Multiple improvements from IPPF related to layouts. #1081
Conversation
|
I see travis-ci reported a couple of syntax errors. I'll fix those along with whatever else comes up in the next day or two. |
|
wow. that is a lot of code/features :) |
custom/demographics_print.php
Outdated
| // Modified by Rod to be invoked from the custom/ directory by the normal | ||
| // demographics_print.php script when MSI Rapid Workflow is activated. | ||
|
|
||
| //The code below is copied from the original report, and fetches each data item in the demographic layout (if not 'unused') |
There was a problem hiding this comment.
See here for the new sleek headers we are using:
http://www.open-emr.org/wiki/index.php/How_to_Document_Your_Code_Properly#File-Level_DocBlock
(keep all the comments at the top of it)
custom/demographics_print.php
Outdated
|
|
||
| //The code below is copied from the original report, and fetches each data item in the demographic layout (if not 'unused') | ||
|
|
||
| // require_once("../interface/globals.php"); |
There was a problem hiding this comment.
Isn't this a security issue?
There was a problem hiding this comment.
Or are you using $encounter to control this (since I think there is no way to run this script unless it's included by another script that has the $encounter value set)?
There was a problem hiding this comment.
Actually this entire file should be omitted. I just realized it covers an obsolete case and will never even be invoked.
custom/demographics_print.php
Outdated
| require_once("$srcdir/formdata.inc.php"); | ||
| require_once("$srcdir/formatting.inc.php"); | ||
|
|
||
| if (empty($encounter)) die("Please select or create a visit!"); |
custom/demographics_print.php
Outdated
| $tmp = ''; | ||
| if ($currvalue) { | ||
| $lrow = sqlQuery("SELECT title FROM list_options " . | ||
| "WHERE list_id = '$list_id' AND option_id = '$currvalue' AND activity = 1"); |
custom/demographics_print.php
Outdated
| if ($currvalue) { | ||
| $lrow = sqlQuery("SELECT title FROM list_options " . | ||
| "WHERE list_id = '$list_id' AND option_id = '$currvalue' AND activity = 1"); | ||
| $tmp = xl_list_label($lrow['title']); |
custom/demographics_print.php
Outdated
| $lrow = sqlQuery("SELECT title FROM list_options " . | ||
| "WHERE list_id = '$list_id' AND option_id = '$currvalue' AND activity = 1"); | ||
| $tmp = xl_list_label($lrow['title']); | ||
| if (empty($tmp)) $tmp = "($currvalue)"; |
There was a problem hiding this comment.
either use text() or use $currescaped
custom/demographics_print.php
Outdated
| // long or multi-line text field | ||
| else if ($data_type == 3) { | ||
| $s .= "<textarea" . | ||
| " cols='$fld_length'" . |
There was a problem hiding this comment.
and would be good to put quote around this so it is cols='12' for example
custom/demographics_print.php
Outdated
| else if ($data_type == 3) { | ||
| $s .= "<textarea" . | ||
| " cols='$fld_length'" . | ||
| " rows='" . $frow['max_length'] . "'>" . |
custom/demographics_print.php
Outdated
| $tmp = ''; | ||
| if ($currvalue) { | ||
| $urow = sqlQuery("SELECT fname, lname, specialty FROM users " . | ||
| "WHERE id = '$currvalue'"); |
custom/demographics_print.php
Outdated
| if ($currvalue) { | ||
| $urow = sqlQuery("SELECT fname, lname, specialty FROM users " . | ||
| "WHERE id = '$currvalue'"); | ||
| $tmp = ucwords($urow['fname'] . " " . $urow['lname']); |
There was a problem hiding this comment.
best to not cap stuff since breaks with UTF8 encoding
should escpae this with text()
custom/demographics_print.php
Outdated
| $urow = sqlQuery("SELECT fname, lname, specialty FROM users " . | ||
| "WHERE id = '$currvalue'"); | ||
| $tmp = ucwords($urow['fname'] . " " . $urow['lname']); | ||
| if (empty($tmp)) $tmp = "($currvalue)"; |
There was a problem hiding this comment.
either use text() or use $currescaped
custom/demographics_print.php
Outdated
| if ($currvalue == $key) { | ||
| $tmp = $prow['name'] . ' ' . $prow['area_code'] . '-' . | ||
| $prow['prefix'] . '-' . $prow['number'] . ' / ' . | ||
| $prow['line1'] . ' / ' . $prow['city']; |
There was a problem hiding this comment.
