prepare("SELECT user_id, username, password FROM Users WHERE username = ?");
$stmt->bind_param("s", $username);
$stmt->execute();
$result = $stmt->get_result();
if ($result && $result->num_rows > 0) {
$row = $result->fetch_assoc();
// Verify the given password against the stored hashed password
if (password_verify($password, $row['password'])) {
// Password is correct. Update last login info
$updateStmt = $connection->prepare(
"UPDATE Users SET last_login_time = NOW(), last_login_ip = ? WHERE user_id = ?"
);
$ipAddress = $_SERVER['REMOTE_ADDR'] ?? 'UNKNOWN';
$updateStmt->bind_param("si", $ipAddress, $row['user_id']);
$updateStmt->execute();
// Save relevant data in session
$_SESSION['user_id'] = $row['user_id'];
$_SESSION['username'] = $row['username'];
// Redirect to index.php (the admin dashboard)
header("Location: index.php");
exit;
} else {
$error = "Invalid username or password.";
}
} else {
$error = "Invalid username or password.";
}
}
}
?>
DarkPulsar - Login
