// --- Example Login Processing Logic --- // ... (after validating username and password) // Prepare a query to get user details AND their branch info $sql = "SELECT u.id, u.username, u.first_name, u.last_name, u.role, u.branch_id, b.name as branch_name FROM users u JOIN branches b ON u.branch_id = b.id WHERE u.username = :username"; $stmt = $pdo->prepare($sql); $stmt->execute(['username' => $username]); $user = $stmt->fetch(); if ($user) { // Check password (password_verify) if (password_verify($password, $user['password'])) { // Assuming you stored hashed passwords // Password is correct, so start a new session session_start(); // Store data from the DATABASE into the session $_SESSION["loggedin"] = true; $_SESSION["user_id"] = $user['id']; $_SESSION["username"] = $user['username']; $_SESSION["full_name"] = $user['first_name'] . ' ' . $user['last_name']; $_SESSION["role"] = $user['role']; // THIS IS THE CRITICAL PART $_SESSION["branch_id"] = $user['branch_id']; // This will be 1 or 2 $_SESSION["branch_name"] = $user['branch_name']; // e.g., "Downtown Pharmacy" // Redirect to welcome page header("location: dashboard.php"); } else { // Password is not valid $login_err = "Invalid username or password."; } } else { // Username doesn't exist $login_err = "Invalid username or password."; }