<?php
//mypage01.php
session_start();
require_once $_SERVER['DOCUMENT_ROOT'].'/kngil/bbs/db_conn.php';

if (!isset($_SESSION['login'])) {
    http_response_code(401);
    echo json_encode(['status' => 'error', 'message' => '로그인이 필요합니다.']);
    exit;
}

$input = json_decode(file_get_contents('php://input'), true);
$pw = trim($input['pw'] ?? '');

if ($pw === '') {
    echo json_encode(['status' => 'error', 'message' => '비밀번호를 입력하세요.']);
    exit;
}

$userId = $_SESSION['login']['user_id'];

$stmt = $pdo->prepare("
    SELECT user_pw
    FROM kngil.users
    WHERE user_id = :user_id
      AND use_yn = 'Y'
");
$stmt->execute([':user_id' => $userId]);

$user = $stmt->fetch(PDO::FETCH_ASSOC);

if (!$user || $user['user_pw'] !== $pw) {
    echo json_encode(['status' => 'error', 'message' => '비밀번호가 올바르지 않습니다.']);
    exit;
}

// ✅ 비밀번호 재인증 성공
$_SESSION['mypage_verified'] = true;

echo json_encode(['status' => 'success']);