public function login_process (){
if($this->request->getMethod() == 'post'){
$user_email = strip_tags(strtolower($this->request->getVar('user_email')));
$user_password = strip_tags($this->request->getVar('user_password'));
$account = $this->UserModel->user_control($user_email);
if(!$account){
$session = \Config\Services::session();
$session->setFlashdata('error', 'No such user in our database');
return redirect()->to(site_url('/login-page')); // redirects back to user login page
}else{
$hash = $account->user_password;
$user_name = $account->user_name;
$user_id = $account->user_id;
if(password_verify($this->request->getVar('user_password'),$hash)){
$start_session = [
'user_email' => $user_email,
'user_password' => $user_password,
'user_name' => $user_name,
'user_id' => $user_id
];
$session = \Config\Services::session();
$session->set($start_session);
return redirect()->to(site_url('user-area')); // if everything is OK, redirects to this page
}else{
$session = \Config\Services::session();
$session->setFlashdata('error', 'Wrong Password');
return redirect()->to(site_url('login-page')); //if the password is wrong, redirects to login page again
}
}
}
}