Creating a Hospital Management System involves several components, including a MySQL database schema, file structure, layout design using Bootstrap 5, and complete PHP scripts for user authentication and management. Below is a comprehensive guide to help you set up your system.
Project Introduction
The Hospital Management System is a comprehensive web application designed to streamline the management of hospital operations. This platform allows healthcare professionals, including doctors, nurses, and administrative staff, to manage patient records, appointments, billing, and inventory efficiently. With features for medical records, laboratory tests, and emergency case management, the system aims to enhance patient care and improve operational efficiency within the hospital.
Project Objectives
- To develop a secure and user-friendly platform for managing hospital operations and patient care.
- To implement a comprehensive database schema that supports user management, patient records, appointment scheduling, and billing.
- To provide functionalities for managing medical records, laboratory tests, and pharmacy inventory.
- To facilitate notifications for important updates and reminders for healthcare staff and patients.
- To create a responsive design that enhances user experience across various devices.
- To ensure efficient management of emergency cases and triage levels for timely patient care.
Project Modules
- User Management: Handles user registration, authentication, and role assignments (admin, doctor, nurse, admin staff, patient).
- Patient Management: Manages patient records, including personal information, medical history, and allergies.
- Appointment Management: Facilitates scheduling and management of patient appointments with doctors.
- Medical Records Management: Logs and maintains medical records for patients, including descriptions and record dates.
- Billing Management: Handles billing for patients, including payment statuses and amounts.
- Inventory Management: Manages hospital inventory, including medical supplies and medications.
- Laboratory Tests Management: Tracks laboratory tests for patients, including test names and results.
- Pharmacy Management: Manages medications, dosages, and quantities available in the hospital pharmacy.
- Staff Management: Manages hospital staff records, including positions, hire dates, and salaries.
- Emergency Case Management: Handles emergency cases, including triage levels and case descriptions.
- Notification System: Sends alerts and messages to users regarding important updates and actions required.
1. MySQL Database Schema
CREATE DATABASE hospital_management;
USE hospital_management;
-- Table for users
CREATE TABLE users (
id INT AUTO_INCREMENT PRIMARY KEY,
username VARCHAR(50) NOT NULL UNIQUE,
password VARCHAR(255) NOT NULL,
email VARCHAR(100) NOT NULL UNIQUE,
role ENUM('admin', 'doctor', 'nurse', 'admin_staff', 'patient') DEFAULT 'patient',
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
-- Table for patients
CREATE TABLE patients (
id INT AUTO_INCREMENT PRIMARY KEY,
user_id INT NOT NULL,
first_name VARCHAR(50) NOT NULL,
last_name VARCHAR(50) NOT NULL,
date_of_birth DATE NOT NULL,
gender ENUM('male', 'female', 'other') NOT NULL,
contact_number VARCHAR(15),
address VARCHAR(255),
medical_history TEXT,
allergies TEXT,
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE
);
-- Table for appointments
CREATE TABLE appointments (
id INT AUTO_INCREMENT PRIMARY KEY,
patient_id INT NOT NULL,
doctor_id INT NOT NULL,
appointment_date DATETIME NOT NULL,
status ENUM('scheduled', 'completed', 'canceled') DEFAULT 'scheduled',
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
FOREIGN KEY (patient_id) REFERENCES patients(id) ON DELETE CASCADE,
FOREIGN KEY (doctor_id) REFERENCES users(id) ON DELETE CASCADE
);
-- Table for medical records
CREATE TABLE medical_records (
id INT AUTO_INCREMENT PRIMARY KEY,
patient_id INT NOT NULL,
record_date DATE NOT NULL,
description TEXT NOT NULL,
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
FOREIGN KEY (patient_id) REFERENCES patients(id) ON DELETE CASCADE
);
-- Table for billing
CREATE TABLE billing (
id INT AUTO_INCREMENT PRIMARY KEY,
