decrypt

                      <form class="log-in-form" action="" method="post">
                            <div class="text-center"><img src="https://img.icons8.com/bubbles/50/000000/gender-neutral-user.png"></div>
                            <label>Nama pengguna
                                <input name="user_username" type="text" placeholder="Minimal harus 4 huruf dan angka" pattern="[a-zA-Z0-9]{4,}" title="Minimal harus 4 huruf dan angka tanpa spasi. a-z A-Z 0-9" oninvalid="this.setCustomValidity('Minimal harus 4 huruf dan angka tanpa spasi. a-z A-Z 0-9')" required>
                            </label>
                            <label><b>Kata sandi</b>
                                <input type="password" id="myInput" name="user_password2" placeholder="Minimal harus 8 huruf dan angka" pattern=".{8,}" title="Minimal harus 8 huruf dan angka" oninvalid="this.setCustomValidity('Minimal harus 8 huruf dan angka')" required>
                            </label>
                                <div class="show-password4 password4"><input type="checkbox" onclick="myFunction()"></div> &nbsp; Lihat kata sandi
                            <br/>
                            <br/>
                            <div class="text-center">
                                <p>
                                <button class="button primary" type="submit" name="submit" value="data">Masuk</button>
                                </p>
                            </div>
                        <?php
                            session_start();
                            require_once("../connection/connection.php");

                            if ($_POST['submit']) {

                            $user_username = htmlentities($_POST['user_username']);
                            $user_password2 = $_POST['user_password2'];

                            $sql = "SELECT * FROM tw_user WHERE user_username = '$user_username'";
                            $query = $db->query($sql);
                            $hasil = $query->fetch(PDO::FETCH_ASSOC);

                            $pass = $hasil['user_password'];

                            list($pass, $enc_iv) = explode("::", $pass);
                            $cipher_method = 'aes-256-ctr';
                            $key = $hasil['key_generate'];
                            $enc_key = openssl_digest($key, 'SHA512', TRUE);
                            $token = openssl_decrypt($pass, $cipher_method, $enc_key, 0, hex2bin($enc_iv));

                            if($user_username <> $hasil['user_username']) {
                            echo "<div class='text-center'>Nama pengguna Belum Terdaftar! <a href='../id/masuk'>Kembali</a></div>";
                            } else {
                            if($token <> $user_password2) {
                            echo "<div class='text-center'>Kata sandi salah! <a href='../id/masuk'>Kembali</a></div>";
                            } else {
                            $_SESSION['user_id'] = htmlentities($hasil['user_id']);
                            $_SESSION['user_username'] = htmlentities($hasil['user_username']);
                            $_SESSION['group_name'] = htmlentities($hasil['group_name']);
			                $_SESSION['user_name'] = htmlentities($hasil['user_name']);

                            if($_SESSION['group_name'] == 'Administrator')
                            echo '<div class="text-center">Mengarahkan ke halaman Admin <meta http-equiv="Refresh" Content="1; URL=../id/admin/"></div>';
                            if ($_SESSION['group_name'] == 'Member')
                            echo '<div class="text-center">Mengarahkan ke halaman Member <meta http-equiv="Refresh" Content="1; URL=../id/member/"></div>';
                            }
                            }
                            }
                        ?>