battles/admin/edit_user.php

100 lines
2.9 KiB
PHP

<?php
/**
* Copyright (c) 2018.
* Author: Igor Barkov <lopar.4ever@gmail.com>
* Project name: Battles-Game
*/
session_start();
require_once "../functions.php";
if (!$user->admin) {
header("HTTP/1.0 404 Not Found");
exit;
}
$player = $_POST['player'] ?? null;
$undress_char = $_POST['undress_char'] ?? null;
$end = $_POST['end'] ?? null;
$del = $_POST['del'] ?? null;
if ($player) {
$row = db::c()->query('SELECT id, login FROM users WHERE id = "?s" OR login = "?s"', $player, $player)->fetch_assoc();
$_SESSION['player_id'] = $row['id'];
$_SESSION['player_name'] = $row['login'];
unset($row);
}
if ($undress_char) {
undressall($_SESSION['player_id']);
}
if ($end) {
unset($_SESSION['player_id']);
unset($_SESSION['player_name']);
}
if (isset($_SESSION['player_id'])) {
$inv = db::c()->query('SELECT item_id, name, image FROM inventory WHERE owner = ?i ORDER BY id DESC', $_SESSION['player_id']);
}
if ($del) {
$itemdel = db::c()->query('SELECT item_type, dressed_slot FROM inventory WHERE id=?i', $del)->fetch_assoc();
if ($itemdel['dressed_slot'] == 1) {
dropitem($itemdel['item_type']);
if ($itemdel['item_type'] == 5) {
dropitem(6);
dropitem(7);
}
}
db::c()->query('DELETE FROM `inventory` WHERE `id` = ?i', $del);
}
?>
<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<title>ᐰdmin</title>
</head>
<link type="text/css" rel="stylesheet" href="../css/main.css">
<body>
<h1>Администрирование инвентаря <?php if (isset($_SESSION['player_name'])) echo $_SESSION['player_name']; ?></h1>
<table class='adm'>
<tr>
<th>ID</th>
<th>Название</th>
<th>Количество</th>
<th>Картинка</th>
<th></th>
</tr>
<?php if (empty($_SESSION['player_id'])): ?>
<tr>
<th colspan="5">
<form method="post">
<input placeholder="Логин или ID" name="player">
<input type="submit">
</form>
</th>
</tr>
<?php else: while ($row = $inv->fetch_assoc()): ?>
<tr>
<td><?= $row['id'] ?></td>
<td><?= $row['name'] ?></td>
<td><?= $row['koll'] ?></td>
<td><img src='/i/sh/<?= $row['img'] ?>'></td>
<td>
<form method='post'>
<input name='del' type='hidden' value='<?= $row['id'] ?>'>
<input name='ok' type='submit' value='Удалить'>
</form>
</td>
</tr>
<?php endwhile; ?>
<th colspan='6'>
<form method='post'>
<input name='undress_char' type='submit' value='Стриптиз'>
</form>
<form method="post">
<input name='end' type='submit' value='Выйти'>
</form>
</th>
<?php endif; ?>
</table>
</body>
</html>