From 0f8b0154f893b13392b8b4cf7555fad8b5b281bd Mon Sep 17 00:00:00 2001
From: Aadhavan Srinivasan <aadhavan@twomorecents.org>
Date: Sun, 25 Jun 2023 14:06:40 -0500
Subject: [PATCH] Added code to process the user's login information

---
 login.php | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 login.php

diff --git a/login.php b/login.php
new file mode 100644
index 0000000..98e3c55
--- /dev/null
+++ b/login.php
@@ -0,0 +1,27 @@
+<?php
+$email = $_GET['email'];
+$password = $_GET['password'];
+
+$session = init_cass_db();
+
+$statement = $session->prepare('SELECT password FROM users WHERE email=? ALLOW FILTERING;');
+
+$result = $session->execute($statement,array('arguments' => array($email)));
+
+if ($result->count() <= 0) {
+	echo('Invalid email address or password.');
+	exit();
+} else {
+	$hash = $row[0]['password'];
+
+	if (password_verify($password,$hash) != true) {
+		echo('Invalid email address or password.');
+		exit();
+	} else {
+		session_start();
+		$_SESSION['user'] = $email;
+		echo('Logged in successfully. You are ' . $_SESSION['user']);
+	}
+}
+
+?>