if ($_SERVER["REQUEST_METHOD"] == "POST") {
    $email = trim($_POST["email"]);
    $password = trim($_POST["password"]);

    // Prepare SQL to fetch user details
    $sql = "SELECT name, email, password, user_type FROM users WHERE email = ?";
    $stmt = $conn->prepare($sql);
    $stmt->bind_param("s", $email);
    $stmt->execute();
    $stmt->store_result();

    // Check if user exists
    if ($stmt->num_rows > 0) {
        $stmt->bind_result($db_name, $db_email, $db_password, $user_type);
        $stmt->fetch();

        // Verify password
        if (password_verify($password, $db_password)) {
            // Store session variables
            $_SESSION['user_email'] = $db_email;
            $_SESSION['user_name'] = $db_name; // Store user name
            $_SESSION['user_type'] = $user_type; // Store user type
        
            // Redirect based on user type
            if ($user_type === 'admin') {
                header("Location: admin-dashboard.php");
            } else {
                header("Location: dashboard.php");
            }
            exit();
        } else {
            $error = "Invalid email or password.";
        }
    } else {
        $error = "No account found with that email.";
    }
    $stmt->close();
}
?>

<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <title>Login - SwimSmart</title>
    <link rel="stylesheet" href="login.css">
</head>
<body>

<section class="login-form">
    <h2>Login</h2>
    
    <form action="login.php" method="POST">
        <input type="email" name="email" placeholder="Email Address" required>
        <input type="password" name="password" placeholder="Password" required>
        <button type="submit">Login</button>
    </form>
</section>

</body>
</html>