<?php
session_start();
require_once 'config.php';

if ($_SERVER["REQUEST_METHOD"] == "POST") {
    // Handle login form submission
    $email = $_POST['email'];
    $password = $_POST['password'];

    // Validate login credentials and fetch user details
    $query = "SELECT id, username, password, isAdmin FROM users WHERE email = ?";
    $stmt = $mysqli->prepare($query);
    $stmt->bind_param("s", $email);
    $stmt->execute();
    $stmt->bind_result($user_id, $user_username, $user_password, $user_isAdmin);

    // Fetch the result
    if ($stmt->fetch() && password_verify($password, $user_password)) {
        $_SESSION['user_id'] = $user_id;

        // Redirect to the main domain after successful login
        header('Location: http://watch.twip-network.org');
        exit();
    } else {
        echo "Invalid email or password.";
    }

    // Close the statement
    $stmt->close();
}
include "pages/login.html";
?>