<?php session_start(); // If you already have a login, reuse the session variable it sets for admin // Example: $_SESSION['is_admin'] = true; after login if (empty($_SESSION['is_admin']) || $_SESSION['is_admin'] !== true) { header('Location: /core/auth/login.php'); exit; }