prepare("SELECT * FROM users WHERE email = :email"); $query->bindParam(':email', $_POST['email']); $query->execute(); $user = $query->fetch(PDO::FETCH_ASSOC); if ($user && password_verify($_POST['password'], $user['password'])) { $_SESSION['user_id'] = $user['id']; $_SESSION['first_name'] = $user['first_name']; $_SESSION['is_admin'] = $user['is_admin']; header("Location: index.php"); } else { $errorMessage = "Invalid email or password."; } } ?>

Please sign in

' . $errorMessage . '' : '' ?>

Not registered ? Create an account here