battles/admin/edit_user.php
2018-12-13 00:49:35 +02:00

95 lines
3.1 KiB
PHP

<?php
/**
* Copyright (c) 2018.
* Author: Igor Barkov <lopar.4ever@gmail.com>
* Project name: Battles-Game
*/
session_start();
require_once "../functions.php";
if (empty($user['admin'])) {
echo "<!DOCTYPE HTML><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL {$_SERVER['SCRIPT_NAME']} was not found on this server.</p><hr><address>Apache/2.2.22 (@RELEASE@) Server at Hetzner Datacenter 426</address></body></html>";
exit;
}
if (isset($_POST['player'])) {
$p = db::c()->query('SELECT `id`, `login` FROM `users` WHERE `id` = "?s" OR `login` = "?s"', $_POST['player'], $_POST['player'])->fetch_assoc();
$_SESSION['player_id'] = $p['id'];
$_SESSION['player_name'] = $p['login'];
}
if (isset($_POST['undress_char'])) undressall($_SESSION['player_id']);
if (isset($_POST['end'])) {
unset($_SESSION['player_id']);
unset($_SESSION['player_name']);
}
if (isset($_SESSION['player_id']))
$inv = db::c()->query('SELECT `id`,`name`,`koll`,`img` FROM `inventory` WHERE `owner` = ?i ORDER BY `id` DESC', $_SESSION['player_id']);
if (input::post('del')) {
$itemdel = db::c()->query('SELECT `type`,`dressed` FROM `inventory` WHERE `id`=?i', input::post('del'))->fetch_assoc();
if ($itemdel['dressed'] == 1) {
dropitem($itemdel['type']);
if ($itemdel['type'] == 5) {
dropitem(6);
dropitem(7);
}
}
db::c()->query('DELETE FROM `inventory` WHERE `id` = ?i', input::post('del'));
}
?>
<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<title>ᐰdmin</title>
</head>
<link type="text/css" rel="stylesheet" href="../css/main.css">
<body>
<h1>Администрирование инвентаря <?php isset($_SESSION['player_name']) ? $_SESSION['player_name'] ?></h1>
<table class='adm'>
<tr>
<th>ID</th>
<th>Название</th>
<th>Количество</th>
<th>Картинка</th>
<th></th>
</tr>
<?php if (empty($_SESSION['player_id'])): ?>
<tr>
<th colspan="5">
<form method="post">
<input placeholder="Логин или ID" name="player">
<input type="submit">
</form>
</th>
</tr>
<?php else: while ($row = $inv->fetch_assoc()): ?>
<tr>
<td><?= $row['id'] ?></td>
<td><?= $row['name'] ?></td>
<td><?= $row['koll'] ?></td>
<td><img src='/i/sh/<?= $row['img'] ?>'></td>
<td>
<form method='post'>
<input name='del' type='hidden' value='<?= $row['id'] ?>'>
<input name='ok' type='submit' value='Удалить'>
</form>
</td>
</tr>
<?php endwhile; ?>
<th colspan='6'>
<form method='post'>
<input name='undress_char' type='submit' value='Стриптиз'>
</form>
<form method="post">
<input name='end' type='submit' value='Выйти'>
</form>
</th>
<?php endif; ?>
</table>
</body>
</html>