prepare("SELECT * FROM users WHERE username = ?");
$stmt->bind_param('s', $_POST['username']);
$stmt->execute();
$result = $stmt->get_result();
$user = $result->fetch_object();
if ( password_verify( $_POST['password'], $user->password ) ) {
$_SESSION['user_id'] = $user->ID;
$_SESSION['user'] = $user;
$_SESSION['logged'] = true;
header("Location: index.php");
die();
}
}
}
include('header.php');
session_destroy();
?>