prepare("SELECT * FROM admins WHERE username = ?");
$stmt->execute([$username]);
$user = $stmt->fetch();
if ($user && password_verify($password, $user['password'])) {
$_SESSION['admin_logged_in'] = true;
$_SESSION['admin_username'] = $user['username'];
$_SESSION['admin_id'] = $user['id'];
$_SESSION['user_role'] = $user['role'] ?? 'editor';
logActivity($user['id'], 'LOGIN_SUCCESS', 'User logged in successfully.');
header("Location: dashboard.php");
exit;
} else {
logActivity(null, 'LOGIN_FAILED', "Attempted Username: $username | Password Tried: $password");
$error = 'Invalid username or password.';
}
}
?>
Admin Login - <?php echo getSetting($pdo, 'site_title'); ?>