Implementata logica sessioni

2026-05-14 14:52:04 +00:00 · 2026-04-01 11:18:58 +02:00
parent 8b60443290
commit 22e1ba3245
3 changed files with 50 additions and 1 deletions
@@ -7,6 +7,43 @@
    <link rel="stylesheet" href="style.css">
 </head>
 <body>
+    <?php
+        session_start();
+        include 'db_conf.php';
+        
+        $error = '';
+        
+        if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+            $email = $_POST['email'];
+            $password = $_POST['password'];
+            
+            $sql = "SELECT Name, Password FROM Users WHERE Email = ?";
+            if ($stmt = $conn->prepare($sql)) {
+                $stmt->bind_param("s", $email);
+                $stmt->execute();
+                $stmt->store_result();
+                
+                if ($stmt->num_rows > 0) {
+                    $stmt->bind_result($name, $hashed_password);
+                    $stmt->fetch();
+                    
+                    if (password_verify($password, $hashed_password)) {
+                        $_SESSION['user'] = $name;
+                        header('Location: index.php');
+                        exit();
+                    } else {
+                        $error = 'Credenziali errate.';
+                    }
+                } else {
+                    $error = 'Credenziali errate.';
+                }
+                
+                $stmt->close();
+            } else {
+                $error = 'Errore nel database.';
+            }
+        }
+    ?>
    <form action="" method="POST">
        <h2>Login</h2>
        <label for="email">Indirizzo e-mail:</label>