prepare('SELECT * FROM users WHERE email = ? AND password = ?');
$stmt->execute([$email, $password]);
$user = $stmt->fetch();
if ($user) {
$_SESSION['user_id'] = $user['id'];
header("Location: welcome.php");
exit();
} else {
echo "Invalid email or password.";
}
} else {
echo "Please fill all fields.";
}
}
?>
Login