patient_id INT NOT NULL,
amount DECIMAL(10, 2) NOT NULL,
status ENUM('paid', 'unpaid', 'pending') DEFAULT 'unpaid',
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
FOREIGN KEY (patient_id) REFERENCES patients(id) ON DELETE CASCADE
);
-- Table for inventory
CREATE TABLE inventory (
id INT AUTO_INCREMENT PRIMARY KEY,
item_name VARCHAR(100) NOT NULL,
quantity INT NOT NULL,
reorder_level INT NOT NULL,
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
-- Table for laboratory tests
CREATE TABLE lab_tests (
id INT AUTO_INCREMENT PRIMARY KEY,
patient_id INT NOT NULL,
test_name VARCHAR(100) NOT NULL,
test_date DATE NOT NULL,
results TEXT,
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
FOREIGN KEY (patient_id) REFERENCES patients(id) ON DELETE CASCADE
);
-- Table for pharmacy
CREATE TABLE pharmacy (
id INT AUTO_INCREMENT PRIMARY KEY,
medication_name VARCHAR(100) NOT NULL,
dosage VARCHAR(50) NOT NULL,
quantity INT NOT NULL,
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
-- Table for staff management
CREATE TABLE staff (
id INT AUTO_INCREMENT PRIMARY KEY,
user_id INT NOT NULL,
position VARCHAR(100) NOT NULL,
hire_date DATE NOT NULL,
salary DECIMAL(10, 2) NOT NULL,
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE
);
-- Table for emergency cases
CREATE TABLE emergency_cases (
id INT AUTO_INCREMENT PRIMARY KEY,
patient_id INT NOT NULL,
case_description TEXT NOT NULL,
triage_level ENUM('low', 'medium', 'high') NOT NULL,
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
FOREIGN KEY (patient_id) REFERENCES patients(id) ON DELETE CASCADE
);
-- Table for notifications
CREATE TABLE notifications (
id INT AUTO_INCREMENT PRIMARY KEY,
user_id INT NOT NULL,
message TEXT NOT NULL,
is_read BOOLEAN DEFAULT FALSE,
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE
);
2. File and Folder Structure
hospital_management_system/
│
├── config/
│ └── db.php
│
├── public/
│ ├── index.php
│ ├── login.php
│ ├── register.php
│ ├── dashboard.php
│ ├── patient_management.php
│ ├── appointment_management.php
│ ├── medical_records.php
│ ├── billing.php
│ ├── inventory.php
│ ├── lab_tests.php
│ ├── pharmacy.php
│ ├── staff_management.php
│ ├── emergency_management.php
│ ├── notifications.php
│ └── admin_dashboard.php
│
├── includes/
│ ├── header.php
│ ├── footer.php
│ └── functions.php
│
├── assets/
│ ├── css/
│ │ └── styles.css
│ ├── js/
│ │ └── scripts.js
│ └── images/
│
└── vendor/
└── (Bootstrap and other libraries)
3. Layout Based Design with Bootstrap 5
Header (includes/header.php)
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link href="https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css" rel="stylesheet">
<link rel="stylesheet" href="assets/css/styles.css">
<title>Hospital Management System</title>
</head>
<body>
<div class="container">
<header class="my-4">
<h1>Hospital Management System</h1>
</header>
<nav class="navbar navbar-expand-lg navbar-light bg-light">
<div class="container-fluid">
<a class="navbar-brand" href="index.php">Home</a>
<button class="navbar-toggler" type="button" data-bs-toggle="collapse" data-bs-target="#navbarNav" aria-controls="navbarNav" aria-expanded="false" aria-label="Toggle navigation">
<span class="navbar-toggler-icon"></span>
</button>
<div class="collapse navbar-collapse" id="navbarNav">
<ul class="navbar-nav">
<li class="nav-item">
<a class="nav-link" href="patient_management.php">Patient Management</a>
</li>
<li class="nav-item">
<a class="nav-link" href="appointment_management.php">Appointment Management</a>
</li>
<li class="nav-item">
<a class="nav-link" href="medical_records.php">Medical Records</a>
</li>
<li class="nav-item">
<a class="nav-link" href="billing.php">Billing</a>
</li>
<li class="nav-item">
<a class="nav-link" href="inventory.php">Inventory</a>
</li>
<li class="nav-item">
<a class="nav-link" href="lab_tests.php">Lab Tests</a>
</li>
<li class="nav-item">
<a class="nav-link" href="pharmacy.php">Pharmacy</a>
</li>
<li class="nav-item">
<a class="nav-link" href="staff_management.php">Staff Management</a>
</li>
<li class="nav-item">
<a class="nav-link" href="emergency_management.php">Emergency Management</a>
</li>
<li class="nav-item">
