90 lines
3.8 KiB
PHP
90 lines
3.8 KiB
PHP
<?php
|
|
session_start();
|
|
require_once __DIR__ . '/db/config.php';
|
|
|
|
$error_message = '';
|
|
|
|
if (isset($_GET['registration']) && $_GET['registration'] === 'success') {
|
|
$success_message = 'Registration successful! Please log in.';
|
|
}
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
|
|
$email = $_POST['email'] ?? '';
|
|
$password = $_POST['password'] ?? '';
|
|
|
|
if (empty($email) || empty($password)) {
|
|
$error_message = 'Email and password are required.';
|
|
} else {
|
|
try {
|
|
$pdo = db();
|
|
$stmt = $pdo->prepare("SELECT * FROM users WHERE email = ?");
|
|
$stmt->execute([$email]);
|
|
$user = $stmt->fetch();
|
|
|
|
if ($user && password_verify($password, $user['password'])) {
|
|
$_SESSION['user_id'] = $user['id'];
|
|
$_SESSION['company_id'] = $user['company_id'];
|
|
$_SESSION['role'] = $user['role'];
|
|
|
|
header('Location: /dashboard.php');
|
|
exit;
|
|
} else {
|
|
$error_message = 'Invalid email or password.';
|
|
}
|
|
} catch (PDOException $e) {
|
|
$error_message = "Login failed: " . $e->getMessage();
|
|
}
|
|
}
|
|
}
|
|
?>
|
|
<!DOCTYPE html>
|
|
<html lang="en">
|
|
<head>
|
|
<meta charset="UTF-8">
|
|
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
|
<title>Login - GPTPayroll</title>
|
|
<script src="https://cdn.tailwindcss.com"></script>
|
|
</head>
|
|
<body class="bg-gray-100 flex items-center justify-center min-h-screen">
|
|
|
|
<div class="w-full max-w-md bg-white p-8 rounded-lg shadow-md">
|
|
<div class="text-center mb-8">
|
|
<a href="/" class="text-3xl font-bold bg-clip-text text-transparent" style="background: linear-gradient(45deg, #10B981, #F59E0B, #EF4444);">GPTPayroll</a>
|
|
<h2 class="mt-2 text-2xl font-bold text-gray-800">Log in to your account</h2>
|
|
</div>
|
|
|
|
<?php if (!empty($error_message)): ?>
|
|
<div class="bg-red-100 border border-red-400 text-red-700 px-4 py-3 rounded relative mb-4" role="alert">
|
|
<span class="block sm:inline"><?= htmlspecialchars($error_message) ?></span>
|
|
</div>
|
|
<?php endif; ?>
|
|
|
|
<?php if (!empty($success_message)): ?>
|
|
<div class="bg-green-100 border border-green-400 text-green-700 px-4 py-3 rounded relative mb-4" role="alert">
|
|
<span class="block sm:inline"><?= htmlspecialchars($success_message) ?></span>
|
|
</div>
|
|
<?php endif; ?>
|
|
|
|
<form action="/login.php" method="POST">
|
|
<div class="mb-4">
|
|
<label for="email" class="block text-gray-700 text-sm font-bold mb-2">Email Address</label>
|
|
<input type="email" id="email" name="email" required class="shadow appearance-none border rounded w-full py-2 px-3 text-gray-700 leading-tight focus:outline-none focus:shadow-outline">
|
|
</div>
|
|
<div class="mb-6">
|
|
<label for="password" class="block text-gray-700 text-sm font-bold mb-2">Password</label>
|
|
<input type="password" id="password" name="password" required class="shadow appearance-none border rounded w-full py-2 px-3 text-gray-700 mb-3 leading-tight focus:outline-none focus:shadow-outline">
|
|
</div>
|
|
<div class="flex items-center justify-between">
|
|
<button type="submit" class="w-full bg-green-500 hover:bg-green-600 text-white font-bold py-2 px-4 rounded focus:outline-none focus:shadow-outline">
|
|
Log In
|
|
</button>
|
|
</div>
|
|
</form>
|
|
<p class="text-center text-gray-500 text-xs mt-6">
|
|
Don't have an account? <a href="/register.php" class="text-green-500 hover:text-green-700">Register here</a>.
|
|
</p>
|
|
</div>
|
|
|
|
</body>
|
|
</html>
|