<?php

namespace App\Controllers;

class SamplingController extends BaseController {
	
	public function index() {
		return view('sampling/dashboard');
	}
	
	public function viewAccess($accessnumber): string {
		$db = \Config\Database::connect();
		$sql = "select p.PATNUMBER, p.NAME, sr.HOSTORDERNUMBER, tu.SAMPLETYPE, ds.SHORTTEXT, tu.TUBESTATUS, ct.COLLSTATUS, ct.TUBECOMMENT from SP_TUBES tu
			left join SP_REQUESTS sr on tu.SP_ACCESSNUMBER=sr.SP_ACCESSNUMBER
			left join PATIENTS p on p.PATID=sr.PATID
			left join DICT_SAMPLES_TYPES ds on ds.SAMPCODE= tu.SAMPLETYPE
			left join cmod.dbo.CM_TUBES ct on ct.SAMPLETYPE=tu.SAMPLETYPE and ct.ACCESSNUMBER=tu.SP_ACCESSNUMBER
			where tu.SP_ACCESSNUMBER='$accessnumber'";
		$query = $db->query($sql);
		$results = $query->getResultArray();
		$hostordernumber = $results[0]['HOSTORDERNUMBER'];
		$data['data'] = $results;
	
		$sql = "select concat([Patient First Name],' ',[Patient Last Name]) as [Patient Full Name], [Visit Description], 
		[Treating Doctor], [Payer Name] from cmod.dbo.CM_HIS_ORDER where [Visit Number] = '$hostordernumber'";
		$query = $db->query($sql);
		$results = $query->getResultArray();

		if($results != null) {
			$data['patient_fullname'] = $results[0]['Patient Full Name'];
			$data['visit_description'] = $results[0]['Visit Description'];
			$data['treating_doctor'] = $results[0]['Treating Doctor'];
			$data['payer_name'] = $results[0]['Payer Name'];
		} else {
			$data['patient_fullname'] = "";
			$data['visit_description'] = "";
			$data['treating_doctor'] = "";
			$data['payer_name'] = "";
		}

		$data['accessnumber'] = $accessnumber;

        return view('sampling/dashboard_viewAccess', $data);
    }
	
	public function changePass() {
		if ($this->request->getMethod() === 'POST') {
			$password1 = $this->request->getVar('password1');
			$password2 = $this->request->getVar('password2');
			$data['password1'] = $password1;
			$data['password2'] = $password2;
			if($password1 == $password2) {	
				$password = password_hash($password1,PASSWORD_DEFAULT);
				$db = \Config\Database::connect();
				$sql = "update cmod.dbo.CM_USERS set PASSWORD='$password' where USERID='$userid'";
				$db->query($sql);
				return redirect()->to("/");
			} else {
				return redirect()->to("/auth/setpass/$userid")->with('flash_error', 'password is not the same.');
			}
		}
		return view('changePass');
    }
}