<a class="nav-link" href="notifications.php">Notifications</a>
</li>
<li class="nav-item">
<a class="nav-link" href="login.php">Login</a>
</li>
<li class="nav-item">
<a class="nav-link" href="register.php">Register</a>
</li>
</ul>
</div>
</div>
</nav>
<main class="my-4">
Footer (includes/footer.php)
</main>
<footer class="text-center my-4">
<p>© 2023 Hospital Management System. All rights reserved.</p>
</footer>
</div>
<script src="https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js"></script>
</body>
</html>
4. PHP Code for User Authentication
Registration (public/register.php)
<?php
require '../config/db.php';
require '../includes/header.php';
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$username = $_POST['username'];
$email = $_POST['email'];
$password = password_hash($_POST['password'], PASSWORD_DEFAULT);
$role = $_POST['role'];
$stmt = $conn->prepare("INSERT INTO users (username, email, password, role) VALUES (?, ?, ?, ?)");
$stmt->bind_param("ssss", $username, $email, $password, $role);
$stmt->execute();
$stmt->close();
header("Location: login.php");
}
?>
<form method="POST" action="">
<div class="mb-3">
<label for="username" class="form-label">Username</label>
<input type="text" class="form-control" id="username" name="username" required>
</div>
<div class="mb-3">
<label for="email" class="form-label">Email</label>
<input type="email" class="form-control" id="email" name="email" required>
</div>
<div class="mb-3">
<label for="password" class="form-label">Password</label>
<input type="password" class="form-control" id="password" name="password" required>
</div>
<div class="mb-3">
<label for="role" class="form-label">Role</label>
<select class="form-select" id="role" name="role">
<option value="patient">Patient</option>
<option value="doctor">Doctor</option>
<option value="nurse">Nurse</option>
<option value="admin_staff">Administrative Staff</option>
<option value="admin">Admin</option>
</select>
</div>
<button type="submit" class="btn btn-primary">Register</button>
</form>
<?php require '../includes/footer.php'; ?>
Login (public/login.php)
<?php
session_start();
require '../config/db.php';
require '../includes/header.php';
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$username = $_POST['username'];
$password = $_POST['password'];
$stmt = $conn->prepare("SELECT * FROM users WHERE username = ?");
$stmt->bind_param("s", $username);
$stmt->execute();
$result = $stmt->get_result();
$user = $result->fetch_assoc();
if ($user && password_verify($password, $user['password'])) {
$_SESSION['user_id'] = $user['id'];
$_SESSION['role'] = $user['role'];
header("Location: dashboard.php");
} else {
echo "Invalid credentials.";
}
}
?>
<form method="POST" action="">
<div class="mb-3">
<label for="username" class="form-label">Username</label>
<input type="text" class="form-control" id="username" name="username" required>
</div>
<div class="mb-3">
<label for="password" class="form-label">Password</label>
<input type="password" class="form-control" id="password" name="password" required>
</div>
<button type="submit" class="btn btn-primary">Login</button>
</form>
<?php require '../includes/footer.php'; ?>
5. Additional PHP Scripts
Dashboard (public/dashboard.php)
<?php
session_start();
require '../config/db.php';
require '../includes/header.php';
if (!isset($_SESSION['user_id'])) {
header("Location: login.php");
exit();
}
$user_id = $_SESSION['user_id'];
$stmt = $conn->prepare("SELECT * FROM users WHERE id = ?");
$stmt->bind_param("i", $user_id);
$stmt->execute();
$result = $stmt->get_result();
$user = $result->fetch_assoc();
?>
<h2>Welcome, <?php echo $user['username']; ?></h2>
<p>Your role: <?php echo ucfirst($user['role']); ?></p>
<?php require '../includes/footer.php'; ?>
Patient Management (public/patient_management.php)
<?php
session_start();
require '../config/db.php';
require '../includes/header.php';
if (!isset($_SESSION['user_id']) || $_SESSION['role'] !== 'admin') {
header("Location: login.php");
exit();
}
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$first_name = $_POST['first_name'];
$last_name = $_POST['last_name'];
$date_of_birth = $_POST['date_of_birth'];
$gender = $_POST['gender'];
$contact_number = $_POST['contact_number'];
