)+1);
1387 | 		$pid=$_POST['PID'];
1388 | 		$dept_no=$_POST['dept_no'];
1389 | 		$check = mysql_query("SELECT * FROM patients where Patient_ID='$pid'");
1390 | 		//$check1 = mysql_query("SELECT * FROM medical_report where Patient_ID='$pid'");
1391 | 		$row=mysql_num_rows($check);
1392 | 		//$row1=mysql_num_rows($check1);
1393 | 		if($row>0)
1394 | 		{
1395 | 			$query = "INSERT INTO medical_report SET Patient_ID='$pid', Report_No='$r_num', R_date='$date'";
1396 | 			
1397 | 			$add=mysql_query($query);
1398 | 			$query1 = "INSERT INTO give_details SET Department_No='$dept_no', Report_No='$r_num'";
1399 | 			$add1=mysql_query($query1);
1400 | 			echo "<script type=\"text/javascript\">alert(\"Report No. $r_num has been added.\")</script>";
1401 | 			
1402 | 		}
1403 | 		else
1404 | 			echo "<script type=\"text/javascript\">alert(\"Invalid Patient ID.\")</script>";
1405 | 	}	
1406 | }
1407 | else if(isset($_GET['pid']) && strcmp($_GET['pid'],"mod_report") == 0)
1408 | {
1409 | 	echo "<h1>Add Report Details</h1>";
1410 | 	echo "<form name=\"form\" method=\"post\" action=\"login.php?pid=mod_report\">";
1411 | 	echo "<table>";
1412 | 	echo "<tr>";
1413 | 	echo "<td><p>Report No.: <input type=\"text\" name=\"R_num\" size=\"15\" maxlength=\"15\" required/></p>";
1414 | 	echo "</tr>";
1415 | 	echo "<tr><td><p>Dept number: <select name=\"dept\">";
1416 | 	$result=mysql_query("select * from departments");
1417 | 	for($i=0;$i<mysql_num_rows($result);$i=$i+1)
1418 | 	{
1419 | 		$row=mysql_fetch_array($result);
1420 | 		$dept=$row['Dept_No'];
1421 | 		echo "<option>$dept</option>";
1422 | 	}
1423 | 	echo "</p></td></tr>";
1424 | 	echo "<tr>";
1425 | 	echo "<td><p>Room No.: <input type=\"text\" name=\"Room_num\" size=\"15\" maxlength=\"15\" /></p>";
1426 | 	echo "</tr>";
1427 | 	echo "<tr>";
1428 | 	echo "<td><p>Diet:&nbsp &nbsp &nbsp &nbsp &nbsp <textarea type=\"text\" name=\"Diet\" rows=\"3\" cols=\"30\" maxlength=\"200\"></textarea></p>";
1429 | 	echo "</tr>";
1430 | 	echo "<tr>";
1431 | 	echo "<td><p align=\"center\"><input type=\"submit\" name=\"submit\" value=\"Enter\" /></p>";
1432 | 	echo "</tr>";
1433 | 	echo "</form>";
1434 | 	if(isset($_POST['R_num']))
1435 | 	{
1436 | 		$rnum=$_POST['R_num'];
1437 | 		$dept=$_POST['dept'];
1438 | 		$roomnum=$_POST['Room_num'];
1439 | 		$diet=$_POST['Diet'];
1440 | 		//echo $rnum;
1441 | 		$check=mysql_query("SELECT * FROM give_details where Report_No='$rnum'");
1442 | 		if(mysql_num_rows($check)!=0)
1443 | 		{
1444 | 			mysql_query("UPDATE give_details SET Department_No='$dept' where Report_No='$rnum'");
1445 | 			if(isset($roomnum)||isset($diet))
1446 | 			{
1447 | 				if(!strcmp($roomnum,"")&&!strcmp($diet,""))
1448 | 				$query = "UPDATE medical_report SET Room_No='$roomnum',Diet='$diet' where Report_No='$rnum'";
1449 | 				else if(!strcmp($diet,""))
1450 | 				$query = "UPDATE medical_report SET Room_No='$roomnum' where Report_No='$rnum'";
1451 | 				else if(!strcmp($roomnum,""))
1452 | 				{
1453 | 					$query = "UPDATE medical_report SET Diet='$diet' where Report_No='$rnum'";
1454 | 					//echo $query;
1455 | 				}
1456 | 				$add=mysql_query($query);
1457 | 				//echo mysql_affected_rows();
1458 | 				echo "<script type=\"text/javascript\">alert(\"Data Updated.\")</script>";
1459 | 			}
1460 | 		}
1461 | 		else
1462 | 			echo "<script type=\"text/javascript\">alert(\"Report Number Not Found.\")</script>";
1463 | 	}	
1464 | }
1465 | else if(isset($_GET['pid']) && strcmp($_GET['pid'],"add_date") == 0)
1466 | {
1467 | 	echo "<h1>Add Closing Date</h1>";
1468 | 	echo "<form name=\"form\" method=\"post\" action=\"login.php?pid=add_date\">";
1469 | 	echo "<table>";
1470 | 	echo "<tr>";
1471 | 	echo "<td><p>Report No. :&nbsp &nbsp &nbsp &nbsp<input type=\"text\" name=\"num\" size=\"15\" maxlength=\"10\" required/></p></td>";
1472 | 	echo "</tr>";
1473 | 	echo "<tr>";
1474 | 	echo "<td><p>Closing Date :&nbsp &nbsp &nbsp<input placeholder=\"yyyy-mm-dd\" type=\"text\" name=\"date\" size=\"15\" maxlength=\"15\" required/></p></td>";
1475 | 	echo "</tr>";
1476 | 	echo "<tr>";
1477 | 	echo "<td><p align=\"center\" ><input type=\"submit\" name=\"submit\" value=\"Enter\" /></p>";
1478 | 	echo "</tr>";
1479 | 	echo "</form>";
1480 | 	if(isset($_POST['date'])&&isset($_POST['num']))
1481 | 	{
1482 | 		$date=$_POST['date'];
1483 | 		$rnum=$_POST['num'];
1484 | 		$result=mysql_query("SELECT * FROM medical_report where Report_No='$rnum'");
1485 | 		$row=mysql_fetch_array($result);
1486 | 		$rdate=$row['R_date'];
1487 | 		if(strcmp($rdate,$date)>0)
1488 | 			echo "<script type=\"text/javascript\">alert(\"Invalid Date.\")</script>";
1489 | 		else
1490 | 		{
1491 | 			$query = "UPDATE medical_report SET C_date='$date' where Report_No='$rnum'";
1492 | 			$add=mysql_query($query);
1493 | 			if(mysql_affected_rows()==0)
1494 | 				echo "<script type=\"text/javascript\">alert(\"Report Not Found.\")</script>";
1495 | 			else
1496 | 				echo "<script type=\"text/javascript\">alert(\"Data Updated.\")</script>";
1497 | 		}
1498 | 	}	
1499 | }	
1500 | else if(isset($_GET['option'])&&isset($_GET['pid'])&&((strcmp($_GET['pid'],"view_report")==0))&&((strcmp($_GET['option'],"search_tools")==0)))
1501 | {
1502 | 	echo "<table border=0 cellpadding=2 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=view_report&option=search_val\" method=\"post\">";
1503 | 	echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_patient\" type=\"text\" size=50 placeholder=\"Search by Report-ID.\"></td>";
1504 | 	echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\" title=\"Click here to start searching\"></td></tr>";	
1505 | 	echo "<div style=\"width:900px;\">";
1506 | 	echo "<br/><table border=0 cellpadding=4 cellspacing=1 height=5>";
1507 | 	echo "<tr><td><b>Filters: </b></td><td style=\"border-bottom: #FFFFFF\"><input name=\"id\" type=\"text\" size=10 placeholder=\"Patient-ID\"></td><td style=\"border-bottom: #FFFFFF\"><input name=\"date\" type=\"text\" size=10 placeholder=\"Report Date\"></td><td style=\"border-bottom: #FFFFFF\"><input name=\"allot_date\" type=\"text\" size=13 placeholder=\"Allotment Date\"></td><td style=\"border-bottom: #FFFFFF\"><input name=\"dis_date\" type=\"text\" size=13 placeholder=\"Discharge Date\"></td><td style=\"border-bottom: #FFFFFF\">";
1508 | 	echo "</div>";
1509 | 	echo "</form></table>";
1510 | 	
1511 | }
1512 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"view_report")==0)||(strcmp($_GET['pid'],"patient_report")==0)))
1513 | {
1514 | 	echo "<br/><table border=0 cellpadding=2 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=view_report&option=search_val\" method=\"post\">";
1515 | 	echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_report\" type=\"text\" size=50 placeholder=\"Search by Report-ID.\"></td>";
1516 | 	echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\" title=\"Click here to start searching\"></td></tr>";	
1517 | 	echo "</form></table>";
1518 | 	if((strcmp($_GET['pid'],"patient_report")==0))
1519 | 	{
1520 | 		$searchby=$_GET['id'];
1521 | 		$result=mysql_query("select * from medical_report where Report_No='$searchby'");
1522 | 		echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
1523 | 		$row=mysql_fetch_array($result);
1524 | 		$num=$row['Report_No'];
1525 | 		$id=$row['Patient_ID'];
1526 | 		$result2=mysql_query("select * from patients where Patient_ID='$id'");
1527 | 		$result4=mysql_query("select * from diagnosis where Report_No='$num'");
1528 | 		$dept=mysql_query("select * from departments d,give_details g where g.Report_No='$num' and g.Department_No=d.Dept_No");
1529 | 		$deptrow=mysql_fetch_array($dept);
1530 | 		$deptname=$deptrow['Name'];
1531 | 		$row2=mysql_fetch_array($result2);
1532 | 		//$dept=$row['Dept_No'];
1533 | 		$name=$row2['Name'];
1534 | 		$dob=$row2['DOB'];
1535 | 		$gender=$row2['Gender'];
1536 | 		$bg=$row2['Blood_Group'];
1537 | 		$date=$row['R_date'];
1538 | 		$cdate=$row['C_date'];
1539 | 		$room=$row['Room_No'];
1540 | 		$result3=mysql_query("select * from room where Room_No='$room'");
1541 | 		$row3=mysql_fetch_array($result3);
1542 | 		$result5=mysql_query("select * from Room_Given where Patient_ID='$id'");
1543 | 		$row5=mysql_fetch_array($result5);
1544 | 		$allotdate=$row5['Allot_date'];
1545 | 		$disdate=$row5['Discharge_date'];
1546 | 		$roomtype=$row3['Type'];
1547 | 		$diet=$row['Diet'];
1548 | 		//$pay=$row['Payment'];
1549 | 		
1550 | 		$cost1=mysql_query("select b.Rent from medical_report a, room b where a.Patient_ID=b.Patient_ID and Report_No='$num'");
1551 | 		$costrow1=mysql_fetch_array($cost1);
1552 | 		$days=mysql_query("select DATEDIFF('$disdate','$allotdate') as day;");
1553 | 		$dayrow=mysql_fetch_array($days);
1554 | 		$days=$dayrow['day'];
1555 | 		if($days==0)
1556 | 		{
1557 | 			$days=1;
1558 | 		}
1559 | 		$room_cost=$costrow1['Rent']*$days;
1560 | 		
1561 | 		$cost1=mysql_query("select b.Rent from medical_report a, vehicles b where a.Patient_ID=b.ID and Report_No='$num'");
1562 | 		$costrow1=mysql_fetch_array($cost1);
1563 | 		$days1=mysql_query("select b.Allot_date,b.Return_date from medical_report a,vehicle_given b where a.Patient_ID=b.ID and Report_No='$num'");
1564 | 		$days=mysql_fetch_array($days1);
1565 | 		$days=mysql_query("select datediff('$days[Return_date]','$days[Allot_date]') as day;");
1566 | 		$dayrow=mysql_fetch_array($days);
1567 | 		$days=$dayrow['day'];
1568 | 		if($days==0)
1569 | 		{
1570 | 			$days=1;
1571 | 		}
1572 | 		$veh_cost=$costrow1['Rent']*$days;
1573 | 		/*echo $room_cost;
1574 | 		echo "<br />";
1575 | 		echo $veh_cost;*/
1576 | 				
1577 | 		
1578 | 		
1579 | 		
1580 | 		echo "<h3>Medical Report</h3>";
1581 | 		echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;border-collapse: collapse;\">";
1582 | 		echo "<tr><td width=5%>Report No: </td><td width=50%>$num</td></tr>";
1583 | 		echo "<tr><td>Date: </td><td>$date</td></tr>";
1584 | 		echo "<tr><td>Patient ID: </td><td>$id</td></tr>";
