setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
} catch (Exception $e) {
die("DB Error: " . $e->getMessage());
}
$err = "";
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$user = trim($_POST['username'] ?? '');
$pass = $_POST['password'] ?? '';
if ($user === '' || $pass === '') {
$err = "Isi username dan password.";
} else {
$stmt = $pdo->prepare("SELECT * FROM users WHERE username = :u LIMIT 1");
$stmt->execute([':u' => $user]);
$row = $stmt->fetch(PDO::FETCH_ASSOC);
if ($row && password_verify($pass, $row['password'])) {
session_regenerate_id(true);
$_SESSION['user'] = $row['username'];
header("Location: $redirectAfterLogin");
exit;
} else {
$err = "Username atau password salah.";
}
}
}
?>
Login