$address = $_POST['address'];
$medical_history = $_POST['medical_history'];
$allergies = $_POST['allergies'];
$stmt = $conn->prepare("INSERT INTO patients (first_name, last_name, date_of_birth, gender, contact_number, address, medical_history, allergies, user_id) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?)");
$stmt->bind_param("ssssssssi", $first_name , $last_name, $date_of_birth, $gender, $contact_number, $address, $medical_history, $allergies, $_SESSION['user_id']);
$stmt->execute();
$stmt->close();
header("Location: patient_management.php");
}
?>
<h2>Manage Patients</h2>
<form method="POST" action="">
<div class="mb-3">
<label for="first_name" class="form-label">First Name</label>
<input type="text" class="form-control" id="first_name" name="first_name" required>
</div>
<div class="mb-3">
<label for="last_name" class="form-label">Last Name</label>
<input type="text" class="form-control" id="last_name" name="last_name" required>
</div>
<div class="mb-3">
<label for="date_of_birth" class="form-label">Date of Birth</label>
<input type="date" class="form-control" id="date_of_birth" name="date_of_birth" required>
</div>
<div class="mb-3">
<label for="gender" class="form-label">Gender</label>
<select class="form-select" id="gender" name="gender" required>
<option value="male">Male</option>
<option value="female">Female</option>
<option value="other">Other</option>
</select>
</div>
<div class="mb-3">
<label for="contact_number" class="form-label">Contact Number</label>
<input type="text" class="form-control" id="contact_number" name="contact_number">
</div>
<div class="mb-3">
<label for="address" class="form-label">Address</label>
<textarea class="form-control" id="address" name="address"></textarea>
</div>
<div class="mb-3">
<label for="medical_history" class="form-label">Medical History</label>
<textarea class="form-control" id="medical_history" name="medical_history"></textarea>
</div>
<div class="mb-3">
<label for="allergies" class="form-label">Allergies</label>
<textarea class="form-control" id="allergies" name="allergies"></textarea>
</div>
<button type="submit" class="btn btn-primary">Add Patient</button>
</form>
<?php require '../includes/footer.php'; ?>
Appointment Management (public/appointment_management.php)
<?php
session_start();
require '../config/db.php';
require '../includes/header.php';
if (!isset($_SESSION['user_id'])) {
header("Location: login.php");
exit();
}
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$patient_id = $_POST['patient_id'];
$doctor_id = $_POST['doctor_id'];
$appointment_date = $_POST['appointment_date'];
$stmt = $conn->prepare("INSERT INTO appointments (patient_id, doctor_id, appointment_date) VALUES (?, ?, ?)");
$stmt->bind_param("iis", $patient_id, $doctor_id, $appointment_date);
$stmt->execute();
$stmt->close();
header("Location: appointment_management.php");
}
$stmt = $conn->prepare("SELECT * FROM patients");
$stmt->execute();
$result = $stmt->get_result();
$patients = $result->fetch_all(MYSQLI_ASSOC);
$stmt = $conn->prepare("SELECT * FROM users WHERE role = 'doctor'");
$stmt->execute();
$result = $stmt->get_result();
$doctors = $result->fetch_all(MYSQLI_ASSOC);
?>
<h2>Manage Appointments</h2>
<form method="POST" action="">
<div class="mb-3">
<label for="patient_id" class="form-label">Patient</label>
<select class="form-select" id="patient_id" name="patient_id" required>
<?php foreach ($patients as $patient): ?>
<option value="<?php echo $patient['id']; ?>"><?php echo $patient['first_name'] . ' ' . $patient['last_name']; ?></option>
<?php endforeach; ?>
</select>
</div>
<div class="mb-3">
<label for="doctor_id" class="form-label">Doctor</label>
<select class="form-select" id="doctor_id" name="doctor_id" required>
<?php foreach ($doctors as $doctor): ?>
<option value="<?php echo $doctor['id']; ?>"><?php echo $doctor['username']; ?></option>
<?php endforeach ?>
</select>
</div>
<div class="mb-3">
<label for="appointment_date" class="form-label">Appointment Date</label>
<input type="datetime-local" class="form-control" id="appointment_date" name="appointment_date" required>
</div>
<button type="submit" class="btn btn-primary">Schedule Appointment</button>
</form>