1585 | 		echo "<tr><td>Patient Name: </td><td>$name</td></tr>";
1586 | 		echo "<tr><td>Date of Birth: </td><td>$dob</td></tr>";
1587 | 		echo "<tr><td>Gender: </td><td>$gender</td></tr>";
1588 | 		echo "<tr><td>Blood Group: </td><td>$bg</td></tr>";
1589 | 		echo "<tr><td>Department: </td><td>$deptname</td></tr>";
1590 | 		echo "<tr><td>Room No.: </td><td>$room</td></tr>";
1591 | 		echo "<tr><td>Room Type: </td><td>$roomtype</td></tr>";
1592 | 		echo "<tr><td>Allotment Date: </td><td>$allotdate</td></tr>";
1593 | 		echo "<tr><td>Discharge Date: </td><td>$disdate</td></tr>";
1594 | 		echo "<tr><td>Diagnosis: </td>";
1595 | 		echo "<td><table border=\"2\">";
1596 | 		echo "<tr><th>Test Date</th><th>Test Name</th><th>Result</th><th>Cost</th></tr>";
1597 | 		$total=$room_cost+$veh_cost;
1598 | 		for($i=0;$i<mysql_num_rows($result4);$i=$i+1)
1599 | 		{
1600 | 			$row4=mysql_fetch_array($result4);
1601 | 			$date=$row4['Test_date'];
1602 | 			$name=$row4['Tests'];
1603 | 			$res=$row4['T_result'];
1604 | 			$cost=$row4['Cost'];
1605 | 			$total=$total+$cost;
1606 | 			echo "<tr><td>$date</td><td>$name</td><td>$res</td><td>$cost</td></tr>";
1607 | 		}
1608 | 		echo "</table>";
1609 | 		echo "<tr><td>Diet: </td><td>$diet</td></tr>";
1610 | 		echo "<tr><td>Payment: </td><td>$total</td></tr>";
1611 | 		echo "<tr><td>Report Closing Date: </td><td>$cdate</td></tr>";
1612 | 		echo "</table></td></tr>";
1613 | 		$flag=1;
1614 | 	}
1615 | 	else if(isset($_GET['option'])&&strcmp($_GET['option'],"search_val")==0)
1616 | 	{
1617 | 		if(!empty($_POST['search_report']))
1618 | 		$searchby=$_POST['search_report'];
1619 | 		else $searchby='%';
1620 | 		if(!empty($_POST['id']))
1621 | 		$searchbyid=$_POST['id'];
1622 | 		if(!empty($_POST['date']))
1623 | 		$searchbydate=$_POST['date'];
1624 | 		if(!empty($_POST['allot_date']))
1625 | 		$searchbyallot=$_POST['allot_date'];
1626 | 		if(!empty($_POST['dis_date']))
1627 | 		$searchbydis=$_POST['dis_date'];
1628 | 		$flag=0;
1629 | 		if(!empty($searchby)&&(($searchby[0]=='R')||($searchby[0]=='r')))
1630 | 		{
1631 | 			$result=mysql_query("select * from medical_report where Report_No='$searchby'");
1632 | 			if(!empty($result) && mysql_num_rows($result)==1)
1633 | 			{
1634 | 				echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
1635 | 				$row=mysql_fetch_array($result);
1636 | 				$num=$row['Report_No'];
1637 | 				$id=$row['Patient_ID'];
1638 | 				$result2=mysql_query("select * from patients where Patient_ID='$id'");
1639 | 				$result4=mysql_query("select * from diagnosis where Report_No='$num'");
1640 | 				$dept=mysql_query("select * from departments d,give_details g where g.Report_No='$num' and g.Department_No=d.Dept_No");
1641 | 				$deptrow=mysql_fetch_array($dept);
1642 | 				$deptname=$deptrow['Name'];
1643 | 				$row2=mysql_fetch_array($result2);
1644 | 				//$dept=$row['Dept_No'];
1645 | 				$name=$row2['Name'];
1646 | 				$dob=$row2['DOB'];
1647 | 				$gender=$row2['Gender'];
1648 | 				$bg=$row2['Blood_Group'];
1649 | 				$date=$row['R_date'];
1650 | 				$cdate=$row['C_date'];
1651 | 				$room=$row['Room_No'];
1652 | 				$result3=mysql_query("select * from room where Room_No='$room'");
1653 | 				$row3=mysql_fetch_array($result3);
1654 | 				$result5=mysql_query("select * from Room_Given where Patient_ID='$id'");
1655 | 				$row5=mysql_fetch_array($result5);
1656 | 				$allotdate=$row5['Allot_date'];
1657 | 				$disdate=$row5['Discharge_date'];
1658 | 				$roomtype=$row3['Type'];
1659 | 				$diet=$row['Diet'];
1660 | 				//$pay=$row['Payment'];
1661 | 				$cost1=mysql_query("select b.Rent from medical_report a, room b where a.Patient_ID=b.Patient_ID and Report_No='$num'");
1662 | 				$costrow1=mysql_fetch_array($cost1);
1663 | 				$days=mysql_query("select DATEDIFF('$disdate','$allotdate') as day;");
1664 | 				$dayrow=mysql_fetch_array($days);
1665 | 				$days=$dayrow['day'];
1666 | 				if($days==0)
1667 | 				{
1668 | 					$days=1;
1669 | 				}
1670 | 				$room_cost=$costrow1['Rent']*$days;
1671 | 				
1672 | 				$cost1=mysql_query("select b.Rent from medical_report a, vehicles b where a.Patient_ID=b.ID and Report_No='$num'");
1673 | 				$costrow1=mysql_fetch_array($cost1);
1674 | 				$days1=mysql_query("select b.Allot_date,b.Return_date from medical_report a,vehicle_given b where a.Patient_ID=b.ID and Report_No='$num'");
1675 | 				$days=mysql_fetch_array($days1);
1676 | 				$days=mysql_query("select datediff('$days[Return_date]','$days[Allot_date]') as day;");
1677 | 				$dayrow=mysql_fetch_array($days);
1678 | 				$days=$dayrow['day'];
1679 | 				if($days==0)
1680 | 				{
1681 | 					$days=1;
1682 | 				}
1683 | 				$veh_cost=$costrow1['Rent']*$days;
1684 | 				/*echo $room_cost;
1685 | 				echo "<br />";
1686 | 				echo $veh_cost;*/
1687 | 				
1688 | 				echo "<h3>Medical Report</h3>";
1689 | 				echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;border-collapse: collapse;\">";
1690 | 				echo "<tr><td width=5%>Report No: </td><td width=50%>$num</td></tr>";
1691 | 				echo "<tr><td>Date: </td><td>$date</td></tr>";
1692 | 				echo "<tr><td>Patient ID: </td><td>$id</td></tr>";
1693 | 				echo "<tr><td>Patient Name: </td><td>$name</td></tr>";
1694 | 				echo "<tr><td>Date of Birth: </td><td>$dob</td></tr>";
1695 | 				echo "<tr><td>Gender: </td><td>$gender</td></tr>";
1696 | 				echo "<tr><td>Blood Group: </td><td>$bg</td></tr>";
1697 | 				echo "<tr><td>Department: </td><td>$deptname</td></tr>";
1698 | 				echo "<tr><td>Room No.: </td><td>$room</td></tr>";
1699 | 				echo "<tr><td>Room Type: </td><td>$roomtype</td></tr>";
1700 | 				echo "<tr><td>Allotment Date: </td><td>$allotdate</td></tr>";
1701 | 				echo "<tr><td>Discharge Date: </td><td>$disdate</td></tr>";
1702 | 				echo "<tr><td>Diagnosis: </td>";
1703 | 				echo "<td><table border=\"2\">";
1704 | 				echo "<tr><th>Test Date</th><th>Test Name</th><th>Result</th><th>Cost</th></tr>";
1705 | 				$total=$room_cost+$veh_cost;
1706 | 				for($i=0;$i<mysql_num_rows($result4);$i=$i+1)
1707 | 				{
1708 | 					$row4=mysql_fetch_array($result4);
1709 | 					$date=$row4['Test_date'];
1710 | 					$name=$row4['Tests'];
1711 | 					$res=$row4['T_result'];
1712 | 					$cost=$row4['Cost'];
1713 | 					$total=$total+$cost;
1714 | 					echo "<tr><td>$date</td><td>$name</td><td>$res</td><td>$cost</td></tr>";
1715 | 				}
1716 | 				echo "</table>";
1717 | 				echo "<tr><td>Diet: </td><td>$diet</td></tr>";
1718 | 				echo "<tr><td>Payment: </td><td>$total</td></tr>";
1719 | 				echo "<tr><td>Report Closing Date: </td><td>$cdate</td></tr>";
1720 | 				echo "</table></td></tr>";
1721 | 				$flag=1;
1722 | 			}
1723 | 			else
1724 | 				echo "<script type=\"text/javascript\">alert(\"Data not found.\")</script>";
1725 | 			
1726 | 		}
1727 | 		else
1728 | 			echo "<script type=\"text/javascript\">alert(\"Invalid Entry.\")</script>";
1729 | 		
1730 | 		
1731 | 	}
1732 | 		
1733 | }
1734 | 
1735 | else if(isset($_GET['pid']) && strcmp($_GET['pid'],"del_report") == 0)
1736 | 	{
1737 | 		echo "<br/><table border=0 cellpadding=1 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=del_report&option=search_val\" method=\"post\">";
1738 | 		echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_val\" type=\"text\" size=50 placeholder=\"Enter Report-No or Patient name, Type to delete\"></td>";
1739 | 		echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\"></td></tr>";
1740 | 		echo "</form></table>"; 		
1741 | 		if(isset($_GET['option']) && strcmp($_GET['option'],"search_val")==0)
1742 | 		{
1743 | 			$search=$_POST['search_val'];
1744 | 			if(isset($search[0])&&($search[0]=='R' || $search[0]=='r'))
1745 | 			{					
1746 | 				$result=mysql_query("select * from medical_report where Report_No='$search'");						
1747 | 				if(mysql_num_rows($result)==1)
1748 | 				{
1749 | 					$query=mysql_query("delete from medical_report where Report_No='$search'");
1750 | 					echo "<script type=\"text/javascript\">alert(\"Medical report deleted.\")</script>";
1751 | 				}					
1752 | 				else
1753 | 				{
1754 | 					echo "<script type=\"text/javascript\">alert(\"Data Not Found.\")</script>";
1755 | 				}
1756 | 			}					
1757 | 			else if(isset($search[0]))
1758 | 			{
1759 | 				$result=mysql_query("select * from patients where Name='$search'");						
1760 | 				if(mysql_num_rows($result)==1)
1761 | 				{
1762 | 					$row=mysql_fetch_array($result);
1763 | 					$id=$row['Patient_ID'];
1764 | 					$query=mysql_query("delete from medical_report where Patient_ID='$id'");
1765 | 					if(mysql_affected_rows()==0)
1766 | 						echo "<script type=\"text/javascript\">alert(\"Data Not Found.\")</script>";
1767 | 					else
1768 | 						echo "<script type=\"text/javascript\">alert(\"Medical Report Deleted.\")</script>";
1769 | 				}					
1770 | 				else if(mysql_num_rows($result)>=1)
1771 | 				{
1772 | 					echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
1773 | 					echo "<div style=\"width:900px; float:left;\">";
1774 | 					echo "<h2 align=\"left\">Click the Patient-ID to delete !!!</h2>";
1775 | 					for($i=0;$i<mysql_num_rows($result);$i=$i+1)
1776 | 					{
1777 | 						$val=mysql_fetch_array($result);
1778 | 						$id=$val['Patient_ID'];
1779 | 						echo "<div style=\"width:900px; float:left;\">";
1780 | 						echo "<h3 align=\"left\"><a href=\"?pid=del_report&id=$id\">$id</a></h3>";
1781 | 						echo "</div>";
1782 | 					}
1783 | 				}
1784 | 						
1785 | 				else
1786 | 				{
1787 | 					echo "<script type=\"text/javascript\">alert(\"Data Not Found.\")</script>";
1788 | 				}
1789 | 					
1790 | 			}
1791 | 			else
1792 | 				echo "<script type=\"text/javascript\">alert(\"Invalid Entry.\")</script>";
1793 | 		}
1794 | 		if(isset($_GET['id']))
1795 | 		{
1796 | 			$search=$_GET['id'];
1797 | 			$query=mysql_query("delete from medical_report where Patient_ID='$search'");
1798 | 			if(mysql_affected_rows()==0)
1799 | 				echo "<script type=\"text/javascript\">alert(\"Data Not Found.\")</script>";
1800 | 			else
