<?php include 'login.php'; validate_creds(); ?> <!DOCTYPEhtml> <html> <head> <title>Add Visit</title> </head> <body> <?php $visitid = $_REQUEST['VISITID']; $physicianid = $_REQUEST['PHYSICIANID']; $conn = new mysqli('stardock.cs.virginia.edu', 'cs4750igs3pw', 'fall2015', 'cs4750igs3pw'); if ($conn->connect_error) { die("Connection failed: " . $conn->connect_error); } else { if ($_REQUEST['SUBMIT']) { $sql = "INSERT INTO `Physician Visit` (`Physician ID`, `Visit ID`) VALUES (?, ?);"; $stmt = $conn->prepare($sql); $stmt->bind_param('dd', $physicianid, $visitid); if ($stmt->execute()) { echo "<h2>Physician added to visit successfully</h2>"; } else { echo "<h2>Failed to add visit: " . $conn->error . "</h2>"; } } } $conn->close(); ?>
function validate_creds_patient() { validate_creds(); if (!is_patient()) { header("Location: index.html"); exit; } }