<?php

    include("bk_global.php");

    $login_query = $db->prepare("
        SELECT * FROM `users`
        WHERE
            `username` = :username
        AND
            `password` = :password
    ");

    $params = array(
        ':username' => $_POST['username'],
        ':password' => $_POST['password']
    );

    $login_query->execute($params);

    if ($login_query->fetch())
    {
        $_SESSION['username'] = $_POST['username'];
        header("Location: bk_home.php");
    }
    else
    {
        die("Invalid login.");
    }

?>