1801 | 				echo "<script type=\"text/javascript\">alert(\"Medical Report Deleted.\")</script>";
1802 | 		}	
1803 | 	}
1804 | else if(isset($_GET['pid']) && strcmp($_GET['pid'],"view_test") == 0)
1805 | {
1806 | 	echo "<br/><table border=0 cellpadding=1 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=view_test&option=search_val\" method=\"post\">";
1807 | 	echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_val\" type=\"text\" size=50 placeholder=\"Search by Report Id.\"></td>";
1808 | 	echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\"></td></tr>";
1809 | 	echo "</form></table>";				
1810 | 	if(isset($_GET['option']) && strcmp($_GET['option'],"search_val")==0)
1811 | 	{
1812 | 		$searchby=$_POST['search_val'];	
1813 | 		
1814 | 			if((isset($searchby[0]))&&($searchby[0]=='R' || $searchby[0]=='r'))
1815 | 			{				
1816 | 				$result=mysql_query("select * from diagnosis where Report_No='$searchby'");
1817 | 				if(!empty($result) && mysql_num_rows($result)==1)
1818 | 				{
1819 | 					
1820 | 					echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">"; 
1821 | 					$row=mysql_fetch_array($result);
1822 | 					$date=$row['Test_date'];
1823 | 					$test=$row['Tests'];
1824 | 					$tresult=$row['T_result'];
1825 | 					$cost=$row['Cost'];
1826 | 					$result1=mysql_query("select * from medical_report where Report_No='$searchby'");
1827 | 					$row1=mysql_fetch_array($result1);
1828 | 					$id=$row1['Patient_ID'];
1829 | 					$result2=mysql_query("select * from Patients where Patient_ID='$id'");
1830 | 					$row2=mysql_fetch_array($result2);
1831 | 					$name=$row2['Name'];
1832 | 					echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
1833 | 					echo "<h3>Diagnosis Details</h3>";
1834 | 					echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;border-collapse: collapse;\">";
1835 | 					echo "<tr><td width=5%>Test Date: </td><td width=50%>$date</td></tr>";
1836 | 					echo "<tr><td>Patient ID : </td><td>$id</td></tr>";
1837 | 					echo "<tr><td>Patient Name : </td><td>$name</td></tr>";
1838 | 					echo "<tr><td>Test : </td><td>$test</td></tr>";
1839 | 					echo "<tr><td>Test Result: </td><td>$tresult</td></tr>";
1840 | 					echo "<tr><td>Cost: </td><td>$cost</td></tr>";
1841 | 					echo "</table>";
1842 | 				}
1843 | 				else if(!empty($result) && mysql_num_rows($result) > 1)
1844 | 				{
1845 | 					echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
1846 | 					echo "<div style=\"width:900px; float:left;\">";
1847 | 					for($i=0;$i<mysql_num_rows($result);$i=$i+1)
1848 | 					{
1849 | 						$row=mysql_fetch_array($result);
1850 | 						$name=$row['Tests'];
1851 | 						$date=$row['Test_date'];
1852 | 						$rnum=$row['Report_No'];
1853 | 						echo "<div style=\"width:900px; float:left;\">";
1854 | 						echo "<h3 align=\"left\"><a href=\"?pid=tests_details&test=$name&date=$date&rnum=$rnum\">$name</a></h3>";
1855 | 						echo "<p align=\"left\"><b>Test Date:</b> $date<br/><b>Report No.:</b> $rnum</p>";
1856 | 						echo "</div>";
1857 | 					}
1858 | 					echo "</div>";
1859 | 				}
1860 | 					
1861 | 				else
1862 | 				{
1863 | 					echo "<script type=\"text/javascript\">alert(\"Data Not Found.\")</script>";
1864 | 				}
1865 | 			}
1866 | 		
1867 | 		else
1868 | 			echo "<script type=\"text/javascript\">alert(\"Invalid Entry.\")</script>";
1869 | 	}
1870 | }
1871 | else if(isset($_GET['pid']) && strcmp($_GET['pid'],"tests_details") == 0)
1872 | {
1873 | 	$name=$_GET['test'];
1874 | 	$date=$_GET['date'];
1875 | 	$rnum=$_GET['rnum'];
1876 | 	$result=mysql_query("select * from diagnosis where Report_No='$rnum' and Test_date='$date' and Tests='$name'");
1877 | 	$row=mysql_fetch_array($result);
1878 | 	$tresult=$row['T_result'];
1879 | 	$cost=$row['Cost'];
1880 | 	$result1=mysql_query("select * from medical_report where Report_No='$rnum'");
1881 | 	$row1=mysql_fetch_array($result1);
1882 | 	$id=$row1['Patient_ID'];
1883 | 	$result2=mysql_query("select * from Patients where Patient_ID='$id'");
1884 | 	$row2=mysql_fetch_array($result2);
1885 | 	$pname=$row2['Name'];
1886 | 	echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
1887 | 	echo "<h3>Diagnosis Details</h3>";
1888 | 	echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;border-collapse: collapse;\">";
1889 | 	echo "<tr><td width=5%>Test Date: </td><td width=50%>$date</td></tr>";
1890 | 	echo "<tr><td>Patient ID : </td><td>$id</td></tr>";
1891 | 	echo "<tr><td>Patient Name : </td><td>$pname</td></tr>";
1892 | 	echo "<tr><td>Test : </td><td>$name</td></tr>";
1893 | 	echo "<tr><td>Test Result: </td><td>$tresult</td></tr>";
1894 | 	echo "<tr><td>Cost: </td><td>$cost</td></tr>";
1895 | 	echo "</table>";	
1896 | }	
1897 | else if(isset($_GET['pid']) && strcmp($_GET['pid'],"add_test") == 0)
1898 | {
1899 | 	
1900 | 	echo "<h1>Add Test Details</h1>";
1901 | 	echo "<form name=\"form\" method=\"post\" action=\"login.php?pid=add_test\">";
1902 | 	echo "<table>";
1903 | 	echo "<tr>";
1904 | 	echo "<td><p>Date :&nbsp &nbsp &nbsp &nbsp &nbsp &nbsp<input placeholder=\"yyyy-mm-dd\" type=\"text\" name=\"date\" size=\"15\" maxlength=\"15\" required/></p></td>";
1905 | 	echo "</tr>";
1906 | 	echo "<tr>";
1907 | 	echo "<td><p>Test Name : <select name=\"test\"><option>CT Scan</option><option>Blood Test</option><option>Sugar Test</option><option>Dope Test</option><option>S6ZDMT</option></SELECT></p></td>";
1908 | 	echo "</tr>";
1909 | 	echo "<tr>";
1910 | 	echo "<td><p>Result : &nbsp &nbsp &nbsp <input type=\"text\" name=\"result\" size=\"25\" maxlength=\50\" /></p></td>";
1911 | 	echo "</tr>";
1912 | 	echo "<tr>";
1913 | 	echo "<td><p>Report No.: <input type=\"text\" name=\"R_num\" size=\"15\" maxlength=\"15\" required/></p>";
1914 | 	echo "</tr>";
1915 | 	echo "<tr>";
1916 | 	echo "<td><p>Cost: &nbsp &nbsp &nbsp &nbsp &nbsp &nbsp<input type=\"text\" name=\"cost\" size=\"15\" maxlength=\"15\" required/></p>";
1917 | 	echo "</tr>";
1918 | 	echo "<tr>";
1919 | 	echo "<td><p align=\"center\"><input type=\"submit\" name=\"submit\" value=\"Enter\" /></p>";
1920 | 	echo "</tr>";
1921 | 	echo "</form>";
1922 | 	if(isset($_POST['date'])&&isset($_POST['test'])&&isset($_POST['R_num'])&&isset($_POST['cost']))
1923 | 	{
1924 | 		$date=$_POST['date'];
1925 | 		$name=$_POST['test'];
1926 | 		$result=$_POST['result'];
1927 | 		$r_num=$_POST['R_num'];
1928 | 		$cost=$_POST['cost'];
1929 | 		$check = mysql_query("SELECT * FROM medical_report where Report_No='$r_num'");
1930 | 		$row=mysql_fetch_array($check);
1931 | 		$rdate=$row['R_date'];
1932 | 		if(strcmp($rdate,$date)>0)
1933 | 		{
1934 | 			echo "<script type=\"text/javascript\">alert(\"Invalid Date.\")</script>";
1935 | 		}
1936 | 		else
1937 | 		{
1938 | 			if($row>0)
1939 | 			{
1940 | 				$query = "INSERT INTO diagnosis SET Test_date='$date', Tests='$name', T_result='$result', Report_No='$r_num', Cost='$cost'";
1941 | 				$add=mysql_query($query);
1942 | 				echo "<script type=\"text/javascript\">alert(\"Data Added.\")</script>";
1943 | 				
1944 | 			}
1945 | 			else
1946 | 				echo "<script type=\"text/javascript\">alert(\"Invalid Report Number.\")</script>";
1947 | 		}
1948 | 	}
1949 | }
1950 | else if(isset($_GET['pid']) && strcmp($_GET['pid'],"add_result") == 0)
1951 | {
1952 | 	
1953 | 	echo "<h1>Add Test Result</h1>";
1954 | 	echo "<form name=\"form\" method=\"post\" action=\"login.php?pid=add_result\">";
1955 | 	echo "<table>";
1956 | 	echo "<tr>";
1957 | 	echo "<td><p>Date :&nbsp &nbsp &nbsp &nbsp &nbsp &nbsp<input placeholder=\"yyyy-mm-dd\" type=\"text\" name=\"date\" size=\"15\" maxlength=\"15\" required/></p></td>";
1958 | 	echo "</tr>";
1959 | 	echo "<tr>";
1960 | 	echo "<td><p>Test Name : <select name=\"test\"><option>CT Scan</option><option>Blood Test</option><option>Sugar Test</option><option>Dope Test</option><option>S6ZDMT</option></SELECT></p></td>";
1961 | 	echo "</tr>";
1962 | 	echo "<tr>";
1963 | 	echo "<td><p>Result : &nbsp &nbsp &nbsp <input type=\"text\" name=\"result\" size=\"25\" maxlength=\50\" required/></p></td>";
1964 | 	echo "</tr>";
1965 | 	echo "<tr>";
1966 | 	echo "<td><p>Report No.: <input type=\"text\" name=\"R_num\" size=\"15\" maxlength=\"15\" required/></p>";
1967 | 	echo "</tr>";
1968 | 	echo "<tr>";
1969 | 	echo "<td><p align=\"center\"><input type=\"submit\" name=\"submit\" value=\"Enter\" /></p>";
1970 | 	echo "</tr>";
1971 | 	echo "</form>";
1972 | 	if(isset($_POST['date'])&&isset($_POST['test'])&&isset($_POST['R_num'])&&isset($_POST['result']))
1973 | 	{
1974 | 		$date=$_POST['date'];
1975 | 		$name=$_POST['test'];
1976 | 		$result=$_POST['result'];
1977 | 		$r_num=$_POST['R_num'];
1978 | 		$query = "UPDATE diagnosis SET T_result='$result' where Test_date='$date' and Tests='$name' and Report_No='$r_num'";
1979 | 		$add=mysql_query($query);
1980 | 		if(mysql_affected_rows()==0)
1981 | 			echo "<script type=\"text/javascript\">alert(\"Data Not Found.\")</script>";
1982 | 		else
1983 | 			echo "<script type=\"text/javascript\">alert(\"Data Updated.\")</script>";
1984 | 	}	
1985 | }	
1986 | else if(isset($_GET['pid']) && strcmp($_GET['pid'],"del_test") == 0)
1987 | 	{
1988 | 		echo "<br/><table border=0 cellpadding=1 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=del_test&option=search_val\" method=\"post\">";
1989 | 		echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_val\" type=\"text\" size=50 placeholder=\"Enter Report-No, Type to delete\"></td>";
1990 | 		echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\"></td></tr>";
1991 | 		echo "</form></table>"; 		
1992 | 		if(isset($_GET['option']) && strcmp($_GET['option'],"search_val")==0)
1993 | 		{
1994 | 			$search=$_POST['search_val'];			
1995 | 				$result=mysql_query("select * from diagnosis where Report_No='$search'");						
1996 | 				if(mysql_num_rows($result)==1)
1997 | 				{
1998 | 					$query=mysql_query("delete from medical_report where Report_No='$search'");
1999 | 					if(mysql_affected_rows()==0)
2000 | 						echo "<script type=\"text/javascript\">alert(\"Data Not Found.\")</script>";