<?php require '../includes/footer.php'; ?>
Medical Records Management (public/medical_records.php)
<?php
session_start();
require '../config/db.php';
require '../includes/header.php';
if (!isset($_SESSION['user_id'])) {
header("Location: login.php");
exit();
}
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$patient_id = $_POST['patient_id'];
$record_date = $_POST['record_date'];
$description = $_POST['description'];
$stmt = $conn->prepare("INSERT INTO medical_records (patient_id, record_date, description) VALUES (?, ?, ?)");
$stmt->bind_param("iss", $patient_id, $record_date, $description);
$stmt->execute();
$stmt->close();
header("Location: medical_records.php");
}
$stmt = $conn->prepare("SELECT * FROM patients");
$stmt->execute();
$result = $stmt->get_result();
$patients = $result->fetch_all(MYSQLI_ASSOC);
?>
<h2>Manage Medical Records</h2>
<form method="POST" action="">
<div class="mb-3">
<label for="patient_id" class="form-label">Patient</label>
<select class="form-select" id="patient_id" name="patient_id" required>
<?php foreach ($patients as $patient): ?>
<option value="<?php echo $patient['id']; ?>"><?php echo $patient['first_name'] . ' ' . $patient['last_name']; ?></option>
<?php endforeach; ?>
</select>
</div>
<div class="mb-3">
<label for="record_date" class="form-label">Record Date</label>
<input type="date" class="form-control" id="record_date" name="record_date" required>
</div>
<div class="mb-3">
<label for="description" class="form-label">Description</label>
<textarea class="form-control" id="description" name="description" required></textarea>
</div>
<button type="submit" class="btn btn-primary">Add Record</button>
</form>
<?php require '../includes/footer.php'; ?>
Billing Management (public/billing.php)
<?php
session_start();
require '../config/db.php';
require '../includes/header.php';
if (!isset($_SESSION['user_id'])) {
header("Location: login.php");
exit();
}
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$patient_id = $_POST['patient_id'];
$amount = $_POST['amount'];
$status = $_POST['status'];
$stmt = $conn->prepare("INSERT INTO billing (patient_id, amount, status) VALUES (?, ?, ?)");
$stmt->bind_param("ids", $patient_id, $amount, $status);
$stmt->execute();
$stmt->close();
header("Location: billing.php");
}
$stmt = $conn->prepare("SELECT * FROM patients");
$stmt->execute();
$result = $stmt->get_result();
$patients = $result->fetch_all(MYSQLI_ASSOC);
?>
<h2>Manage Billing</h2>
<form method="POST" action="">
<div class="mb-3">
<label for="patient_id" class="form-label">Patient</label>
<select class="form-select" id="patient_id" name="patient_id" required>
<?php foreach ($patients as $patient): ?>
<option value="<?php echo $patient['id']; ?>"><?php echo $patient['first_name'] . ' ' . $patient['last_name']; ?></option>
<?php endforeach; ?>
</select>
</div>
<div class="mb-3">
<label for="amount" class="form-label">Amount</label>
<input type="number" step="0.01" class="form-control" id="amount" name="amount" required>
</div>
<div class="mb-3">
<label for="status" class="form-label">Status</label>
<select class="form-select" id="status" name="status" required>
<option value="paid">Paid</option>
<option value="unpaid">Unpaid</option>
<option value="pending">Pending</option>
</select>
</div>
<button type="submit" class="btn btn-primary">Add Billing</button>
</form>
<?php require '../includes/footer.php'; ?>
Inventory Management (public/inventory.php)
<?php
session_start();
require '../config/db.php';
require '../includes/header.php';
if (!isset($_SESSION['user_id']) || $_SESSION['role'] !== 'admin') {
header("Location: login.php");
exit();
}
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$item_name = $_POST['item_name'];
$quantity = $_POST['quantity'];
$reorder_level = $_POST['reorder_level'];
$stmt = $conn->prepare("INSERT INTO inventory (item_name, quantity, reorder_level) VALUES (?, ?, ?)");
$stmt->bind_param("sii", $item_name, $quantity, $reorder_level);
$stmt->execute();
$stmt->close();
header("Location: inventory.php");
}
?>
<h2>Manage Inventory</h2>
<form method="POST" action="">
<div class="mb-3">
<label for="item_name" class="form-label">Item Name</label>
