Sign in
';
foreach ($errors as $err) {
echo '' . $err . '';
}
echo '';
} else {
$pass_hash = password_hash($user_pass, PASSWORD_DEFAULT);
$sql = "SELECT user_id, user_name, user_pass FROM users WHERE user_name = '" . $user_name . "';";
$result = mysqli_query($dbc, $sql);
if (!$result) {
echo 'An error occurred while signing in: ' . mysqli_error($dbc);
} else {
if (mysqli_num_rows($result) == 0) {
echo 'There is no user with that name. Did you mean to create a new account?';
} else {
while ($row = mysqli_fetch_assoc($result)) {
if (!password_verify($user_pass, $row['user_pass'])) {
echo 'Password does not match!';
} else {
$_SESSION['signed_in'] = true;
$_SESSION['user_id'] = $row['user_id'];
$_SESSION['user_name'] = $row['user_name'];
header("Location: index.php");
}
}
}
}
}
}
?>