2001 | 					else
2002 | 						echo "<script type=\"text/javascript\">alert(\"Medical Test Deleted.\")</script>";
2003 | 				}					
2004 | 				else if(mysql_num_rows($result)>1)
2005 | 				{
2006 | 					echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2007 | 					echo "<div style=\"width:900px; float:left;\">";
2008 | 					echo "<h2 align=\"left\">Click the test to delete !!!</h2>";
2009 | 					for($i=0;$i<mysql_num_rows($result);$i=$i+1)
2010 | 					{
2011 | 						$val=mysql_fetch_array($result);
2012 | 						$id=$val['Report_No'];
2013 | 						$name=$val['Tests'];
2014 | 						$date=$val['Test_date'];
2015 | 						$rnum=$val['Report_No'];
2016 | 						echo "<div style=\"width:900px; float:left;\">";
2017 | 						echo "<h3 align=\"left\"><a href=\"?pid=del_test&id=$name&date=$date&rnum=$rnum\">$name</a></h3>";
2018 | 						echo "<p align=\"left\"><b>Test Date:</b> $date</p>";
2019 | 						echo "</div>";
2020 | 					}
2021 | 				}
2022 | 						
2023 | 				else
2024 | 				{
2025 | 					echo "<script type=\"text/javascript\">alert(\"Data Not Found.\")</script>";
2026 | 				}
2027 | 					
2028 | 		}
2029 | 		if(isset($_GET['id'])&&isset($_GET['date'])&&isset($_GET['rnum']))
2030 | 		{
2031 | 			$search=$_GET['id'];
2032 | 			$search1=$_GET['date'];
2033 | 			$search2=$_GET['rnum'];
2034 | 			$query=mysql_query("delete from diagnosis where Tests='$search' and Test_date='$search1' and Report_No='$search2'");
2035 | 			if(mysql_affected_rows()==0)
2036 | 				echo "<script type=\"text/javascript\">alert(\"Data Not Found.\")</script>";
2037 | 			else
2038 | 				echo "<script type=\"text/javascript\">alert(\"Medical Test Deleted.\")</script>";
2039 | 		}	
2040 | 	}
2041 | else if(isset($_GET['pid'])&&((strcmp($_GET['pid'],"add_accompanies")==0)))
2042 | {
2043 | 	if(isset($_GET['option'])&&(strcmp($_GET['option'],"insert")==0))
2044 | 	{
2045 | 		$name=$_POST['name'];
2046 | 		$address=$_POST['address'];
2047 | 		$dob=$_POST['dob'];
2048 | 		if(isset($_POST['contact']))
2049 | 		$contact=$_POST['contact'];
2050 | 		else $contact="NULL";
2051 | 		$gender=$_POST['gender'];
2052 | 		$rel=$_POST['rel'];
2053 | 		$id=$_POST['id'];
2054 | 		mysql_query("insert into accompanies values (\"$id\", \"$name\", \"$address\", \"$dob\", \"$contact\", \"$gender\", \"$rel\")");
2055 | 		header('Location: ?pid=view_accompanies');
2056 | 	}
2057 | 	else
2058 | 	{
2059 | 		echo "<div style=\"width:900px; float:left;\"><h1 align=\"left\">Registeration</h1>";
2060 | 		echo "<table border=0 cellpadding=0 cellspacing=2 align=\"left\"><form action=\"login.php?pid=add_accompanies&option=insert\" method=\"post\">";
2061 | 		echo "<tr><td><h4>Patient ID: </h4></td><td><input name=\"id\" type=\"text\" size=50 placeholder=\"Patient-ID\"></td></tr>";
2062 | 		echo "<tr><td><h4>Name: </h4></td><td><input name=\"name\" type=\"text\" size=50 placeholder=\"Accompanies's Name\"></td></tr>";
2063 | 		echo "<tr><td><h4>Address: </h4></td><td><input name=\"address\" type=\"text\" size=50 placeholder=\"Accompanies's Address\"></td></tr>";
2064 | 		echo "<tr><td><h4>Date of Brith: </h4></td><td><input name=\"dob\" type=\"text\" size=50 placeholder=\"YYYY-MM-DD\"></td></tr>";
2065 | 		echo "<tr><td><h4>Contact: </h4></td><td><input name=\"contact\" type=\"text\" size=50 placeholder=\"Phone Number\"></td></tr>";
2066 | 		echo "<tr><td><h4>Gender: </h4></td><td><select name=\"gender\"><option>Male</option><option>Female</option></select></td></tr>";
2067 | 		echo "<tr><td><h4>Relationship: </h4></td><td><input name=\"rel\" type=\"text\" size=50 placeholder=\"Relationship\"></td></tr>";
2068 | 		echo "<tr><td><input type=\"submit\" value=\"Submit\" id=\"wdth2\"></td></tr>";
2069 | 		echo "</form></table>";
2070 | 		echo "</div>";
2071 | 	}
2072 | }
2073 | //KNS starts
2074 | if(isset($_GET['pid']))
2075 | 		{
2076 | 			if(isset($_GET['pid']) && strcmp($_GET['pid'],"search_vehicle") == 0)
2077 | 			{
2078 | 				echo "<br/><table border=0 cellpadding=1 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=search_vehicle&option=search_val\" method=\"post\">";
2079 | 				echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_val\" type=\"text\" size=50 placeholder=\"Search by Type, Reg Id.\"></td>";
2080 | 				echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\"></td></tr>";
2081 | 				echo "</form></table>";
2082 | 				
2083 | 				if(isset($_GET['option']) && strcmp($_GET['option'],"search_val")==0)
2084 | 				{
2085 | 					$search=$_POST['search_val'];
2086 | 					
2087 | 					if(!empty($search) && ($search[0]=='V' || $search[0]=='v'))
2088 | 					{
2089 | 						
2090 | 						$result=mysql_query("select * from vehicles where Reg_No='$search'");
2091 | 						
2092 | 						if(mysql_num_rows($result)==1)
2093 | 						{
2094 | 							echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2095 | 							$val=mysql_fetch_array($result);
2096 | 							$reg=$val['Reg_No'];
2097 | 							$type=$val['Type'];
2098 | 							$dop=$val['DOP'];
2099 | 							$model=$val['MODEL'];
2100 | 							$cost=$val['Rent'];
2101 | 							
2102 | 							echo " <h3> Vehicle Details </h3> ";
2103 | 							echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;\">";
2104 | 							echo "<tr><td width=5%>Reg No: </td><td width=50%>$reg</td></tr>";
2105 | 							echo "<tr><td>Type: </td><td>$type</td></tr>";
2106 | 							echo "<p align=\"left\"><tr><td>Date of Purchase: </td><td>$dop</td></tr>";
2107 | 							echo "<tr><td>Model: </td><td>$model</td></tr>";
2108 | 							echo "<tr><td>Rent: </td><td>$cost</td></tr>";
2109 | 							echo "</table>";
2110 | 						}
2111 | 						
2112 | 						else
2113 | 						{
2114 | 							echo "<br/> <br/>";
2115 | 							echo "<script type=\"text/javascript\">alert(\"Value not found\") </script>";
2116 | 						}
2117 | 						
2118 | 					}
2119 | 					
2120 | 					else if(!empty($search) && ($search[0]!='V' || $search[0]!='v'))
2121 | 					{
2122 | 						$result=mysql_query("select * from vehicles where Type='$search'");
2123 | 						
2124 | 						if(mysql_num_rows($result)==1)
2125 | 						{
2126 | 							echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2127 | 							$val=mysql_fetch_array($result);
2128 | 							$reg=$val['Reg_No'];
2129 | 							$type=$val['Type'];
2130 | 							$dop=$val['DOP'];
2131 | 							$model=$val['MODEL'];
2132 | 							$cost=$val['Rent'];
2133 | 							
2134 | 							echo " <h3> Vehicle Details </h3> ";
2135 | 							echo " <br/><br/>0";
2136 | 							echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;\">";
2137 | 							echo "<tr><td width=5%>Reg No: </td><td width=50%>$reg</td></tr>";
2138 | 							echo "<tr><td>Type: </td><td>$type</td></tr>";
2139 | 							echo "<p align=\"left\"><tr><td>Date of Purchase: </td><td>$dop</td></tr>";
2140 | 							echo "<tr><td>Model: </td><td>$model</td></tr>";
2141 | 							echo "<tr><td>Rent: </td><td>$cost</td></tr>";
2142 | 							echo "</table>";
2143 | 						}
2144 | 						
2145 | 						else if(mysql_num_rows($result)>1)
2146 | 						{
2147 | 							echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2148 | 							echo "<div style=\"width:900px; float:left;\">";
2149 | 							
2150 | 							for($i=0;$i<mysql_num_rows($result);$i=$i+1)
2151 | 							{
2152 | 								$val=mysql_fetch_array($result);
2153 | 								$reg=$val['Reg_No'];
2154 | 								$type=$val['Type'];
2155 | 								echo "<div style=\"width:900px; float:left;\">";
2156 | 								echo "<h3 align=\"left\"><a href=\"?pid=vehicle_details&id=$reg\">$reg</a></h3>";
2157 | 								echo "<p align=\"left\"><b>Type:</b> $type<br/> ";
2158 | 								echo "</div>";
2159 | 							}
2160 | 						}
2161 | 						
2162 | 						else
2163 | 						{
2164 | 							echo "<br/> <br/>";
2165 | 							echo "<script type=\"text/javascript\">alert(\"Value not found\") </script>";
2166 | 						}
2167 | 					}
2168 | 					
2169 | 				}
2170 | 			}
2171 | 				if(isset($_GET['pid']) && strcmp($_GET['pid'],"vehicle_details") == 0)
2172 | 			{
2173 | 				echo "<br/><table border=0 cellpadding=1 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=search_vehicle&option=search_val\" method=\"post\">";
2174 | 				echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_val\" type=\"text\" size=50 placeholder=\"Search by Type, Reg Id.\"></td>";
2175 | 				echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\"></td></tr>";
2176 | 				echo "</form></table>";
2177 | 				
2178 | 				$search=$_GET['id'];
2179 | 				$result=mysql_query("select * from vehicles where Reg_No='$search'");
2180 | 				
2181 | 				echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2182 | 				$val=mysql_fetch_array($result);
2183 | 				$reg=$val['Reg_No'];
2184 | 				$type=$val['Type'];
2185 | 				$dop=$val['DOP'];
2186 | 				$model=$val['MODEL'];
2187 | 				$cost=$val['Rent'];
2188 | 				
2189 | 				echo " <h3> Vehicle Details </h3> ";
2190 | 				echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;\">";
2191 | 				echo "<tr><td width=5%>Reg No: </td><td width=50%>$reg</td></tr>";
2192 | 				echo "<tr><td>Type: </td><td>$type</td></tr>";
2193 | 				echo "<p align=\"left\"><tr><td>Date of Purchase: </td><td>$dop</td></tr>";
2194 | 				echo "<tr><td>Model: </td><td>$model</td></tr>";
2195 | 				echo "<tr><td>Rent: </td><td>$cost</td></tr>";
2196 | 				echo "</table>";
2197 | 			}
2198 | 						
2199 | 			if(isset($_GET['pid']) && strcmp($_GET['pid'],"add_vehicle") == 0)
2200 | 			{
2201 | 				echo "<br/> <br/>";
2202 | 				echo " <h1> Add Vehicle </h1>";
2203 | 				echo "<br/> <br/> <br/>";
2204 | 				echo "<table border=0 cellpadding=1 cellspacing=5 style=\"margin:-150px 700px 0px -3px;\">";
2205 | 				echo " <form action=\"#\" method=POST>";
2206 | 				//echo " <tr><td>Registration Id: </td><td><input type=\"text\" name=\"Reg_No\" required></tr></td><br/><br/>";
2207 | 				echo " <tr><td>Type: </td><td><select name=\"drop\"><option value=\"Ambulance\" required>Ambulance</option><option value=\"Taxi\">Taxi</option> </select></td></tr><br/><br/>";
