From e61ba0e5b87d35cc8b1f830f2e2058e1de914a33 Mon Sep 17 00:00:00 2001
From: rubisalpha <rubisalpha@noreply.localhost>
Date: Wed, 27 May 2026 07:37:10 +0000
Subject: [PATCH] Actualiser login.php

---
 login.php | 23 ++++++++++++++---------
 1 file changed, 14 insertions(+), 9 deletions(-)

diff --git a/login.php b/login.php
index 96b5204..7ceb510 100644
--- a/login.php
+++ b/login.php
@@ -42,14 +42,19 @@ if (!$bloque && $_SERVER['REQUEST_METHOD'] === 'POST') {
     $password = trim($_POST['password']);
 
     if (isset($users[$username]) && password_verify($password, $users[$username]['password'])) {
-        $_SESSION['login_attempts'] = 0;
-        $_SESSION['login_time'] = null;
-        $_SESSION['user'] = $username;
-        $_SESSION['role'] = $users[$username]['role'];
-        $_SESSION['last_activity'] = time();
-        session_regenerate_id(true);
-        header("Location: dashboard.php");
-        exit();
+        // Vérifier si le compte est en attente
+        if (isset($users[$username]['statut']) && $users[$username]['statut'] === 'en_attente') {
+            $message = "Votre compte est en attente de validation par l'administrateur.";
+        } else {
+            $_SESSION['login_attempts'] = 0;
+            $_SESSION['login_time'] = null;
+            $_SESSION['user'] = $username;
+            $_SESSION['role'] = $users[$username]['role'];
+            $_SESSION['last_activity'] = time();
+            session_regenerate_id(true);
+            header("Location: dashboard.php");
+            exit();
+        }
     } else {
         $_SESSION['login_attempts']++;
         $_SESSION['login_time'] = time();
@@ -95,7 +100,7 @@ include 'include/header.php';
 function togglePassword() {
     const input = document.getElementById('password');
     input.type = input.type === 'password' ? 'text' : 'password';
-}
+    }
 </script>
 
 <?php include 'include/footer.php'; ?>
\ No newline at end of file