escape all these with text()
custom/demographics_print.php
Outdated
| $prow['line1'] . ' / ' . $prow['city']; | ||
| } | ||
| } | ||
| if (empty($tmp)) $tmp = "($currvalue)"; |
There was a problem hiding this comment.
either use text() or use $currescaped
custom/demographics_print.php
Outdated
| } | ||
| if (empty($tmp)) $tmp = "($currvalue)"; | ||
| } | ||
| if ($tmp === '') $tmp = ' '; |
There was a problem hiding this comment.
the rest of this script needs adequate sql binding and html escaping
interface/forms/LBF/new.php
Outdated
| } | ||
|
|
||
| function warehouse_changed(sel) { | ||
| if (!confirm('<?php echo xl('Do you really want to change Warehouse?'); ?>')) { |
interface/forms/LBF/new.php
Outdated
| while ($irow = sqlFetchArray($ires)) { | ||
| $issueid = $irow['id']; | ||
| $issuedate = oeFormatShortDate(empty($irow['begdate']) ? $irow['date'] : $irow['begdate']); | ||
| echo " <option value='$issueid'"; |
There was a problem hiding this comment.
attr() around $issueid
There was a problem hiding this comment.
It's always numeric but I'll change these to avoid anyone having to think about it.
interface/forms/LBF/new.php
Outdated
| $issuedate = oeFormatShortDate(empty($irow['begdate']) ? $irow['date'] : $irow['begdate']); | ||
| echo " <option value='$issueid'"; | ||
| if ($issueid == $form_issue_id) echo " selected"; | ||
| echo ">$issuedate " . text($irow['title']) . "</option>\n"; |
There was a problem hiding this comment.
text() around $issuedate
interface/forms/LBF/new.php
Outdated
| if ($subtitle) { | ||
| // There is a group subtitle so show it. | ||
| echo "<tr><td class='bold' style='color:#0000ff' colspan='$CPR'>" . text($subtitle) . "</td></tr>\n"; | ||
| echo "<tr><td class='bold' style='height:4pt' colspan='$CPR'></td></tr>\n"; |
There was a problem hiding this comment.
attr() around $CPR in 2 lines above
interface/forms/LBF/new.php
Outdated
| if ($count) echo " </tr>\n"; | ||
| echo " <tr>\n"; | ||
| } | ||
| echo " <td width='$tdpct%'>"; |
There was a problem hiding this comment.
attr() around $tdpct
interface/forms/LBF/new.php
Outdated
| list($codetype, $code) = explode(':', $codestring); | ||
| $crow = sqlQuery("SELECT code_text FROM codes WHERE " . | ||
| "code_type = ? AND code = ? AND active = 1 " . | ||
| "ORDER BY id LIMIT 1", |
There was a problem hiding this comment.
What kind of codes is this for. If possibly includes external type codes, then should be using function in custom/code_types.inc.php
(in this case, the lookup_code_descriptions() function)
There was a problem hiding this comment.
OK. I assume this also works for native (internal) code types?
There was a problem hiding this comment.
yep, it works for all code types (internal and external) :)
interface/forms/LBF/new.php
Outdated
| " <input type='checkbox' name='form_fs_bill[$lino][del]' " . | ||
| "value='1'" . ($li['del'] ? " checked" : "") . " />\n"; | ||
| foreach ($li['hidden'] as $hname => $hvalue) { | ||
| echo " <input type='hidden' name='form_fs_bill[$lino][$hname]' value='" . attr($hvalue) . "' />\n"; |
There was a problem hiding this comment.
attr() around $hname
interface/forms/LBF/new.php
Outdated
| " <input type='checkbox' name='form_fs_prod[$lino][del]' " . | ||
| "value='1'" . ($li['del'] ? " checked" : "") . " />\n"; | ||
| foreach ($li['hidden'] as $hname => $hvalue) { | ||
| echo " <input type='hidden' name='form_fs_prod[$lino][$hname]' value='" . attr($hvalue) . "' />\n"; |
There was a problem hiding this comment.
attr() around $hname
interface/forms/LBF/new.php
Outdated
| if ($count) echo " </tr>\n"; | ||
| echo " <tr>\n"; | ||
| } | ||
| echo " <td width='$tdpct%'>"; |
There was a problem hiding this comment.
wrap $tdpct with attr()
interface/forms/LBF/new.php
Outdated
| list($codetype, $code) = explode(':', $codestring); | ||
| $crow = sqlQuery("SELECT code_text FROM codes WHERE " . | ||
| "code_type = ? AND code = ? AND active = 1 " . | ||
| "ORDER BY id LIMIT 1", |
There was a problem hiding this comment.
