What this file does: This is the login screen. It allows users to authenticate with their username or phone, and password.
Why it is needed: Session security prevents guest users from making requests on behalf of other users. Only logged-in users can initiate deposits or view their balances.
Security Note: It uses password_verify() to securely match the user-entered password against the encrypted hash saved in the database. Never store raw passwords.