<?php
session_start();

// IMPORTANT: This is a temporary, hardcoded user for demonstration purposes.
// We will replace this with a proper database lookup later.
$users = [
    'customer@example.com' => [
        'password' => 'password',
        'name' => 'Test Customer',
        'company' => 'Example Inc.'
    ]
];

if ($_SERVER['REQUEST_METHOD'] === 'POST') {
    $email = $_POST['email'] ?? '';
    $password = $_POST['password'] ?? '';

    if (isset($users[$email]) && $users[$email]['password'] === $password) {
        // Login successful
        $_SESSION['user'] = [
            'email' => $email,
            'name' => $users[$email]['name'],
            'company' => $users[$email]['company']
        ];
        header('Location: dashboard.php');
        exit;
    } else {
        // Login failed
        $_SESSION['error'] = 'Invalid email or password.';
        header('Location: login.php');
        exit;
    }
} else {
    // Redirect if accessed directly
    header('Location: login.php');
    exit;
}