Actualiser login.php

login.php

@@ -1,46 +1,27 @@
 <?php
 session_start();
-
-$users = [
-    'admin' => ['password' => '1234', 'role' => 'Admin'],
-    'user'  => ['password' => 'abcd', 'role' => 'Utilisateur']
-];
-
-$error = '';
+$usersFile = 'users.json';
+$users = file_exists($usersFile) ? json_decode(file_get_contents($usersFile), true) : [];
+$message = '';
 
 if ($_SERVER['REQUEST_METHOD'] === 'POST') {
-    $username = isset($_POST['username']) ? $_POST['username'] : '';
-    $password = isset($_POST['password']) ? $_POST['password'] : '';
+    $username = trim($_POST['username']);
+    $password = trim($_POST['password']);
 
-    if (isset($users[$username]) && $users[$username]['password'] === $password) {
+    if (isset($users[$username]) && password_verify($password, $users[$username]['password'])) {
         $_SESSION['user'] = $username;
         $_SESSION['role'] = $users[$username]['role'];
         header("Location: dashboard.php");
         exit();
     } else {
-        $error = "Nom d'utilisateur ou mot de passe incorrect.";
+        $message = "Nom d'utilisateur ou mot de passe incorrect.";
     }
 }
 
 include 'include/header.php';
-?>
 
-<div class="form-box">
-    <h2>Connexion</h2>
+$action = 'login.php';
+$buttonText = 'Se connecter';
+include 'form_login_register.php';
 
-    <?php if ($error): ?>
-        <p style="color:red;"><?= $error ?></p>
-    <?php endif; ?>
-
-    <form method="post">
-        <label for="username">Identifiant</label>
-        <input type="text" id="username" name="username" placeholder="Identifiant" required>
-
-        <label for="password">Mot de passe</label>
-        <input type="password" id="password" name="password" placeholder="Mot de passe" required>
-
-        <button type="submit">Se connecter</button>
-    </form>
-</div>
-
-<?php include 'include/footer.php'; ?>
+include 'include/footer.php';