<input type="text" class="form-control" id="item_name" name="item_name" required>
</div>
<div class="mb-3">
<label for="quantity" class="form-label">Quantity</label>
<input type="number" class="form-control" id="quantity" name="quantity" required>
</div>
<div class="mb-3">
<label for="reorder_level" class="form-label">Reorder Level</label>
<input type="number" class="form-control" id="reorder_level" name="reorder_level" required>
</div>
<button type="submit" class="btn btn-primary">Add Item</button>
</form>
<?php require '../includes/footer.php'; ?>
Laboratory Management (public/lab_tests.php)
<?php
session_start();
require '../config/db.php';
require '../includes/header.php';
if (!isset($_SESSION['user_id'])) {
header("Location: login.php");
exit();
}
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$patient_id = $_POST['patient_id'];
$test_name = $_POST['test_name'];
$test_date = $_POST['test_date'];
$results = $_POST['results'];
$stmt = $conn->prepare("INSERT INTO lab_tests (patient_id, test_name, test_date, results) VALUES (?, ?, ?, ?)");
$stmt->bind_param("isss", $patient_id, $test_name, $test_date, $results);
$stmt->execute();
$stmt->close();
header("Location: lab_tests.php");
}
$stmt = $conn->prepare("SELECT * FROM patients");
$stmt->execute();
$result = $stmt->get_result();
$patients = $result->fetch_all(MYSQLI_ASSOC);
?>
<h2>Manage Lab Tests</h2>
<form method="POST" action="">
<div class="mb-3">
<label for="patient_id" class="form-label">Patient</label>
<select class="form-select" id="patient_id" name="patient_id" required>
<?php foreach ($patients as $patient): ?>
<option value="<?php echo $patient['id']; ?>"><?php echo $patient['first_name'] . ' ' . $patient['last_name']; ?></option>
<?php endforeach; ?>
</select>
</div>
<div class="mb-3">
<label for="test_name" class="form-label">Test Name</label>
<input type="text" class="form-control" id="test_name" name="test_name" required>
</div>
<div class="mb-3">
<label for="test_date" class="form-label">Test Date</label>
<input type="date" class="form-control" id="test_date" name="test_date" required>
</div>
<div class="mb-3">
<label for="results" class="form-label">Results</label>
<textarea class="form-control" id="results" name="results" required></textarea>
</div>
<button type="submit" class="btn btn-primary">Add Lab Test</button>
</form>
<?php require '../includes/footer.php'; ?>
Pharmacy Management (public/pharmacy.php)
<?php
session_start();
require '../config/db.php';
require '../includes/header.php';
if (!isset($_SESSION['user_id']) || $_SESSION['role'] !== 'admin') {
header("Location: login.php");
exit();
}
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$medication_name = $_POST['medication_name'];
$dosage = $_POST['dosage'];
$quantity = $_POST['quantity'];
$stmt = $conn->prepare("INSERT INTO pharmacy (medication_name, dosage, quantity) VALUES (?, ?, ?)");
$stmt->bind_param("ssi", $medication_name, $dosage, $quantity);
$stmt->execute();
$stmt->close();
header("Location: pharmacy.php");
}
?>
<h2>Manage Pharmacy</h2>
<form method="POST" action="">
<div class="mb-3">
<label for="medication_name" class="form-label">Medication Name</label>
<input type="text" class="form-control" id="medication_name" name="medication_name" required>
</div>
<div class="mb-3">
<label for="dosage" class="form-label">Dosage</label>
<input type="text" class="form-control" id="dosage" name="dosage" required>
</div>
<div class="mb-3">
<label for="quantity" class="form-label">Quantity</label>
<input type="number" class="form-control" id="quantity" name="quantity" required>
</div>
<button type="submit" class="btn btn-primary">Add Medication</button>
</form>
<?php require '../includes/footer.php'; ?>
Staff Management (public/staff_management.php)
<?php
session_start();
require '../config/db.php';
require '../includes/header.php';
if (!isset($_SESSION['user_id']) || $_SESSION['role'] !== 'admin') {
header("Location: login.php");
exit();
}
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$user_id = $_POST['user_id'];
$position = $_POST['position'];
$hire_date = $_POST['hire_date'];
$salary = $_POST['salary'];
$stmt = $conn->prepare("INSERT INTO staff (user_id, position, hire_date, salary) VALUES (?, ?, ?, ?)");
