I would search "secure login system php".
There is no simple fix.
This describes the basics: https://www.wikihow.com/Create-a-Sec...-PHP-and-MySQL.
Compare with https://www.sitepoint.com/users-php-sessions-mysql/ and see the differences.
If you understand what's what then you might manage to produce something safe enough.
Another approach is to get your member to sign in to Google or Facebook and harness their authentication mechanisms.
Buy something like https://encodable.com/userbase/#instructions but only after trialling with Xara.
You will have PHP and MySQL setups and maintenance and no of this comes for free.
I am not endorsing any of the above, just showing how complex it has to be.
Acorn
Bookmarks