prepare("SELECT * FROM users WHERE email = ?");
$stmt->execute([$email]);
$user = $stmt->fetch(PDO::FETCH_ASSOC);
if ($user && password_verify($password, $user['password'])) {
if (!$user['is_verified']) {
$error = t('verify_email_first');
} else {
$_SESSION['user_id'] = $user['id'];
$_SESSION['username'] = $user['username'];
$_SESSION['email'] = $user['email'];
header('Location: dashboard.php');
exit;
}
} else {
$error = t('invalid_credentials');
}
}
}
?>
<?php echo t('login'); ?> - <?php echo SITE_NAME; ?>