$stmt->bind_param("issd", $user_id, $position, $hire_date, $salary);
$stmt->execute();
$stmt->close();
header("Location: staff_management.php");
}
$stmt = $conn->prepare("SELECT * FROM users WHERE role IN ('doctor', 'nurse', 'admin_staff')");
$stmt->execute();
$result = $stmt->get_result();
$users = $result->fetch_all(MYSQLI_ASSOC);
?>
<h2>Manage Staff</h2>
<form method="POST" action="">
<div class="mb-3">
<label for="user_id" class="form-label">User </label>
<select class="form-select" id="user_id" name="user_id" required>
<?php foreach ($users as $user): ?>
<option value="<?php echo $user['id']; ?>"><?php echo $user['username']; ?></option>
<?php endforeach; ?>
</select>
</div>
<div class="mb-3">
<label for="position" class="form-label">Position</label>
<input type="text" class="form-control" id="position" name="position" required>
</div>
<div class="mb-3">
<label for="hire_date" class="form-label">Hire Date</label>
<input type="date" class="form-control" id="hire_date" name="hire_date" required>
</div>
<div class="mb-3">
<label for="salary" class="form-label">Salary</label>
<input type="number" step="0.01" class="form-control" id="salary" name="salary" required>
</div>
<button type="submit" class="btn btn-primary">Add Staff</button>
</form>
<?php require '../includes/footer.php'; ?>
Emergency Management (public/emergency_management.php)
<?php
session_start();
require '../config/db.php';
require '../includes/header.php';
if (!isset($_SESSION['user_id'])) {
header("Location: login.php");
exit();
}
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$patient_id = $_POST['patient_id'];
$case_description = $_POST['case_description'];
$triage_level = $_POST['triage_level'];
$stmt = $conn->prepare("INSERT INTO emergency_cases (patient_id, case_description, triage_level) VALUES (?, ?, ?)");
$stmt->bind_param("iss", $patient_id, $case_description, $triage_level);
$stmt->execute();
$stmt->close();
header("Location: emergency_management.php");
}
$stmt = $conn->prepare("SELECT * FROM patients");
$stmt->execute();
$result = $stmt->get_result();
$patients = $result->fetch_all(MYSQLI_ASSOC);
?>
<h2>Manage Emergency Cases</h2>
<form method="POST" action="">
<div class="mb-3">
<label for="patient_id" class="form-label">Patient</label>
<select class="form-select" id="patient_id" name="patient_id" required>
<?php foreach ($patients as $patient): ?>
<option value="<?php echo $patient['id']; ?>"><?php echo $patient['first_name'] . ' ' . $patient['last_name']; ?></option>
<?php endforeach; ?>
</select>
</div>
<div class="mb-3">
<label for="case_description" class="form-label">Case Description</label>
<textarea class="form-control" id="case_description" name="case_description" required></textarea>
</div>
<div class="mb-3">
<label for="triage_level" class="form-label">Triage Level</label>
<select class="form-select" id="triage_level" name="triage_level" required>
<option value="low">Low</option>
<option value="medium">Medium</option>
<option value="high">High</option>
</select>
</div>
<button type="submit" class="btn btn-primary">Add Emergency Case</button>
</form>
<?php require '../includes/footer.php'; ?>
Notifications Management (public/notifications.php)
<?php
session_start();
require '../config/db.php';
require '../includes/header.php';
if (!isset($_SESSION['user_id'])) {
header("Location: login.php");
exit();
}
$stmt = $conn->prepare("SELECT * FROM notifications WHERE user_id = ? ORDER BY created_at DESC");
$stmt->bind_param("i", $_SESSION['user_id']);
$stmt->execute();
$result = $stmt->get_result();
$notifications = $result->fetch_all(MYSQLI_ASSOC);
?>
<h2>Notifications</h2>
<table class="table">
<thead>
<tr>
<th>ID</th>
<th>Message</th>
<th>Status</th>
<th>Date</th>
</tr>
</thead>
<tbody>
<?php foreach ($notifications as $notification): ?>
<tr>
<td><?php echo $notification['id']; ?></td>
<td><?php echo $notification['message']; ?></td>
<td><?php echo $notification['is_read'] ? 'Read' : 'Unread'; ?></td>
<td><?php echo $notification['created_at']; ?></td>
</tr>
<?php endforeach; ?>
</tbody>
</table>
<?php require '../includes/footer.php'; ?>
6. Additional Features to Consider
User Profiles: Allow users to edit their profiles and manage their settings.
