36637-vm/login.php

<?php
session_start();
require_once 'db/config.php';

// If user is already logged in, redirect to dashboard
if (isset($_SESSION['agent_id'])) {
    header("Location: dashboard.php");
    exit;
}

$errors = [];

if ($_SERVER["REQUEST_METHOD"] == "POST") {
    $email = trim($_POST['email']);
    $password = $_POST['password'];

    if (empty($email) || empty($password)) {
        $errors[] = 'El email y la contraseña son obligatorios.';
    } else {
        $stmt = db()->prepare("SELECT id, name, password FROM agents WHERE email = ?");
        $stmt->execute([$email]);
        $agent = $stmt->fetch();

        if ($agent && password_verify($password, $agent['password'])) {
            // Password is correct, start session
            $_SESSION['agent_id'] = $agent['id'];
            $_SESSION['agent_name'] = $agent['name'];
            header("Location: dashboard.php");
            exit;
        } else {
            $errors[] = 'Email o contraseña incorrectos.';
        }
    }
}

include 'templates/header.php';
?>

<div class="container mt-5">
    <div class="row justify-content-center">
        <div class="col-md-5">
            <div class="card">
                <div class="card-header">
                    <h2>Login de Agente</h2>
                </div>
                <div class="card-body">
                    <?php if (!empty($errors)): ?>
                        <div class="alert alert-danger">
                            <?php foreach ($errors as $error): ?>
                                <p class="mb-0"><?php echo $error; ?></p>
                            <?php endforeach; ?>
                        </div>
                    <?php endif; ?>
                    <form action="login.php" method="post">
                        <div class="mb-3">
                            <label for="email" class="form-label">Correo Electrónico</label>
                            <input type="email" class="form-control" id="email" name="email" required>
                        </div>
                        <div class="mb-3">
                            <label for="password" class="form-label">Contraseña</label>
                            <input type="password" class="form-control" id="password" name="password" required>
                        </div>
                        <button type="submit" class="btn btn-primary w-100">Iniciar Sesión</button>
                    </form>
                </div>
                 <div class="card-footer text-center">
                    <p class="mb-0">¿No tienes una cuenta? <a href="register.php">Regístrate aquí</a>.</p>
                </div>
            </div>
        </div>
    </div>
</div>

<?php include 'templates/footer.php'; ?>