setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
} catch (PDOException $e) {
die("Connection failed: " . $e->getMessage());
}
$usernameErr = $passwordErr = "";
$message = "";
$username = $password = "";
if ($_SERVER["REQUEST_METHOD"] === "POST") {
$username = trim($_POST["username"]);
$password = trim($_POST["password"]);
$isValid = true;
// التحقق من الإدخال
if (empty($username)) {
$usernameErr = "Username is required";
$isValid = false;
}
if (empty($password)) {
$passwordErr = "Password is required";
$isValid = false;
}
if ($isValid) {
// البحث عن المستخدم في قاعدة البيانات
$stmt = $pdo->prepare("SELECT * FROM user WHERE username = ?");
$stmt->execute([$username]);
$user = $stmt->fetch(PDO::FETCH_ASSOC);
if ($user && password_verify($password, $user["password"])) {
$_SESSION["user_id"] = $user["id"];
$_SESSION["username"] = $user["username"];
header("Location: home.html");
exit();
} else {
$message = "Invalid username or password.";
}
}
}
?>
Login
"; ?>
$passwordErr"; ?>