include 'db.php';

$email = $_GET['email'] ?? '';
$token = $_GET['token'] ?? '';

if ($email && $token) {
    // Check if user exists with that token
    $stmt = $pdo->prepare("SELECT id FROM customers WHERE email = ? AND extra_1 = ?");
    $stmt->execute([$email, $token]);
    
    if ($stmt->fetch()) {
        // Update verified status
        $update = $pdo->prepare("UPDATE customers SET verified = 1, extra_1 = NULL WHERE email = ?");
        $update->execute([$email]);
        echo "<h1>Email Verified!</h1><p>You can now <a href='login.php'>Login here</a>.</p>";
    } else {
        echo "<h1>Invalid Link</h1><p>The verification link has expired or is incorrect.</p>";
    }
}