prepare($sql)) {
$stmt->bind_param("s", $email);
$stmt->execute();
$stmt->store_result();
if ($stmt->num_rows > 0) {
$stmt->bind_result($user_id, $name, $hashed_password, $role);
$stmt->fetch();
if (password_verify($password, $hashed_password)) {
$_SESSION['id'] = $user_id;
$_SESSION['user'] = $name;
$_SESSION['role'] = $role;
header('Location: index.php');
exit();
} else {
$error = 'Credenziali errate.';
}
} else {
$error = 'Credenziali errate.';
}
$stmt->close();
} else {
$error = 'Errore nel database.';
}
}
?>