2208 | 				//echo " <tr><td>Date of purchase:</td><td> <input type=\"text\" name=\"DOP\" required placeholder=\"YYYY-MM-DD\"></td><td></td></tr><br/><br/>";
2209 | 				echo " <tr><td>Model: </td><td><input type=\"text\" name=\"Model\" required></td></tr><br/><br/><br/>";
2210 | 				echo " <tr><td><input type=\"submit\" name=\"submit\"></submit></td></tr>";
2211 | 				echo " </table></form> ";
2212 | 				
2213 | 				/*$con = mysql_connect("localhost","root","","HMS");
2214 | 				if(!$con)
2215 | 				{
2216 | 					echo " Connection Failed"; 
2217 | 				}
2218 | 			//	mysql_select_db("HMS", $con);
2219 | 				
2220 | 				/*if(isset($_POST['reg']))
2221 | 				{
2222 | 					$temp=$_POST['reg'];
2223 | 					echo $temp;
2224 | 				}*/
2225 | 				
2226 | 				if(isset($_POST['drop']))
2227 | 				{
2228 | 					$type=$_POST['drop'];
2229 | 					
2230 | 					if($type=="Ambulance")
2231 | 					{
2232 | 						$cost=200.00;
2233 | 						
2234 | 						if(isset($_POST['Model']) )
2235 | 						{	
2236 | 					
2237 | 							$sel=mysql_query("select curdate() date");
2238 | 							$DOP=mysql_fetch_array($sel);
2239 | 							$DOP=$DOP['date'];
2240 | 							
2241 | 							$model=$_POST['Model'];
2242 | 							
2243 | 							$result=mysql_query("select max(Reg_No) R from vehicles");
2244 | 							$val=mysql_fetch_array($result);
2245 | 							//echo $val;
2246 | 							$test=$val['R'];
2247 | 							$reg="V".(substr($test,1)+1);
2248 | 							
2249 | 							/*$test=strval($val);
2250 | 							$reg="V".$test;
2251 | 							*/
2252 | 							/*echo $reg;
2253 | 							echo $type;
2254 | 							echo $DOP;
2255 | 							echo $model;*/
2256 | 							
2257 | 							$query="INSERT INTO vehicles SET Type=\"Ambulance\",Reg_No='$reg',DOP='$DOP',Model='$model',ID=NULL,Rent=200";
2258 | 							$result=mysql_query($query);
2259 | 							
2260 | 							echo "<script type=\"text/javascript\">alert(\"Vehicle No. $reg has been added.\")</script>";
2261 | 							
2262 | 							//$query = "INSERT INTO Medicinecategory(BatchNo,Name,Category) VALUES ('$_POST[Batchno]','$_POST[Name]','$_POST[Category]')";
2263 | 							/*if(isset ($query))
2264 | 								$sql=mysql_query($query,$con);*/
2265 | 						}
2266 | 					}
2267 | 					
2268 | 					if($type=="Taxi")
2269 | 					{
2270 | 						if(isset($_POST['Model']) )
2271 | 						{	
2272 | 					
2273 | 							//$DOP=$_POST['DOP'];
2274 | 							$model=$_POST['Model'];
2275 | 							
2276 | 							$sel=mysql_query("select curdate() date");
2277 | 							$DOP=mysql_fetch_array($sel);
2278 | 							$DOP=$DOP['date'];
2279 | 							/*$result=mysql_query("select * from vehicles");
2280 | 							$val=mysql_num_rows($result);*/
2281 | 							//echo $val;
2282 | 							
2283 | 							$result=mysql_query("select max(Reg_No) R from vehicles");
2284 | 							$val=mysql_fetch_array($result);
2285 | 							//echo $val;
2286 | 							$test=$val['R'];
2287 | 							$reg="V".(substr($test,1)+1);
2288 | 							
2289 | 							/*$val=$val+1;
2290 | 							$test=strval($val);
2291 | 							$reg="V".$test;
2292 | 							*/
2293 | 							/*echo $reg;
2294 | 							echo $type;
2295 | 							echo $DOP;
2296 | 							echo $model;*/
2297 | 							
2298 | 							$query="INSERT INTO vehicles SET Type=\"Taxi\",Reg_No='$reg',DOP='$DOP',Model='$model',ID=NULL,Rent=500";
2299 | 							$result=mysql_query($query);
2300 | 								
2301 | 							echo "<script type=\"text/javascript\">alert(\"Vehicle Added\") </script>";
2302 | 						
2303 | 							//$query = "INSERT INTO Medicinecategory(BatchNo,Name,Category) VALUES ('$_POST[Batchno]','$_POST[Name]','$_POST[Category]')";
2304 | 							/*if(isset ($query))
2305 | 								$sql=mysql_query($query,$con);*/
2306 | 						}	
2307 | 					}
2308 | 				}
2309 | 			}	
2310 | 			
2311 | 			if(isset($_GET['pid']) && strcmp($_GET['pid'],"discard_vehicle") == 0)
2312 | 			{
2313 | 				echo "<br/><table border=0 cellpadding=1 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=discard_vehicle&option=search_val\" method=\"post\">";
2314 | 				echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_val\" type=\"text\" size=50 placeholder=\"Enter Reg-No, Type to delete\"></td>";
2315 | 				echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\"></td></tr>";
2316 | 				echo "</form></table>"; 
2317 | 				
2318 | 				if(isset($_GET['option']) && strcmp($_GET['option'],"search_val")==0)
2319 | 				{
2320 | 					$search=$_POST['search_val'];
2321 | 					
2322 | 					if(!empty($search) &&($search[0]=='V' || $search[0]=='v'))
2323 | 					{
2324 | 						
2325 | 						$result=mysql_query("select * from vehicles where Reg_No='$search'");
2326 | 						
2327 | 						if(mysql_num_rows($result)==1)
2328 | 						{
2329 | 							$query=mysql_query("delete from vehicles where Reg_No='$search'");
2330 | 							echo "<br/><br/><br/>";
2331 | 							echo "<script type=\"text/javascript\">alert(\"Vehicle discarded\") </script>";
2332 |  
2333 | 						}
2334 | 						
2335 | 						else
2336 | 						{
2337 | 							echo "<br/> <br/>";
2338 | 							echo "<script type=\"text/javascript\">alert(\"Vehicle not found\") </script>";
2339 | 						}
2340 | 					}
2341 | 					
2342 | 					else if(!empty($search) &&($search[0]!='V' || $search[0]!='v'))
2343 | 					{
2344 | 						$result=mysql_query("select * from vehicles where Type='$search'");
2345 | 						
2346 | 						if(mysql_num_rows($result)==1)
2347 | 						{
2348 | 							$query=mysql_query("delete from vehicles where Type='$search'");
2349 | 							echo "<br/><br/><br/>";
2350 | 							echo "<script type=\"text/javascript\">alert(\"Vehicle discarded\") </script>";
2351 | 						}
2352 | 						
2353 | 						else if(mysql_num_rows($result)>=1)
2354 | 						{
2355 | 							echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2356 | 							echo "<div style=\"width:900px; float:left;\">";
2357 | 							
2358 | 							for($i=0;$i<mysql_num_rows($result);$i=$i+1)
2359 | 							{
2360 | 								$val=mysql_fetch_array($result);
2361 | 								$reg=$val['Reg_No'];
2362 | 								$type=$val['Type'];
2363 | 								echo "<div style=\"width:900px; float:left;\">";
2364 | 								echo "<h3 align=\"left\"><a href=\"?pid=discard_vehicle&id=$reg\">$reg</a></h3>";
2365 | 								echo "<p align=\"left\"><b>Type:</b> $type<br/> ";
2366 | 								echo "</div>";
2367 | 							}
2368 | 						}
2369 | 						
2370 | 						else
2371 | 						{
2372 | 							echo "<br/> <br/>";
2373 | 							echo "<script type=\"text/javascript\">alert(\"Vehicle not found\") </script>";
2374 | 						}
2375 | 						
2376 | 					}
2377 | 					
2378 | 					else
2379 | 						echo "<script type=\"text/javascript\">alert(\"Please enter value\") </script>";
2380 | 				}
2381 | 			}
2382 | 			
2383 | 			if(isset($_GET['pid']) && strcmp($_GET['pid'],"discard_vehicle") == 0)
2384 | 			{
2385 | 				if(isset($_GET['id']))
2386 | 				{
2387 | 					$search=$_GET['id'];
2388 | 					$result=mysql_query("select * from vehicles where Reg_No='$search'");
2389 | 					//echo $search;
2390 | 					$query=mysql_query("delete from vehicles where Reg_No='$search'");
2391 | 					echo "<br/><br/><br/>";
2392 | 					echo "<script type=\"text/javascript\">alert(\"Vehicle discarded\") </script>";
2393 | 				}	
2394 | 			}
2395 | 						
2396 | 			else if(isset($_GET['pid']) && strcmp($_GET['pid'],"search_room") == 0)
2397 | 			{
2398 | 				echo "<br/><table border=0 cellpadding=1 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=search_room&option=search_val\" method=\"post\">";
2399 | 				echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_val\" type=\"text\" size=50 placeholder=\"Search by Type, Room Id.\"></td>";
2400 | 				echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\"></td></tr>";
2401 | 				echo "</form></table>";
2402 | 				
2403 | 				if(isset($_GET['option']) && strcmp($_GET['option'],"search_val")==0)
2404 | 				{
2405 | 					$search=$_POST['search_val'];
2406 | 					
2407 | 					if(!empty($search) && ($search[0]=='Z' || $search[0]=='z'))
2408 | 					{
2409 | 						
2410 | 						$result=mysql_query("select * from room where Room_No='$search'");
2411 | 						
2412 | 						if(mysql_num_rows($result)==1)
2413 | 						{
2414 | 							echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2415 | 							$val=mysql_fetch_array($result);
2416 | 							$reg=$val['Room_No'];
2417 | 							$type=$val['Type'];
2418 | 							$ext=$val['Extension'];
2419 | 							$cost=$val['Rent'];
2420 | 							
2421 | 							echo " <h3> Room Details </h3> ";
2422 | 							echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;\">";
2423 | 							echo "<tr><td width=5%>Room No: </td><td width=50%>$reg</td></tr>";
2424 | 							echo "<tr><td>Type: </td><td>$type</td></tr>";
2425 | 							echo "<p align=\"left\"><tr><td>Extension: </td><td>$ext</td></tr>";
2426 | 							echo "<tr><td>Rent: </td><td>$cost</td></tr>";
2427 | 							echo "</table>";
2428 | 						}
2429 | 						
2430 | 						else
2431 | 						{
2432 | 							echo "<br/> <br/>";
2433 | 							echo "<script type=\"text/javascript\">alert(\"Room not found\") </script>";
2434 | 						}
2435 | 					}
2436 | 					
2437 | 					else if(!empty($search) && ($search[0]!='Z' || $search[0]!='z'))
2438 | 					{
2439 | 						$result=mysql_query("select * from Room where Type='$search'");
2440 | 						
2441 | 						if(mysql_num_rows($result)==1)
2442 | 						{
2443 | 							echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2444 | 							$val=mysql_fetch_array($result);
2445 | 							$reg=$val['Room_No'];
2446 | 							$type=$val['Type'];
2447 | 							$ext=$val['Extension'];
2448 | 							$cost=$val['Rent'];
2449 | 							
2450 | 							echo " <h3> Room Details </h3> ";
2451 | 							echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;\">";
2452 | 							echo "<tr><td width=5%>Room No: </td><td width=50%>$reg</td></tr>";
2453 | 							echo "<tr><td>Type: </td><td>$type</td></tr>";
