Untitled

if (isset($_POST['login'])) {
		$post_username = mysqli_real_escape_string($db, trim($_POST['username']));
		$post_password = mysqli_real_escape_string($db, trim($_POST['password']));
		$captcha = isset($_POST['g-recaptcha-response']) ? $_POST['g-recaptcha-response']:'';

$secret_key = ''; //masukkan secret key-nya berdasarkan secret key masig-masing saat create api key nya
$error = 'Gagal kirim form: periksa nama, komentar dan captcha nya';
if (empty($post_username) || empty($post_password)) {
			$msg_type = "error";
			$msg_content = "<b>Gagal:</b> Mohon mengisi semua input.";

	} else 	if (!$captcha) {
			$msg_type = "error";
			$msg_content = "<b>Gagal:</b> Anda bukan manusia.";
} else if ($captcha != '' && $post_username != '' && $post_password != '') {
   $url = 'https://www.google.com/recaptcha/api/siteverify?secret=' . urlencode($secret_key) . '&response=' . $captcha;
   $recaptcha = file_get_contents($url);
   $recaptcha = json_decode($recaptcha, true);
if (!$recaptcha['success']) {
	  $msg_type = "error";
				$msg_content = "<b>Gagal:</b> Anda bukan manusia.";
   } else {


			$check_user = mysqli_query($db, "SELECT * FROM users WHERE username = '$post_username'");

			if (mysqli_num_rows($check_user) == 0) {
				$msg_type = "error";
				$msg_content = "<b>Gagal:</b> Username atau password salah.";
			} else {
				$data_user = mysqli_fetch_assoc($check_user);
			if(!password_verify($post_password, $data_user['password'])) { //
					$msg_type = "error";
					$msg_content = "<b>Gagal:</b> Username atau password salah.";
				} else if ($data_user['status'] == "Suspended") {
					$msg_type = "error";
					$msg_content = "<b>Gagal:</b> Akun nonaktif.";
				} else {
					$_SESSION['user'] = $data_user;
					header("Location: ".$cfg_baseurl);
				}
			}