What kind of codes is this for. If possibly includes external type codes, then should be using function in custom/code_types.inc.php
(in this case, the lookup_code_descriptions() function)
There was a problem hiding this comment.
Thanks (as above).
interface/forms/LBF/new.php
Outdated
| " <input type='checkbox' name='form_fs_bill[$lino][del]' " . | ||
| "value='1'" . ($li['del'] ? " checked" : "") . " />\n"; | ||
| foreach ($li['hidden'] as $hname => $hvalue) { | ||
| echo " <input type='hidden' name='form_fs_bill[$lino][$hname]' value='" . attr($hvalue) . "' />\n"; |
There was a problem hiding this comment.
attr() around $hname
interface/forms/LBF/printable.php
Outdated
| td { | ||
| font-family: Arial; | ||
| font-weight: normal; | ||
| font-size: <?php echo $FONTSIZE; ?>pt; |
There was a problem hiding this comment.
text() around $FONTSIZE
| $sanitize_all_escapes = true; | ||
|
|
||
| require_once("../../interface/globals.php"); | ||
| require_once("$srcdir/formdata.inc.php"); |
| "WHERE list_id = 'warehouse' AND activity = 1 ORDER BY seq, title"); | ||
| $wh .= "<option value=''></option>"; | ||
| while ($lrow = sqlFetchArray($lres)) { | ||
| $wh .= "<option value='" . $lrow['option_id'] . "'"; |
| // Disable this warehouse option if not selected and has no inventory. | ||
| if (!$has_inventory) $wh .= " disabled"; | ||
| } | ||
| $wh .= ">" . xl_list_label($lrow['title']) . "</option>"; |
| "WHERE c.code_type = ? AND c.code = ? LIMIT 1", | ||
| array($pricelevel, $code_types[$codetype]['id'], $code)); | ||
| $desc = $crow['code_text']; | ||
| $price = empty($crow['pr_price']) ? 0 : (0 + $crow['pr_price']); |
There was a problem hiding this comment.
shouldn't this use the standard code collector mechanism in custom/code_types.inc.php
There was a problem hiding this comment.
Yep another one of these. A bit concerning is that external codes do not seem to support price levels.
library/options.inc.php
Outdated
| if ($count) echo "</tr>"; | ||
| echo "<tr>"; | ||
| } | ||
| echo "<td width='$tdpct%'>"; |
library/options.inc.php
Outdated
| "ct.ct_key = '$codetype' AND " . | ||
| "c.code_type = ct.ct_id AND " . | ||
| "c.code = '$code' AND c.active = 1 " . | ||
| "ORDER BY c.id LIMIT 1"; |
There was a problem hiding this comment.
looks like another place where should be using custom/code_types.inc.php function here in order to support external codes
sql/5_0_0-to-5_0_1_upgrade.sql
Outdated
| grp_products varchar(4095) not null default '', | ||
| grp_diags varchar(4095) not null default '', | ||
| PRIMARY KEY (grp_form_id, grp_group_id) | ||
| ) ENGINE=MyISAM; |
There was a problem hiding this comment.
use InnoDB and not MyISAM
sql/database.sql
Outdated
| grp_products varchar(4095) not null default '', | ||
| grp_diags varchar(4095) not null default '', | ||
| PRIMARY KEY (grp_form_id, grp_group_id) | ||
| ) ENGINE=MyISAM; |
sql/database.sql
Outdated
| INSERT INTO `list_options` (`list_id`, `option_id`, `title`, `seq`, `is_default`) VALUES ('Sexual_Orientation','Les','Lesbian' ,40,0); | ||
| INSERT INTO `list_options` (`list_id`, `option_id`, `title`, `seq`, `is_default`) VALUES ('Sexual_Orientation','Msm','MSM' ,50,0); | ||
| INSERT INTO `list_options` (`list_id`, `option_id`, `title`, `seq`, `is_default`) VALUES ('Sexual_Orientation','Oth','Other' ,60,0); | ||
| INSERT INTO `list_options` (`list_id`, `option_id`, `title`, `seq`, `is_default`) VALUES ('Sexual_Orientation','NS' ,'Not Specified',70,0); |
There was a problem hiding this comment.