2454 | 							echo "<p align=\"left\"><tr><td>Extension: </td><td>$ext</td></tr>";
2455 | 							echo "<tr><td>Rent: </td><td>$cost</td></tr>";
2456 | 							echo "</table>";
2457 | 
2458 | 						}
2459 | 						
2460 | 						else if(mysql_num_rows($result)>=1)
2461 | 						{
2462 | 							echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2463 | 							echo "<div style=\"width:900px; float:left;\">";
2464 | 							
2465 | 							for($i=0;$i<mysql_num_rows($result);$i=$i+1)
2466 | 							{
2467 | 								$val=mysql_fetch_array($result);
2468 | 								$reg=$val['Room_No'];
2469 | 								$type=$val['Type'];
2470 | 								echo "<div style=\"width:900px; float:left;\">";
2471 | 								echo "<h3 align=\"left\"><a href=\"?pid=room_details&id=$reg\">$reg</a></h3>";
2472 | 								echo "<p align=\"left\"><b>Type:</b> $type<br/> ";
2473 | 								echo "</div>";
2474 | 							}
2475 | 						}
2476 | 						
2477 | 						else
2478 | 						{
2479 | 							echo "<br/> <br/>";
2480 | 							echo "<script type=\"text/javascript\">alert(\"Room not found\") </script>";
2481 | 						}
2482 | 					}
2483 | 					
2484 | 					else
2485 | 						echo "<script type=\"text/javascript\">alert(\"Please enter value\") </script>";
2486 | 				}
2487 | 			}
2488 | 			
2489 | 			if(isset($_GET['pid']) && strcmp($_GET['pid'],"add_room") == 0)
2490 | 			{
2491 | 				echo "<br/> <br/>";
2492 | 				echo " <h1> Add Room </h1>";
2493 | 				echo "<br/> <br/> <br/><br/><br/><br/><br/><br/><br/> ";
2494 | 				echo "<table border=0 cellpadding=1 cellspacing=5 style=\"margin:-150px 700px 0px -3px;\">";
2495 | 				echo " <form action=\"#\" method=POST>";
2496 | 				//echo "<tr><td> Room Id:</td><td> <input type=\"text\" name=\"Room_No\" required><br/><br/> </td></tr>";
2497 | 				echo " <tr><td>Type: </td><td><select name=\"drop\"><option value=\"Gen\">General</option><option value=\"pri\">Private</option><option value=\"icu\">ICU</option> </select></td></tr><br/><br/>";
2498 | 				echo "<tr><td> Extension: </td><td><input type=\"text\" name=\"ext\" required><br/><br/> </td></tr>";
2499 | 				echo "<tr><td> <input type=\"submit\" name=\"submit\"></submit> </td></tr>";
2500 | 				echo "</table> </form> ";
2501 | 				
2502 | 				/*$con = mysql_connect("localhost","root","","HMS");
2503 | 				if(!$con)
2504 | 				{
2505 | 					echo " Connection Failed"; 
2506 | 				}
2507 | 			//	mysql_select_db("HMS", $con);
2508 | 				
2509 | 				/*if(isset($_POST['reg']))
2510 | 				{
2511 | 					$temp=$_POST['reg'];
2512 | 					echo $temp;
2513 | 				}*/
2514 | 				
2515 | 				$flag=1;
2516 | 				
2517 | 				if(isset($_POST['drop']) && isset($_POST['ext']) ) //
2518 | 				{
2519 | 					$ext=$_POST['ext'];
2520 | 					$check=mysql_query("select * from room where Extension='$ext'");
2521 | 					if(mysql_num_rows($check)>=1)
2522 | 					{
2523 | 						//echo "check";
2524 | 						$flag=0;
2525 | 					}		
2526 | 					$type=$_POST['drop'];
2527 | 					
2528 | 					if($type=="Gen")
2529 | 					{
2530 | 						$cost=2500.00;
2531 | 						
2532 | 						if(isset($_POST['ext']) && $flag==1)
2533 | 						{			
2534 | 				
2535 | 							$ext=$_POST['ext'];
2536 | 					
2537 | 							/*echo $reg;
2538 | 							echo $type;
2539 | 							echo $DOP;
2540 | 							echo $model;*/
2541 | 
2542 | 							$result=mysql_query("select * from room");
2543 | 							$val=mysql_num_rows($result);
2544 | 
2545 | 							$result=mysql_query("select max(Room_No) R from room");
2546 | 							$val=mysql_fetch_array($result);
2547 | 							//echo $val;
2548 | 							$test=$val['R'];
2549 | 							$room="Z".(substr($test,1)+1);
2550 | 							
2551 | 							$query="INSERT INTO room SET Room_No='$room',Type=\"Gen\",Extension='$ext',Rent=2500,Patient_ID=null";
2552 | 							$result=mysql_query($query);
2553 | 							
2554 | 							echo "<script type=\"text/javascript\">alert(\"Room No. $room has been added.\")</script>";
2555 | 							
2556 | 							//$query = "INSERT INTO Medicinecategory(BatchNo,Name,Category) VALUES ('$_POST[Batchno]','$_POST[Name]','$_POST[Category]')";
2557 | 							/*if(isset ($query))
2558 | 								$sql=mysql_query($query,$con);*/
2559 | 							
2560 | 							//echo $val;
2561 | 							
2562 | 							
2563 | 							/*echo $reg;
2564 | 							echo $type;
2565 | 							echo $DOP;
2566 | 							echo $model;*/
2567 | 							
2568 | 							//$query = "INSERT INTO Medicinecategory(BatchNo,Name,Category) VALUES ('$_POST[Batchno]','$_POST[Name]','$_POST[Category]')";
2569 | 							/*if(isset ($query))
2570 | 								$sql=mysql_query($query,$con);*/
2571 | 								
2572 | 						}
2573 | 					}
2574 | 					
2575 | 					if($type=="pri" && $flag==1)
2576 | 					{
2577 | 						$cost=5000.00;
2578 | 						
2579 | 						if(isset($_POST['ext']))
2580 | 						{			
2581 | 				
2582 | 							$ext=$_POST['ext'];
2583 | 					
2584 | 							/*echo $reg;
2585 | 							echo $type;
2586 | 							echo $DOP;
2587 | 							echo $model;*/
2588 | 
2589 | 							$result=mysql_query("select * from room");
2590 | 							$val=mysql_num_rows($result);
2591 | 
2592 | 							$result=mysql_query("select max(Room_No) R from room");
2593 | 							$val=mysql_fetch_array($result);
2594 | 							//echo $val;
2595 | 							$test=$val['R'];
2596 | 							$room="Z".(substr($test,1)+1);
2597 | 							
2598 | 							$query="INSERT INTO room SET Room_No='$room',Type=\"PRI\",Extension='$ext',Rent=2500,Patient_ID=null";
2599 | 							$result=mysql_query($query);
2600 | 							
2601 | 							echo "<script type=\"text/javascript\">alert(\"Room Added\") </script>";
2602 | 							
2603 | 							//$query = "INSERT INTO Medicinecategory(BatchNo,Name,Category) VALUES ('$_POST[Batchno]','$_POST[Name]','$_POST[Category]')";
2604 | 							/*if(isset ($query))
2605 | 								$sql=mysql_query($query,$con);*/
2606 | 							
2607 | 							//echo $val;
2608 | 							
2609 | 							
2610 | 							/*echo $reg;
2611 | 							echo $type;
2612 | 							echo $DOP;
2613 | 							echo $model;*/
2614 | 							
2615 | 							//$query = "INSERT INTO Medicinecategory(BatchNo,Name,Category) VALUES ('$_POST[Batchno]','$_POST[Name]','$_POST[Category]')";
2616 | 							/*if(isset ($query))
2617 | 								$sql=mysql_query($query,$con);*/
2618 | 						}
2619 | 					}
2620 | 					
2621 | 					if($type=="icu" && $flag==1)
2622 | 					{
2623 | 						$cost=2500.00;
2624 | 						
2625 | 						if(isset($_POST['ext']))
2626 | 						{			
2627 | 				
2628 | 							$ext=$_POST['ext'];
2629 | 					
2630 | 							/*echo $reg;
2631 | 							echo $type;
2632 | 							echo $DOP;
2633 | 							echo $model;*/
2634 | 
2635 | 							$result=mysql_query("select * from room");
2636 | 							$val=mysql_num_rows($result);
2637 | 
2638 | 							$result=mysql_query("select max(Room_No) R from room");
2639 | 							$val=mysql_fetch_array($result);
2640 | 							//echo $val;
2641 | 							$test=$val['R'];
2642 | 							$room="Z".(substr($test,1)+1);
2643 | 							
2644 | 							$query="INSERT INTO room SET Room_No='$room',Type=\"ICU\",Extension='$ext',Rent=2500,Patient_ID=null";
2645 | 							$result=mysql_query($query);
2646 | 							
2647 | 							echo "<script type=\"text/javascript\">alert(\"Room Added\") </script>";
2648 | 							
2649 | 							//$query = "INSERT INTO Medicinecategory(BatchNo,Name,Category) VALUES ('$_POST[Batchno]','$_POST[Name]','$_POST[Category]')";
2650 | 							/*if(isset ($query))
2651 | 								$sql=mysql_query($query,$con);*/
2652 | 							
2653 | 							//echo $val;
2654 | 							
2655 | 							
2656 | 							/*echo $reg;
2657 | 							echo $type;
2658 | 							echo $DOP;
2659 | 							echo $model;*/
2660 | 							
2661 | 							//$query = "INSERT INTO Medicinecategory(BatchNo,Name,Category) VALUES ('$_POST[Batchno]','$_POST[Name]','$_POST[Category]')";
2662 | 							/*if(isset ($query))
2663 | 								$sql=mysql_query($query,$con);*/
2664 | 						}
2665 | 					}
2666 | 					
2667 | 					if($flag==0)
2668 | 					{
2669 | 						echo "<script type=\"text/javascript\">alert(\"Extension already in use!\") </script>";
2670 | 					}
2671 | 				}	
2672 | 				
2673 | 				
2674 | 				
2675 | 			}	
2676 | 			if(isset($_GET['pid']) && strcmp($_GET['pid'],"room_details") == 0)
2677 | 			{
2678 | 				echo "<br/><table border=0 cellpadding=1 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=search_room&option=search_val\" method=\"post\">";
2679 | 				echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_val\" type=\"text\" size=50 placeholder=\"Search by Type, Reg Id.\"></td>";
2680 | 				echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\"></td></tr>";
2681 | 				echo "</form></table>";
2682 | 				
2683 | 				$search=$_GET['id'];
2684 | 				$result=mysql_query("select * from room where Room_No='$search'");
2685 | 				
2686 | 				echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2687 | 				$val=mysql_fetch_array($result);
2688 | 				$reg=$val['Room_No'];
2689 | 				$type=$val['Type'];
2690 | 				$ext=$val['Extension'];
2691 | 				
2692 | 				echo " <h3> Room Details </h3> ";
2693 | 				echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;\">";
2694 | 				echo "<tr><td width=5%>Room No: </td><td width=50%>$reg</td></tr>";
2695 | 				echo "<tr><td>Type: </td><td>$type</td></tr>";
2696 | 				echo "<p align=\"left\"><tr><td>Extension: </td><td>$ext</td></tr>";
2697 | 				echo "</table>";
2698 | 			}
2699 | 			if(isset($_GET['pid']) && strcmp($_GET['pid'],"discard_room") == 0)
2700 | 			{
2701 | 				echo "<br/><table border=0 cellpadding=1 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=discard_room&option=search_val\" method=\"post\">";
2702 | 				echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_val\" type=\"text\" size=50 placeholder=\"Enter Room-No, Type to delete\"></td>";
2703 | 				echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\"></td></tr>";
2704 | 				echo "</form></table>"; 
2705 | 				
2706 | 				if(isset($_GET['option']) && strcmp($_GET['option'],"search_val")==0)
2707 | 				{
2708 | 					$search=$_POST['search_val'];
