prepare("SELECT * FROM users WHERE username = ?");
$stmt->execute([$username]);
$user = $stmt->fetch();
if ($user && password_verify($password, $user['password'])) {
$_SESSION['user_id'] = $user['id'];
$_SESSION['username'] = $user['username'];
$_SESSION['user_role'] = $user['role'];
logEvent('auth', "User logged in: $username");
header('Location: index.php');
exit;
} else {
logEvent('auth', "FAILED login attempt for username: $username");
$error = "Invalid username or password.";
}
}
?>
Login | ChurchTube