prepare("SELECT id, password FROM users WHERE username = ?");
$stmt->execute([$username]);
$user = $stmt->fetch();
if ($user && password_verify($password, $user['password'])) {
$_SESSION['user_id'] = $user['id'];
$_SESSION['username'] = $username;
header('Location: index.php');
exit;
} else {
$error_message = 'Invalid username or password.';
}
}
}
$page_title = "Login";
// We don't include the main header as it would create a redirect loop.
?>
<?= htmlspecialchars($page_title) ?> - Member Management