32 lines
819 B
PHP
32 lines
819 B
PHP
<?php
|
|
session_start();
|
|
require_once "Config.php";
|
|
|
|
if (!isset($_POST['username']) || !isset($_POST['password'])) {
|
|
echo "Username atau password salah";
|
|
exit;
|
|
}
|
|
|
|
$username = $_POST['username'];
|
|
$password = $_POST['password'];
|
|
|
|
// Ambil user berdasarkan username
|
|
$stmt = mysqli_prepare($conn, "SELECT * FROM user WHERE username=?");
|
|
mysqli_stmt_bind_param($stmt, "s", $username);
|
|
mysqli_stmt_execute($stmt);
|
|
|
|
$result = mysqli_stmt_get_result($stmt);
|
|
$row = mysqli_fetch_assoc($result);
|
|
|
|
// Kalau username tidak ditemukan ATAU password salah
|
|
if (!$row || !password_verify($password, $row['password'])) {
|
|
echo "Username atau password salah";
|
|
exit;
|
|
}
|
|
|
|
// Login sukses
|
|
$_SESSION['username'] = $row['username'];
|
|
echo "<script>alert('Silakan login.'); window.location.href='mainboard.html';</script>";
|
|
exit;
|
|
?>
|