From aa260d48dab69d99e7a82a26e7c01f505d9104f7 Mon Sep 17 00:00:00 2001
From: Lain Iwakura <lain@iwakurahome.ru>
Date: Mon, 16 Jun 2025 02:19:06 +0300
Subject: [PATCH] debugdebugich

---
 main/login.php | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/main/login.php b/main/login.php
index fc1b20f..1092e67 100644
--- a/main/login.php
+++ b/main/login.php
@@ -31,6 +31,7 @@ $success = '';
 if ($_SERVER['REQUEST_METHOD'] === 'POST') {
     $username = filter_input(INPUT_POST, 'username', FILTER_SANITIZE_STRING);
     $password = filter_input(INPUT_POST, 'password', FILTER_SANITIZE_STRING);
+    
     error_log("Login attempt for user: " . $username);
 
     if ($username && $password) {
@@ -38,6 +39,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
             $stmt = $db->prepare('SELECT id, password, is_blocked, login_attempts, last_attempt FROM users WHERE username = ?');
             $stmt->execute([$username]);
             $user = $stmt->fetch(PDO::FETCH_ASSOC);
+            
             error_log("User query result: " . print_r($user, true));
 
             if ($user) {
@@ -48,27 +50,27 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
                     $error = 'Too many login attempts';
                     error_log("Too many attempts for user: " . $username);
                 } else if (password_verify($password, $user['password'])) {
-                    error_log("Successful login for user: " . $username);
                     $stmt = $db->prepare('UPDATE users SET login_attempts = 0, last_attempt = NOW() WHERE id = ?');
                     $stmt->execute([$user['id']]);
                     $_SESSION['user_id'] = $user['id'];
                     $_SESSION['username'] = $username;
+                    error_log("Successful login for user: " . $username);
                     header('Location: index.php');
                     exit;
                 } else {
-                    error_log("Invalid password for user: " . $username);
                     $stmt = $db->prepare('UPDATE users SET login_attempts = login_attempts + 1, last_attempt = NOW() WHERE id = ?');
                     $stmt->execute([$user['id']]);
                     $error = 'Invalid password';
+                    error_log("Invalid password for user: " . $username);
                 }
             } else {
-                error_log("User not found: " . $username);
                 $error = 'User not found';
+                error_log("User not found: " . $username);
             }
         } catch (PDOException $e) {
             error_log("Login error: " . $e->getMessage());
             error_log("SQL State: " . $e->getCode());
-            error_log("Error Info: " . print_r($db->errorInfo(), true));
+            error_log("Error Info: " . print_r($e->errorInfo, true));
             $error = 'Server error';
         }
     }