prepare("INSERT INTO services (name_en, name_ar, department_id, price, is_active) VALUES (?, ?, ?, ?, ?)");
$stmt->execute([
$_POST['name_en'],
$_POST['name_ar'],
$_POST['department_id'],
$_POST['price'],
isset($_POST['is_active']) ? 1 : 0
]);
$_SESSION['flash_message'] = '' . __('service_added_successfully') . '
';
} elseif ($_POST['action'] === 'edit_service') {
$stmt = $db->prepare("UPDATE services SET name_en = ?, name_ar = ?, department_id = ?, price = ?, is_active = ? WHERE id = ?");
$stmt->execute([
$_POST['name_en'],
$_POST['name_ar'],
$_POST['department_id'],
$_POST['price'],
isset($_POST['is_active']) ? 1 : 0,
$_POST['id']
]);
$_SESSION['flash_message'] = '' . __('service_updated_successfully') . '
';
} elseif ($_POST['action'] === 'delete_service') {
$stmt = $db->prepare("DELETE FROM services WHERE id = ?");
$stmt->execute([$_POST['id']]);
$_SESSION['flash_message'] = '' . __('service_deleted_successfully') . '
';
}
// Redirect after successful operation
header("Location: hospital_services.php");
exit;
} catch (PDOException $e) {
$_SESSION['flash_message'] = '' . __('error') . ': ' . $e->getMessage() . '
';
// Redirect even on error, so the user sees the message
header("Location: hospital_services.php");
exit;
}
}
}
// Session check logic (if needed in future)
// if (!isset($_SESSION['user_id'])) { ... }
$section = 'services';
$title = __('services');
require_once __DIR__ . '/includes/layout/header.php';
require_once __DIR__ . '/includes/pages/services.php';
require_once __DIR__ . '/includes/layout/footer.php';