prepare("SELECT id, username, password FROM users WHERE username = ?"); $stmt->execute([$username]); $user = $stmt->fetch(PDO::FETCH_ASSOC); if ($user && password_verify($password, $user['password'])) { // Regenerate session ID to prevent session fixation session_regenerate_id(true); // Store user info in session $_SESSION['user_id'] = $user['id']; $_SESSION['username'] = $user['username']; // Redirect to the main page header("Location: index.php"); exit; } else { $errors[] = 'Invalid username or password.'; } } catch (PDOException $e) { $errors[] = "Database error: " . $e->getMessage(); } } } require_once __DIR__ . '/includes/header.php'; ?>

Login to Your Account

Don't have an account? Register here.