<?php
session_start();
require_once 'config.php';

$username = $_POST["username"];
$password = $_POST["password"];

$conn = dbConn();

$stmt = $conn->prepare("SELECT * FROM Users WHERE Users_username = :username AND Users_password = :password");
$stmt->bindParam(":username", $username);
$stmt->bindParam(":password", $password);
$stmt->execute();

if (count($stmt->fetchAll(PDO::FETCH_ASSOC)) > 0)
{
    $_SESSION["username"] = $username;
    echo json_encode(array("message" => "ok"));
}
else
{
    echo json_encode(array("message" => "Username or password is incorrect"));
}