<?php
require_once 'setup.php';
session_start();
if (isset($_POST['page']) && ctype_alnum($_POST['page'])) {
// If someone tries to send something odd then return to index
$page = $_POST['page'];
} else {
$_SESSION['error'] = "An error has occurred, please try again.";
header('Location:index.php');
exit;
}
$trial = new eCRF($page);
if (isset($_SESSION['user'])) {
$user = $_SESSION['user'];
$loggedIn = $trial->addUser($user);
if (!$loggedIn) {
$_SESSION['error'] = "Log in expired due to inactivity";
header("Location:index.php?expire=1");
exit;
}
}
if (!isset($_POST['csrfToken']) || !isset($_SESSION['csrfToken']) || $_POST['csrfToken'] != $_SESSION['csrfToken']) {
$_SESSION['error'] = 'A token error has occurred, please try again.';
if (isset($_SESSION['csrfToken'])) {
unset($_SESSION['csrfToken']);
}
header("Location:index.php");
exit;
}
if (isset($_SESSION['csrfToken'])) {
session_start();
unset($_SESSION['newTrialID']);
unset($_SESSION['returnTo']);
if (isset($_GET['expire'])) {
$_SESSION['error'] = "Log in expired due to inactivity";
unset($_SESSION['user']);
}
$allowed = array("_");
if (isset($_GET['page']) && ctype_alnum(str_replace($allowed, '', $_GET['page']))) {
// If someone tries to send something odd then just go to default
$page = $_GET['page'];
} else {
$page = NULL;
}
$loggedIn = false;
$trial = new eCRF($page);
// Create trial object
if (isset($_SESSION['user']) && $_SESSION['user']) {
// Add current user to trial object (if they exist)
$user =& $_SESSION['user'];
$loggedIn = $trial->addUser($user);
// On adding user it checks to see if user has been expired and if not renews their last logon time
if (!$loggedIn) {
unset($_SESSION['user']);
header("Location:index.php?expire=1");
exit;
}
if (!isset($_GET['keepData']) && $trial->user->isLinked()) {
$trial->addRecord();
$complete = $trial->checkComplete('core');
if (!$complete) {
<?php
if (php_sapi_name() !== 'cli') {
header('Location:index.php');
exit;
}
require_once 'setup.php';
session_start();
if (isset($argv[1]) && ctype_alnum($argv[1])) {
// If someone tries to send something odd then just go to default
$page = $argv[1];
} else {
$page = NULL;
}
$loggedIn = false;
$trial = new eCRF($page);
// Create trial object
$user = new eCRFUser(11);
$trial->addUser($user);
$_SESSION['user'] = $user;
if ($page) {
$include = basename($page);
// Should be unneccesary, but you never know!
require "./includes/{$include}.php";
}
<?php
require_once 'setup.php';
session_start();
if (isset($_SESSION['user']) && isset($_POST['page'])) {
$user = $_SESSION['user'];
$page = $_POST['page'];
$trial = new eCRF($page);
$loggedIn = $trial->addUser($user);
if (!$loggedIn) {
$_SESSION['error'] = "Log in expired due to inactivity";
header("Location:index.php?expire=1");
exit;
}
} else {
$_SESSION['error'] = "Log in expired due to inactivity";
header("Location:index.php?expire=1");
exit;
}
if (!isset($_POST['csrfToken']) || !isset($_SESSION['csrfToken']) || $_POST['csrfToken'] != $_SESSION['csrfToken']) {
$_SESSION['error'] = 'A token error has occurred, please try again.';
if (isset($_SESSION['csrfToken'])) {
unset($_SESSION['csrfToken']);
}
header("Location:index.php");
exit;
}
if (isset($_SESSION['csrfToken'])) {
unset($_SESSION['csrfToken']);
}
$link_id = $trial->addRecord();
<?php
require_once 'setup.php';
session_start();
$page = "core";
$trial = new eCRF($page);
if (isset($_SESSION['user'])) {
$user = $_SESSION['user'];
$loggedIn = $trial->addUser($user);
} else {
$loggedIn = false;
}
if (!$loggedIn) {
$_SESSION['error'] = "Log in expired due to inactivity";
header("Location:index.php?expire=1");
exit;
}
if (!isset($_POST['csrfToken']) || !isset($_SESSION['csrfToken']) || $_POST['csrfToken'] != $_SESSION['csrfToken']) {
$_SESSION['error'] = 'A token error has occurred, please try again.';
if (isset($_SESSION['csrfToken'])) {
unset($_SESSION['csrfToken']);
}
header("Location:index.php");
exit;
}
if (isset($_SESSION['csrfToken'])) {
unset($_SESSION['csrfToken']);
}
$include = $trial->checkPageLogin($page);
if (!$include) {
$_SESSION['error'] = "Unauthorised access attempted.";
echo "<div class=\"container well\" style=\"background-color:#FFFFFF;\">";
echo "<h3>Protocol deviations</h3>";
