battles/admin/edit_user.php

<?php
/**
 * Copyright (c) 2018.
 * Author: Igor Barkov <lopar.4ever@gmail.com>
 * Project name: Battles-Game
 */

session_start();
require_once "../functions.php";

if (!$user->admin) {
    header("HTTP/1.0 404 Not Found");
    exit;
}

$player = $_POST['player'] ?? null;
$undress_char = $_POST['undress_char'] ?? null;
$end = $_POST['end'] ?? null;
$del = $_POST['del'] ?? null;

if ($player) {
    $row = db::c()->query('SELECT id, login FROM users WHERE id = "?s" OR login = "?s"', $player, $player)->fetch_assoc();
    $_SESSION['player_id'] = $row['id'];
    $_SESSION['player_name'] = $row['login'];
    unset($row);
}
if ($undress_char) {
    undressall($_SESSION['player_id']);
}
if ($end) {
    unset($_SESSION['player_id']);
    unset($_SESSION['player_name']);
}
if (isset($_SESSION['player_id'])) {
    $inv = db::c()->query('SELECT item_id, name, image FROM inventory WHERE owner = ?i ORDER BY id DESC', $_SESSION['player_id']);
}
if ($del) {
    $itemdel = db::c()->query('SELECT item_type, dressed_slot FROM inventory WHERE id=?i', $del)->fetch_assoc();
    if ($itemdel['dressed_slot'] == 1) {
        dropitem($itemdel['item_type']);
        if ($itemdel['item_type'] == 5) {
            dropitem(6);
            dropitem(7);
        }
    }
    db::c()->query('DELETE FROM `inventory` WHERE `id` = ?i', $del);
}
\Battles\Template::header('ᐰdminка инвентаря');
?>
<h1>Администрирование инвентаря <?php if (isset($_SESSION['player_name'])) echo $_SESSION['player_name']; ?></h1>
<table class='adm'>
    <tr>
        <th>ID</th>
        <th>Название</th>
        <th>Количество</th>
        <th>Картинка</th>
        <th></th>
    </tr>
    <?php if (empty($_SESSION['player_id'])): ?>
        <tr>
            <th colspan="5">
                <form method="post">
                    <input placeholder="Логин или ID" name="player">
                    <input type="submit">
                </form>
            </th>
        </tr>
    <?php else: while ($row = $inv->fetch_assoc()): ?>
        <tr>
            <td><?= $row['id'] ?></td>
            <td><?= $row['name'] ?></td>
            <td><?= $row['koll'] ?></td>
            <td><img src='/i/sh/<?= $row['img'] ?>'></td>
            <td>
                <form method='post'>
                    <input name='del' type='hidden' value='<?= $row['id'] ?>'>
                    <input name='ok' type='submit' value='Удалить'>
                </form>
            </td>
        </tr>
    <?php endwhile; ?>
        <th colspan='6'>
            <form method='post'>
                <input name='undress_char' type='submit' value='Стриптиз'>
            </form>
            <form method="post">
                <input name='end' type='submit' value='Выйти'>
            </form>
        </th>
    <?php endif; ?>
</table>