Is the Gender List and Sexual_Orientation List supposed to be here. It's not in the upgrade script?
There was a problem hiding this comment.
Evidently not since not in any layouts.
|
review done |
|
I have added a commit with changes for review comments and a few other things. PSR4 for new scripts is not addressed yet, would prefer to do that afterwards to make it easier to see what's just been changed. |
|
@sunsetsystems , |
|
@bradymiller that's fine but with the master being a moving target there are now some conflicts. Do you want me to rebase my branch locally and make a new PR? |
|
hi @sunsetsystems , |
A summary of what's new: o Layout groups may be nested, i.e. each group can have sub-groups. o Layouts and their groups have properties that may be edited in the layout editor. o Encounter LBFs may specify sections for direct entry of services, products and diagnoses. o "Case Management" feature including the ability to link encounter forms to issues, and in the issue window a tab for each related encounter form. o New layout edit option to specify initially-open groups. o Implemented design-time ACO for LBF encounter forms. o Improved printing of encounter LBFs. o Feature to print a demographics profile with data filled in for a specified patient. o Improvements to printed referrals. o Provider attribute and selector for LBF encounter forms. o New layout field type for a single checkbox. o Support for demographics/history values in LBF static text fields. o Auto-delete of shared attributes not used by any other form when a form is deleted. o Assorted layout editor improvements. o Added "Save and Continue" button to LBF visit forms. o Added sorting to export of lists and layouts. o Condition tests in LBF fields now support setting a value instead of just skipping the field. o Added field condition support to demographics and history. o Assorted bug fixes.
|
@bradymiller OK this has been done. |
|
BTW I had to do a lot of repetitive changes for the new themes. Can't we reduce a lot of the redundancy among the different style_*.css files? |
|
regarding the theme overload, hopefully will get SCSS up and running soon (so would be a central upstream script for those themes to change in 1 place, that would then spit out all the themes). @robertdown may have more to say on this. |
|
btw, the recent new themes and theme cleanup are basically the first step in a complete codebase responsive bootstrap revolution that @zbig01 is working on. Very exciting and should start bringing in those changes into the codebase very soon. |
|
hi @sunsetsystems , |
| @@ -617,3 +617,47 @@ UPDATE `user_settings` SET `setting_value`='style_light.css' WHERE `setting_labe | |||
| OR `setting_value`='style_purple.css' | |||
| OR `setting_value`='style_radiant.css' | |||
| OR `setting_value`='style_sky_blue.css'); | |||
|
|
|||
| #IfNotColumnType facility country_code varchar(30) | |||
| ALTER TABLE `facility` CHANGE `country_code` `country_code` varchar(30) NOT NULL default ''; | |||
There was a problem hiding this comment.
(right after brought into codebase noted the following :) )
It doesn't look like this change is addressed in database.sql ?
-brady
There was a problem hiding this comment.
I'll push a fix for it. Thanks!
A summary of what's new:
o Layout groups may be nested, i.e. each group can have sub-groups.
o Layouts and their groups have properties that may be edited in the layout editor.
o Encounter LBFs may specify sections for direct entry of services, products and diagnoses.
o "Case Management" feature including the ability to link encounter forms to issues,
and in the issue window a tab for each related encounter form.
o New layout edit option to specify initially-open groups.
o Implemented design-time ACO for LBF encounter forms.
o Improved printing of encounter LBFs.
o Feature to print a demographics profile with data filled in for a specified patient.
o Improvements to printed referrals.
o Provider attribute and selector for LBF encounter forms.
o New layout field type for a single checkbox.
o Support for demographics/history values in LBF static text fields.
o Auto-delete of shared attributes not used by any other form when a form is deleted.
o Assorted layout editor improvements.
o Added "Save and Continue" button to LBF visit forms.
o Added sorting to export of lists and layouts.
o Condition tests in LBF fields now support setting a value instead of just skipping the field.
o Added field condition support to demographics and history.
o Assorted bug fixes.