2709 | 					
2710 | 					if(!empty($search) && ($search[0]=='Z' || $search[0]=='z'))
2711 | 					{
2712 | 						
2713 | 						$result=mysql_query("select * from room where Room_No='$search'");
2714 | 						
2715 | 						if(mysql_num_rows($result)==1)
2716 | 						{
2717 | 							$query=mysql_query("delete from room where Room_No='$search'");
2718 | 							echo "hello";
2719 | 							echo "<br/><br/><br/>";
2720 | 							echo "<script type=\"text/javascript\">alert(\"Room Discarded\") </script>";
2721 | 						}
2722 | 						
2723 | 						else
2724 | 						{
2725 | 							echo "<br/> <br/>";
2726 | 							echo "<script type=\"text/javascript\">alert(\"Invalid Entry\") </script>";
2727 | 						}
2728 | 					}
2729 | 					
2730 | 					else if(!empty($search) && ($search[0]!='Z' || $search[0]!='z'))
2731 | 					{
2732 | 						$result=mysql_query("select * from room where Type='$search'");
2733 | 						
2734 | 						if(mysql_num_rows($result)==1)
2735 | 						{
2736 | 							$query=mysql_query("delete from room where Type='$search'");
2737 | 							echo "<br/><br/><br/>";
2738 | 							echo "<script type=\"text/javascript\">alert(\"Room discarded\") </script>";
2739 | 						}
2740 | 						
2741 | 						else if(mysql_num_rows($result)>=1)
2742 | 						{
2743 | 							echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2744 | 							echo "<div style=\"width:900px; float:left;\">";
2745 | 							
2746 | 							for($i=0;$i<mysql_num_rows($result);$i=$i+1)
2747 | 							{
2748 | 								$val=mysql_fetch_array($result);
2749 | 								$reg=$val['Room_No'];
2750 | 								$type=$val['Type'];
2751 | 								echo "<div style=\"width:900px; float:left;\">";
2752 | 								echo "<h3 align=\"left\"><a href=\"?pid=discard_room&id=$reg\">$reg</a></h3>";
2753 | 								echo "<p align=\"left\"><b>Type:</b> $type<br/> ";
2754 | 								echo "</div>";
2755 | 							}
2756 | 						}
2757 | 						
2758 | 						else
2759 | 						{
2760 | 							echo "<br/> <br/>";
2761 | 							echo "<script type=\"text/javascript\">alert(\"Invalid Entry\") </script>";
2762 | 						}
2763 | 					}
2764 | 					
2765 | 					else
2766 | 						echo "<script type=\"text/javascript\">alert(\"Please enter value\") </script>";
2767 | 				}
2768 | 			}
2769 | 			if(isset($_GET['pid']) && strcmp($_GET['pid'],"discard_room") == 0)
2770 | 			{
2771 | 				if(isset($_GET['id']))
2772 | 				{
2773 | 					$search=$_GET['id'];
2774 | 					$result=mysql_query("select * from room where Room_No='$search'");
2775 | 					//echo $search;
2776 | 					$query=mysql_query("delete from room where Room_No='$search'");
2777 | 					echo "<br/><br/><br/>";
2778 | 					echo "<script type=\"text/javascript\">alert(\"Room Discarded\") </script>";
2779 | 				}	
2780 | 			}
2781 | 				
2782 | 	if(isset($_GET['pid']) && strcmp($_GET['pid'],"alloted_vehicle") == 0)
2783 | {
2784 | 				echo "<br/><table border=0 cellpadding=1 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=alloted_vehicle&option=search_val\" method=\"post\">";
2785 | 				echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_val\" type=\"text\" size=50 placeholder=\"Enter Reg-No, Type.\"></td>";
2786 | 				echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\"></td></tr>";
2787 | 				echo "</form></table>";
2788 | 				
2789 | 				if(isset($_GET['option']) && strcmp($_GET['option'],"search_val")==0)
2790 | 				{
2791 | 					$search=$_POST['search_val'];
2792 | 					
2793 | 					if((!empty($search)) && ($search[0]=='V' || $search[0]=='v'))
2794 | 					{
2795 | 						$find=mysql_query("select * from vehicles where Reg_No='$search'");
2796 | 						
2797 | 						if(mysql_num_rows($find)==0)
2798 | 							echo "<script type=\"text/javascript\">alert(\"Vehicle not found!\") </script>";
2799 | 							
2800 | 						else
2801 | 						{
2802 | 							$result=mysql_query("select * from vehicle_given where Reg_No='$search'");
2803 | 							
2804 | 							if(mysql_num_rows($result)==0)
2805 | 							{
2806 | 								echo "<script type=\"text/javascript\">alert(\"Vehicle not alloted!\") </script>";
2807 | 							}
2808 | 							
2809 | 							else
2810 | 							{
2811 | 								if((!empty($result) && mysql_num_rows($result)==1))
2812 | 								{
2813 | 									echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2814 | 									$val=mysql_fetch_array($result);
2815 | 									$reg=$val['Reg_No'];
2816 | 									$id=$val['ID'];
2817 | 									$ad=$val['Allot_date'];
2818 | 									$rd=$val['Return_date'];
2819 | 									$rent=mysql_query("select Rent from vehicles where Reg_No='$search'");	
2820 | 									$cost=mysql_fetch_array($rent);
2821 | 									$price=$cost['Rent'];
2822 | 									
2823 | 									echo " <h3> Vehicle Allotment History</h3> ";
2824 | 									echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;\">";
2825 | 									echo "<tr><td width=5%>Reg No: </td><td width=50%>$reg</td></tr>";
2826 | 									echo "<tr><td>Used by: </td><td>$id</td></tr>";
2827 | 									echo "<p align=\"left\"><tr><td>Allotment Room: </td><td>$ad</td></tr>";
2828 | 									echo "<tr><td>Return Date: </td><td>$rd</td></tr>";
2829 | 									echo "<tr><td>Rent: </td><td>$price</td></tr>";
2830 | 									echo "</table>";
2831 | 								}
2832 | 								
2833 | 								else if(!empty($result) && (mysql_num_rows($result)>1))
2834 | 								{
2835 | 									echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2836 | 									echo "<div style=\"width:900px; float:left;\">";
2837 | 									
2838 | 									echo " <h3> Select any vehicle</h3> ";
2839 | 									
2840 | 									for($i=0;$i<mysql_num_rows($result);$i=$i+1)
2841 | 									{
2842 | 										$val=mysql_fetch_array($result);
2843 | 										$reg=$val['Reg_No'];
2844 | 										$id=$val['ID'];
2845 | 										$ad=$val['Allot_date'];
2846 | 										$rd=$val['Return_date'];
2847 | 
2848 | 										echo "<div style=\"width:900px; float:left;\">";
2849 | 										echo "<h3 align=\"left\"><a href=\"?pid=vehicle_al&reg=$reg&id=$id&ad=$ad&rd=$rd\">$reg</a></h3>";
2850 | 										//echo "<p align=\"left\"><b>Type:</b> $type<br/> ";
2851 | 										echo "</div>";
2852 | 									}
2853 | 								}
2854 | 							}	
2855 | 						}
2856 | 					}
2857 | 					
2858 | 					
2859 | 					else if((!empty($search)) && ($search[0]!='V' || $search[0]!='v'))
2860 | 					{
2861 | 						$find=mysql_query("select * from vehicles where Type='$search'");
2862 | 						
2863 | 						if(mysql_num_rows($find)==0)
2864 | 							echo "<script type=\"text/javascript\">alert(\"Vehicle not found!\") </script>";
2865 | 							
2866 | 						else
2867 | 						{
2868 | 							$result=mysql_query("select b.Reg_No,b.ID,b.Allot_date,b.Return_date from vehicles a,vehicle_given b where a.Type='$search' and a.Reg_No=b.Reg_No");
2869 | 							
2870 | 							if(mysql_num_rows($result)==0)
2871 | 							{
2872 | 								echo "<script type=\"text/javascript\">alert(\"Vehicle not alloted!\") </script>";
2873 | 							}
2874 | 							
2875 | 							else
2876 | 							{
2877 | 								if((!empty($result) && mysql_num_rows($result)==1))
2878 | 								{
2879 | 									echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2880 | 									$val=mysql_fetch_array($result);
2881 | 									$reg=$val['Reg_No'];
2882 | 									$id=$val['ID'];
2883 | 									$ad=$val['Allot_date'];
2884 | 									$rd=$val['Return_date'];
2885 | 									$rent=mysql_query("select Rent from vehicles where Type='$search'");		
2886 | 									$cost=mysql_fetch_array($rent);
2887 | 									$price=$cost['Rent'];
2888 | 									
2889 | 									echo " <h3> Vehicle Allotment History</h3> ";
2890 | 									echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;\">";
2891 | 									echo "<tr><td width=5%>Reg No: </td><td width=50%>$reg</td></tr>";
2892 | 									echo "<tr><td>Used by: </td><td>$id</td></tr>";
2893 | 									echo "<p align=\"left\"><tr><td>Allotment Date: </td><td>$ad</td></tr>";
2894 | 									echo "<tr><td>Return Date: </td><td>$rd</td></tr>";
2895 | 									echo "<tr><td>Rent: </td><td>$price</td></tr>";
2896 | 									echo "</table>";
2897 | 								}
2898 | 								
2899 | 								
2900 | 								else if(!empty($result) && (mysql_num_rows($result)>1))
2901 | 								{
2902 | 									echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2903 | 									echo "<div style=\"width:900px; float:left;\">";
2904 | 									
2905 | 									echo " <h3> Select any vehicle</h3> ";
2906 | 									
2907 | 									for($i=0;$i<mysql_num_rows($result);$i=$i+1)
2908 | 									{
2909 | 										$val=mysql_fetch_array($result);
2910 | 										$reg=$val['Reg_No'];
2911 | 										$id=$val['ID'];
2912 | 										$ad=$val['Allot_date'];								
2913 | 										$rd=$val['Return_date'];
2914 | 										
2915 | 										echo "<div style=\"width:900px; float:left;\">";
2916 | 										echo "<h3 align=\"left\"><a href=\"?pid=vehicle_al&reg=$reg&id=$id&ad=$ad&rd=$rd\">$reg</a></h3>";
2917 | 										//echo "<p align=\"left\"><b>Type:</b> $type<br/> ";
2918 | 										echo "</div>";
2919 | 									}
2920 | 								}
2921 | 							}	
2922 | 						}
2923 | 					}
2924 | 					
2925 | 					else
2926 | 						echo "<script type=\"text/javascript\">alert(\"Enter Value!\") </script>";
2927 | 				}	
2928 | 			}
2929 | 			
2930 | 			if(isset($_GET['pid']) && strcmp($_GET['pid'],"vehicle_al") == 0)
2931 | 			{
2932 | 				echo "<br/><table border=0 cellpadding=1 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=alloted_vehicle&option=search_val\" method=\"post\">";
2933 | 				echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_val\" type=\"text\" size=50 placeholder=\"Search by Type, Reg Id.\"></td>";
2934 | 				echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\"></td></tr>";
2935 | 				echo "</form></table>";
2936 | 				
2937 | 				if(isset($_GET['id']) && isset($_GET['reg']) && isset($_GET['ad']) || isset($_GET['rd']) )
2938 | 				{
2939 | 					$search=$_GET['reg'];
