prepare("SELECT passwort,user_id,vorname,nachname FROM benutzer WHERE username=?")) {
$stmt->bind_param("s", $user);
$stmt->execute();
$stmt->bind_result($password_db, $user_id, $vorname, $nachname);
$stmt->fetch();
if($password_db == $password_hash) {
$_SESSION['user'] = $user;
$_SESSION['user_id'] = $user_id;
$_SESSION['vorname'] = $vorname;
$_SESSION['nachname'] = $nachname;
} else {
echo "falsches Passwort";
}
} else {
echo "falscher Benutzername";
}
$mysqli->close();
}
if (!isset($_SESSION['user'])) {
?>
Login
Abmelden";
echo "";
}
if (isset($_GET["abmelden"])) {session_destroy();}
?>