Telemedicine: Implement features for remote consultations and follow-ups.
Emergency Alerts: Create a system for sending alerts to staff during emergencies.
7. Security Measures
Data Validation: Ensure all user inputs are validated to prevent SQL injection and XSS attacks.
Password Security: Use strong hashing algorithms for storing passwords.
Session Security: Implement secure session management practices to protect user sessions.
8. Testing and Deployment
Unit Testing: Conduct unit tests for individual components to ensure they function correctly.
Integration Testing: Test the integration of different modules to ensure they work together seamlessly.
Deployment: Choose a reliable hosting provider and deploy the application, ensuring all configurations are optimized for performance.
9. Documentation
User Documentation: Create a user manual to guide users through the platform's features and functionalities.
Developer Documentation: Document the codebase and architecture for future reference and maintenance.
10. Future Enhancements
AI-Powered Recommendations: Implement machine learning algorithms to provide personalized healthcare recommendations based on patient data.
Community Features: Create forums or discussion boards for healthcare providers to share insights and experiences.
Integration with Other Systems: Consider integrating with existing health information systems for a more comprehensive solution.
This structured approach will help you build a robust Hospital Management System that meets user needs and adapts to future requirements.
AI 
ASP.NET API 
ASP.NET CLI 
ASP.NET Core 
ASP.NET MVC 
ASP.NET Projects With Source Code 
ASP.NET Web Forms 
ASP.NET Web Pages 
AWS 
Angular 10 
Bash 
Bitcoin 
Blockchain 
C Tutorial 
C# 
CPP 
Chat GPT 
Cheat Sheet 
Cyber Security 
Dart 
Django 
Docker 
Ether.js 
Ethereum 
Flask 
Flask Projects With Source Code 
GEN AI 
Git 
Go Language 
Google Cloud Platform 
GraphQL 
Hardhat 
INI 
JSON 
Java 
JavaScript 
Kotlin 
Kubernetes 
LaTeX 
Laravel 
Laravel 10 E-Commerce Project 
Laravel 11 E-Commerce Project 
Laravel 9 E-Commerce Project 
Laravel 9 React Tutorial 
Laravel E-Commerce Project 
Laravel Home Services Project 
Laravel Projects With Source Code 
Laravel Tutorial Advanced 
Laravel Tutorial Beginners 
Livewire 
Markdown 
Matlab 
Metamask 
Microsoft Azure 
MongoDB Tutorial Advanced 
MongoDB Tutorial Beginners 
MySql Tutorial Advanced 
MySql Tutorial Beginners 
NextJS 
Node JS 
Node JS Projects With Source Code 
PHP Projects With Source Code 
PHP Tutorial Advanced 
PHP Tutorial Beginners 
Project Database Schema 
Python 
React JS 
Ruby 
Rust 
SQL Server Queries 
SQL Server Tutorial Advanced 
SQL Server Tutorial Beginners 
Sass 
Solidity 
Spring Boot 
Truffle 
TypeScript 
VueJS 
Web3.js 
WordPress Tutorial Advanced 
WordPress Tutorial Beginners 
YAML