2940 | 					//$result=mysql_query("select * from vehicle_given where Reg_No='$search'");
2941 | 					echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2942 | 					//$val=mysql_fetch_array($result);
2943 | 					
2944 | 				//	$reg=$val['Reg_No'];
2945 | 					$id=$_GET['id'];
2946 | 					$reg=$_GET['reg'];
2947 | 					$ad=$_GET['ad']; 
2948 | 					$rd=$_GET['rd'];
2949 | 					
2950 | 					$rent=mysql_query("select Rent from vehicles where Reg_No='$search'");	
2951 | 					$cost=mysql_fetch_array($rent);
2952 | 					$price=$cost['Rent'];
2953 | 					
2954 | 					echo " <h3> Vehicle Allotment History</h3> ";
2955 | 					echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;\">";
2956 | 					echo "<tr><td width=5%>Reg No: </td><td width=50%>$reg</td></tr>";
2957 | 					echo "<tr><td>Used by: </td><td>$id</td></tr>";
2958 | 					echo "<p align=\"left\"><tr><td>Allotment Date: </td><td>$ad</td></tr>";
2959 | 					echo "<tr><td>Return Date: </td><td>$rd</td></tr>";
2960 | 					echo "<tr><td>Rent: </td><td>$price</td></tr>";
2961 | 					echo "</table>";					
2962 | 				}
2963 | 			}
2964 | 			
2965 | /*Room allotment */
2966 | 			
2967 | 			if(isset($_GET['pid']) && strcmp($_GET['pid'],"alloted_room") == 0)
2968 | 			{
2969 | 				echo "<br/><table border=0 cellpadding=1 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=alloted_room&option=search_val\" method=\"post\">";
2970 | 				echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_val\" type=\"text\" size=50 placeholder=\"Search by Type, Room Id.\"></td>";
2971 | 				echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\"></td></tr>";
2972 | 				echo "</form></table>";
2973 | 				
2974 | 				if(isset($_GET['option']) && strcmp($_GET['option'],"search_val")==0)
2975 | 				{
2976 | 					$search=$_POST['search_val'];
2977 | 					
2978 | 					if((!empty($search)) && ($search[0]=='Z' || $search[0]=='z'))
2979 | 					{
2980 | 						$find=mysql_query("select * from room where Room_No='$search'");
2981 | 						
2982 | 						if(mysql_num_rows($find)==0)
2983 | 							echo "<script type=\"text/javascript\">alert(\"Room not found!\") </script>";
2984 | 							
2985 | 						else
2986 | 						{
2987 | 							$result=mysql_query("select * from room_given where Room_No='$search'");
2988 | 							
2989 | 							if(mysql_num_rows($result)==0)
2990 | 							{
2991 | 								echo "<script type=\"text/javascript\">alert(\"Room not alloted!\") </script>";
2992 | 							}
2993 | 							
2994 | 							else
2995 | 							{
2996 | 								if((!empty($result) && mysql_num_rows($result)==1))
2997 | 								{
2998 | 									echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
2999 | 									$val=mysql_fetch_array($result);
3000 | 									$room=$val['Room_No'];
3001 | 									$id=$val['Patient_ID'];
3002 | 									$ad=$val['Allot_date'];
3003 | 									$rd=$val['Discharge_date'];
3004 | 									$rent=mysql_query("select Rent from room where Room_No='$search'");
3005 | 									$price=mysql_fetch_array($rent);
3006 | 									$cost=$price['Rent'];
3007 | 									
3008 | 									echo " <h3> Room Allotment History</h3> ";
3009 | 									echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;\">";
3010 | 									echo "<tr><td width=5%>Room No: </td><td width=50%>$room</td></tr>";
3011 | 									echo "<tr><td>Patient Id: </td><td>$id</td></tr>";
3012 | 									echo "<p align=\"left\"><tr><td>Allotment Date: </td><td>$ad</td></tr>";
3013 | 									echo "<tr><td>Discharge Date: </td><td>$rd</td></tr>";
3014 | 									echo "<tr><td>Rent: </td><td>$cost</td></tr>";
3015 | 									echo "</table>";
3016 | 								}
3017 | 								
3018 | 								else if(!empty($result) && (mysql_num_rows($result)>1))
3019 | 								{
3020 | 									echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
3021 | 									echo "<div style=\"width:900px; float:left;\">";
3022 | 									
3023 | 									for($i=0;$i<mysql_num_rows($result);$i=$i+1)
3024 | 									{
3025 | 										$val=mysql_fetch_array($result);
3026 | 										$room=$val['Room_No'];
3027 | 										$id=$val['Patient_ID'];
3028 | 										$ad=$val['Allot_date'];
3029 | 										$rd=$val['Discharge_date'];
3030 | 			
3031 | 										echo "<div style=\"width:900px; float:left;\">";
3032 | 										echo "<h3 align=\"left\"><a href=\"?pid=room_al&id=$id&room=$room&ad=$ad&rd=$rd\">$room</a></h3>";										echo "<div style=\"width:900px; float:left;\">";
3033 | 										//echo "<h3 align=\"left\"><a href=\"?pid=room_al&id=$reg\">$reg</a></h3>";
3034 | 										//echo "<p align=\"left\"><b>Type:</b> $type<br/> ";
3035 | 										echo "</div>";
3036 | 									}
3037 | 								}
3038 | 							}	
3039 | 						}
3040 | 					}
3041 | 					
3042 | 					else if((!empty($search)) && ($search[0]!='Z' || $search[0]!='z'))
3043 | 					{
3044 | 						$find=mysql_query("select * from room where Type='$search'");
3045 | 						
3046 | 						if(mysql_num_rows($find)==0)
3047 | 							echo "<script type=\"text/javascript\">alert(\"Room not found!\") </script>";
3048 | 							
3049 | 						else
3050 | 						{
3051 | 							$result=mysql_query("select * from room a,room_given b where a.Type='$search' and a.Room_No=b.Room_No");
3052 | 							//echo mysql_num_rows($result);
3053 | 						
3054 | 							if(mysql_num_rows($result)==0)
3055 | 							{
3056 | 								echo "<script type=\"text/javascript\">alert(\"Room not alloted!\") </script>";
3057 | 							}
3058 | 		
3059 | 							else
3060 | 							{
3061 | 								if((!empty($result) && mysql_num_rows($result)==1))
3062 | 								{
3063 | 									echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
3064 | 									$val=mysql_fetch_array($result);
3065 | 									$room=$val['Room_No'];
3066 | 									$id=$val['Patient_ID'];
3067 | 									$ad=$val['Allot_date'];
3068 | 									$rd=$val['Discharge_date'];
3069 | 									$rent=mysql_query("select Rent from room where Room_No='$search'");
3070 | 									$price=mysql_fetch_array($rent);
3071 | 									$cost=$price['Rent'];
3072 | 									
3073 | 									
3074 | 									echo " <h3> Room Allotment History</h3> ";
3075 | 									echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;\">";
3076 | 									echo "<tr><td width=5%>Room No: </td><td width=50%>$room</td></tr>";
3077 | 									echo "<tr><td>Patient Id: </td><td>$id</td></tr>";
3078 | 									echo "<p align=\"left\"><tr><td>Allotment Date: </td><td>$ad</td></tr>";
3079 | 									echo "<tr><td>Discharge Date: </td><td>$rd</td></tr>";
3080 | 									echo "<tr><td>Rent: </td><td>$cost</td></tr>";
3081 | 									echo "</table>";
3082 | 								}
3083 | 								
3084 | 								else if(!empty($result) && (mysql_num_rows($result)>1))
3085 | 								{
3086 | 									echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
3087 | 									echo "<div style=\"width:900px; float:left;\">";
3088 | 									
3089 | 									echo " <h3> Select any room</h3> ";
3090 | 									
3091 | 									for($i=0;$i<mysql_num_rows($result);$i=$i+1)
3092 | 									{
3093 | 										$val=mysql_fetch_array($result);
3094 | 										$room=$val['Room_No'];
3095 | 										$id=$val['Patient_ID'];
3096 | 										$ad=$val['Allot_date'];
3097 | 										$rd=$val['Discharge_date'];
3098 | 			
3099 | 										echo "<div style=\"width:900px; float:left;\">";
3100 | 										echo "<h3 align=\"left\"><a href=\"?pid=room_al&id=$id&room=$room&ad=$ad&rd=$rd\">$reg</a></h3>";
3101 | 										//echo "<p align=\"left\"><b>Type:</b> $type<br/> ";
3102 | 										echo "</div>";
3103 | 									}
3104 | 								}
3105 | 							}	
3106 | 						}
3107 | 					}
3108 | 					
3109 | 					
3110 | 					else
3111 | 						echo "<script type=\"text/javascript\">alert(\"Enter Value!\") </script>";
3112 | 				}
3113 | 		
3114 | 				/* Room allotment finished */
3115 | 			}	
3116 | 			if(isset($_GET['pid']) && strcmp($_GET['pid'],"room_al") == 0)
3117 | 				{
3118 | 					echo "<br/><table border=0 cellpadding=1 cellspacing=1 height=5 style=\"\"><form action=\"login.php?pid=alloted_room&option=search_val\" method=\"post\">";
3119 | 					echo "<tr><td style=\"border-bottom: #FFFFFF\"><input name=\"search_val\" type=\"text\" size=50 placeholder=\"Search by Type, Room Id.\"></td>";
3120 | 					echo "<td style=\"border-bottom: #FFFFFF\"><input type=\"image\" name=\"commit\" value=\"submit\" src=\"images/search_button.gif\" style=\"height:30px\"></td></tr>";
3121 | 					echo "</form></table>";
3122 | 					
3123 | 					if(isset($_GET['id']) && isset($_GET['room']) && isset($_GET['ad']) || isset($_GET['rd']) )
3124 | 					{
3125 | 						$search=$_GET['room'];
3126 | 						//$result=mysql_query("select * from vehicle_given where Reg_No='$search'");
3127 | 						echo "<div><link rel=\"stylesheet\" href=\"css/style01.css\">";
3128 | 						//$val=mysql_fetch_array($result);
3129 | 						
3130 | 					//	$reg=$val['Reg_No'];
3131 | 						$id=$_GET['id'];
3132 | 						$room=$_GET['room'];
3133 | 						$ad=$_GET['ad']; 
3134 | 						$rd=$_GET['rd'];
3135 | 						
3136 | 						$rent=mysql_query("select Rent from room where Room_No='$search'");	
3137 | 						$cost=mysql_fetch_array($rent);
3138 | 						$price=$cost['Rent'];
3139 | 						
3140 | 						echo " <h3> Room Allotment History</h3> ";
3141 | 						echo "<table border=0 cellpadding=1 cellspacing=0 style=\"margin:5px 0px 0px -3px;\">";
3142 | 						echo "<tr><td width=5%>Reg No: </td><td width=50%>$room</td></tr>";
3143 | 						echo "<tr><td>Used by: </td><td>$id</td></tr>";
3144 | 						echo "<p align=\"left\"><tr><td>Allotment Date: </td><td>$ad</td></tr>";
3145 | 						echo "<tr><td>Return Date: </td><td>$rd</td></tr>";
3146 | 						echo "<tr><td>Rent: </td><td>$price</td></tr>";
3147 | 						echo "</table>";					
3148 | 					}
3149 | 				}
3150 | 		
3151 | }
3152 | 
3153 | /* KNS END */
3154 | ?>
3155 | </div>
3156 | </center>
3157 | </body>
3158 | </html>


--------------------------------------------------------------------------------