$user = getUsername($userId);
$acl_allow = acl_check('patients', 'med', $user);
if ($acl_allow) {
$provider_username = getProviderUsername($provider_id);
$strQuery = "UPDATE `prescriptions` set\n provider_id = " . add_escape_custom($provider_id) . ", \n start_date = '" . add_escape_custom($startDate) . "',\n form = '" . add_escape_custom($drug_form) . "',\n drug = '" . add_escape_custom($drug) . "', \n dosage = '" . add_escape_custom($dosage) . "', \n unit = '" . add_escape_custom($drug_units) . "', \n route = '" . add_escape_custom($drug_route) . "', \n `interval` = '" . add_escape_custom($drug_interval) . "', \n substitute = '" . add_escape_custom($substitute) . "',\n quantity = '" . add_escape_custom($quantity) . "', \n refills = '" . add_escape_custom($per_refill) . "', \n medication = '" . add_escape_custom($medication) . "',\n date_modified = '" . date('Y-m-d') . "',\n size = '" . add_escape_custom($size) . "', \n per_refill = '" . add_escape_custom($p_refill) . "',\n note = '" . add_escape_custom($note) . "'\n WHERE id = ?";
$result = sqlStatement($strQuery, array($id));
$list_result = 1;
if ($medication) {
$select_medication = "SELECT * FROM `lists` \n WHERE `type` LIKE 'medication'\n AND `title` LIKE ? \n AND `pid` = ?";
$result1 = sqlQuery($select_medication, array($drug, $patient_id));
if (!$result1) {
$list_query = "insert into lists(date,begdate,type,activity,pid,user,groupname,title) \n values (now(),cast(now() as date),'medication',1," . add_escape_custom($patientId) . ",'" . add_escape_custom($user) . "','','" . add_escape_custom($drug) . "')";
$list_result = sqlStatement($list_query);
}
}
$device_token_badge = getDeviceTokenBadge($provider_username, 'prescription');
$badge = $device_token_badge['badge'];
$deviceToken = $device_token_badge['device_token'];
if ($deviceToken) {
$notification_res = notification($deviceToken, $badge, $msg_count = 0, $apt_count = 0, $message = 'Update Prescription Notification!');
}
if ($result !== FALSE && $list_result !== FALSE) {
$xml_string .= "<status>0</status>";
$xml_string .= "<reason>The Patient prescription has been updated</reason>";
if ($notification_res) {
$xml_array['notification'] = 'Update Appointment Notification(' . $notification_res . ')';
} else {
$xml_array['notification'] = 'Notificaiotn Failed.';
}
} else {
$xml_string .= "<status>-1</status>";
$type = "file_url";
$size = '';
$date = date('Y-m-d H:i:s');
$url = '';
$hash = '';
$image_path = $sitesDir . "{$site}/documents/{$patient_id}";
if (!file_exists($image_path)) {
mkdir($image_path);
}
$image_date = date('YmdHis');
$image_root_path = $image_path . "/" . $image_date . "." . $ext;
file_put_contents($image_root_path, $image_content);
$res = addNewDocument($image_date . "." . $ext, 'image/png', $image_root_path, 0, filesize($image_root_path), $userId, $patient_id, $cat_id, $higher_level_path = '', $path_depth = '1');
$lab_report_catid = document_category_to_id("Lab Report");
if ($cat_id == $lab_report_catid) {
$device_token_badge = getDeviceTokenBadge($provider_username, 'labreport');
$badge = $device_token_badge['badge'];
$deviceToken = $device_token_badge['device_token'];
if ($deviceToken) {
$notification_res = notification($deviceToken, $badge, $msg_count = 0, $apt_count = 0, $message = 'New Labreport Notification!');
}
}
if ($res) {
$xml_array['status'] = "0";
$xml_array['reason'] = "Document added successfully";
if ($notification_res) {
$xml_array['notification'] = 'Add Patient document Notification(' . $notification_res . ')';
} else {
$xml_array['notification'] = 'Notificaiotn Failed.';
}
} else {
$patientId = $_POST['patientId'];
$admin_id = $_POST['uprovider_id'];
$facility = $_POST['pc_facility'];
$pc_billing_location = $_POST['pc_billing_location'];
$pc_duration = $_POST['pc_duration'];
$app_status = $app_status == 'p' ? '+' : $app_status;
$endTime = date('H:i:s', strtotime($_POST['appointmentTime']) + $pc_duration);
if ($userId = validateToken($token)) {
$user = getUsername($userId);
$username = $user;
$provider_username = getProviderUsername($admin_id);
$acl_allow = acl_check('patients', 'appt', $username);
if ($acl_allow) {
$strQuery = "UPDATE openemr_postcalendar_events SET \n pc_title = '" . add_escape_custom($pc_title) . "', \n pc_hometext = '" . add_escape_custom($pc_hometext) . "' , \n pc_catid = '" . add_escape_custom($pc_catid) . "' , \n pc_eventDate = '" . add_escape_custom($appointmentDate) . "', \n pc_startTime = '" . add_escape_custom($appointmentTime) . "', \n pc_endTime = '" . add_escape_custom($endTime) . "', \n pc_aid = '" . add_escape_custom($admin_id) . "', \n pc_facility = '" . add_escape_custom($facility) . "',\n pc_billing_location = '" . add_escape_custom($pc_billing_location) . "',\n pc_duration = '" . add_escape_custom($pc_duration) . "',\n pc_pid = '" . add_escape_custom($patientId) . "',\n pc_apptstatus = '" . add_escape_custom($app_status) . "' \n WHERE pc_eid=?";
$result = sqlStatement($strQuery, array($appointmentId));
$device_token_badge = getDeviceTokenBadge($provider_username, 'appointment');
$badge = $device_token_badge['badge'];
$deviceToken = $device_token_badge['device_token'];
if ($deviceToken) {
$notification_res = notification($deviceToken, $badge, $msg_count = 0, $apt_count = 0, $message = 'Appointment Updated!');
}
if ($result !== FALSE) {
$xml_array['status'] = 0;
$xml_array['reason'] = 'The Appointment has been updated.';
if ($notification_res) {
$xml_array['notification'] = 'Update Appointment Notification(' . $notification_res . ')';
} else {
$xml_array['notification'] = 'Notificaiotn Failed.';
}
} else {
$xml_array['status'] = -1;
if ($userId = validateToken($token)) {
$user = getUsername($userId);
$acl_allow = acl_check('patients', 'notes', $user);
if ($acl_allow) {
$provider_id = $userId;
$assigned_to_array = explode(',', $assigned_to);
$_SESSION['authUser'] = $user;
$_SESSION['authProvider'] = 'Default';
foreach ($assigned_to_array as $assignee) {
if ($message_status == 'Done' && !empty($message_id)) {
updatePnoteMessageStatus($message_id, $message_status);
$result = 1;
break;
} else {
$result = addPnote($patientId, $newtext, $authorized, $activity, $title, $assignee, $datetime = '', $message_status);
$device_token_badge = getDeviceTokenBadge($assignee, 'message');
$badge = $device_token_badge['badge'];
$deviceToken = $device_token_badge['device_token'];
if ($deviceToken) {
$notification_res = notification($deviceToken, $badge, $msg_count = 0, $apt_count = 0, $message = 'New Message Notification!');
}
}
}
if ($result) {
$xml_string .= "<status>0</status>";
$xml_string .= "<reason>Message send successfully</reason>";
if ($notification_res) {
$xml_string .= "<notification>Notification({$notification_res}) Sent.</notification>";
} else {
$xml_string .= "<notification>Notification Failed.</notification>";
}