if ($user->isCentralAdmin()) {
echo "<h5>If you wish to remove a protocol deviation form then please select and click 'Delete' - the form will be stored for audit purposes.</h5>";
echo "<form action=\"process.php\" method=\"POST\">";
}
echo '<table class="table table-striped table-bordered table-hover dataTable"><thead>';
echo '<tr><th scope="col">Centre</th><th scope="col">' . Config::get('idName') . '</th><th scope="col">Deviation</th>';
echo '<th scope="col">Description</th><th scope="col">Reported time</th><th scope="col">Reported by</th>';
if ($user->isCentralAdmin()) {
echo '<th>Select</th>';
}
echo '</tr></thead>';
echo "<tbody>\n";
foreach ($result->rows as $rowv) {
$e = new eCRF('violation');
$e->addRecord($rowv->link_id);
foreach ($e->getViolations() as $v) {
if ($v->isActive()) {
echo "<tr class=\"clickable\"><td>{$rowv->centre_name}</td><td>{$rowv->trialid}</td>";
$typearray = array('no' => 'Participant in the intervention group did NOT receive CPAP', 'low' => 'CPAP started at a dose other than 5cmH2O', 'stop' => 'CPAP administered for less than 4 hours or with significant interruption', 'wrong' => 'Participant in the usual care group DID receive CPAP');
$output = '<td><ul>';
foreach ($typearray as $type => $title) {
if ($v->{$type . 'cpap'}) {
$output .= "<li><b>{$title}</b></li>";
$output .= "<ul>";
foreach ($v->{$type . 'cpapreason'} as $reason) {
$sql = "SELECT option_text FROM {$type}cpapreason WHERE option_value = ?";
$pA = array('i', $reason);
$result = DB::query($sql, $pA);
$output .= "<li>{$result->option_text}</li>";
$pages[] = $row->name;
}
}
// If valid input page is passed via GET use it, if not reset
if (isset($_GET['page']) && in_array($_GET['page'], $pages)) {
$page = $_GET['page'];
} else {
header('Location:index.php');
exit;
}
if (isset($_SESSION['user'])) {
/**
* @var $user eCRFUser
*/
$user = $_SESSION['user'];
$trial = new eCRF($page);
$loggedIn = $trial->addUser($user);
if (!$loggedIn) {
$_SESSION['error'] = "Log in expired due to inactivity";
header("Location:index.php?expire=1");
exit;
}
} else {
$_SESSION['error'] = "Log in expired due to inactivity";
header("Location:index.php?expire=1");
exit;
}
$link_id = $trial->addRecord();
$include = $trial->checkPageLogin($page);
// Generate correct include file, assuming user has correct privilege
if (!$link_id || !isset($include) || $include != $page) {
<?php
require_once 'setup.php';
session_start();
if (isset($_SESSION['user']) && isset($_POST['page'])) {
$user = $_SESSION['user'];
$page = $_POST['page'];
$trial = new eCRF($page);
$loggedIn = $trial->addUser($user);
if (!$loggedIn) {
$_SESSION['error'] = "Log in expired due to inactivity";
header("Location:index.php?expire=1");
exit;
}
} else {
$_SESSION['error'] = "Log in expired due to inactivity";
header("Location:index.php?expire=1");
exit;
}
$link_id = $trial->addRecord();
if (!$link_id) {
$_SESSION['error'] = "No record linked to this user.";
header('Location:index.php');
exit;
} elseif (!isset($_POST['link_id']) || $link_id != $_POST['link_id']) {
$_SESSION['error'] = "An error has occurred, please reselect the patient you wish to discontinue.";
header('Location:index.php');
exit;
}
$include = $trial->checkPageLogin($page);
if (!$include) {
$sql .= implode(' AND ', $whereArr);
$numParam = count($params);
$paramType = str_pad('', $numParam, 'i');
array_unshift($params, $paramType);
$result = DB::query($sql, $params);
} else {
$result = DB::query($sql);
}
$emailArr = array();
if ($result->getRows()) {
$emailArr = $result->getArray('email');
}
echo json_encode($emailArr);
exit;
}
$trial = new eCRF($page);
if (isset($_SESSION['user'])) {
$user = $_SESSION['user'];
$loggedIn = $trial->addUser($user);
if (!$loggedIn) {
throw new Exception("Your session has timed out, please log in again.", 1);
}
} else {
throw new Exception("Your session has timed out, please log in again.", 1);
}
if (!$trial->addRecord()) {
// Bind a record to the trial, if it fails then throw exception
throw new Exception("No record is linked with this user, please try selecting a different record.");
}
if ($trial->user->isLocal()) {
if ($trial->record->getCentre() != $trial->user->getCentre()) {
