prepare('SELECT id, username, password, role FROM users WHERE email = ?'); $stmt->execute([$email]); $user = $stmt->fetch(); if ($user && password_verify($password, $user['password'])) { $_SESSION['user_id'] = $user['id']; $_SESSION['username'] = $user['username']; $_SESSION['role'] = $user['role']; header('Location: index.php'); exit; } else { $error = 'Invalid email or password.'; } } catch (PDOException $e) { $error = 'Database error: ' . $e->getMessage(); } } } ?>

Login