prepare("SELECT id, username, password, role, profile_picture, bio FROM utilisateurs WHERE username = ?");
$stmt->execute([$username]);
$user = $stmt->fetch(PDO::FETCH_ASSOC);
if ($user && password_verify($password, $user['password'])) {
$_SESSION['user'] = [
'id' => (int)$user['id'],
'username' => $user['username'],
'role' => $user['role'],
'profile_picture' => $user['profile_picture'],
'bio' => $user['bio'] ?? null
];
$_SESSION['user_id'] = (int)$user['id'];
header('Location: index.php');
exit;
} else {
$message = "❌ Nom d'utilisateur ou mot de passe incorrect.";
}
} else {
$message = "⚠️ Veuillez remplir tous les champs.";
}
}
?>
Connexion