prepare("SELECT * FROM users WHERE username = ?"); $stmt->execute([$_POST['username']]); $user = $stmt->fetch(PDO::FETCH_ASSOC); if ($user && password_verify($_POST['password'], $user['password'])) { $_SESSION['user_id'] = $user['id']; $_SESSION['firm_id'] = $user['firm_id']; $_SESSION['role'] = $user['role']; header("Location: index.php?action=dashboard"); exit; } else { $login_error = "Invalid username or password."; } } if (!isset($_SESSION['user_id']) && $action !== 'login') { header("Location: index.php?action=login"); exit; } $sysSettings = ['business_name' => 'Company Name']; if (isset($_SESSION['firm_id'])) { $stmt = $pdo->prepare("SELECT * FROM firms WHERE id = ?"); $stmt->execute([$_SESSION['firm_id']]); $sysSettings = $stmt->fetch(PDO::FETCH_ASSOC); } ?> <?= htmlspecialchars($sysSettings['business_name']) ?> - ERP

App Login

Support: +91-9999999999
View file views/{$action}.php not found.
"; } } else { echo "
Invalid route requested.
"; } ?>