Only store ID and sessionand get other information dynamically

Controllers/UserController.php

@@ -37,9 +37,6 @@ final class UserController
 
         session_start();
         $_SESSION["ID"] = $A_user["ID"];
-        $_SESSION["EMAIL"] = $A_user["EMAIL"];
-        $_SESSION["USERNAME"] = $A_user["USERNAME"];
-        $_SESSION["ADMIN"] = $A_user["ADMIN"];
         View::show("user/signin", array("success" => True));
     }
 
@@ -80,11 +77,19 @@ final class UserController
 
         session_start();
         
-        if(!isset($_SESSION) || !isset($_SESSION["USERNAME"])){
+        if(!isset($_SESSION) || !isset($_SESSION["ID"])){
             echo "301 NOT LOGIN";
             return;
         }
 
-        return View::show("user/view", $_SESSION);
+        $O_userModel = new UserModel();
+        $A_user = $O_userModel->getUserByID($_SESSION["ID"]);
+        if ($A_user == null){
+            // User has been deleted ?!
+            echo "Error loading your profile ?";
+            return;
+        }
+
+        return View::show("user/view", $A_user);
     }
 }

Models/UserModel.php

@@ -24,6 +24,17 @@ final class UserModel
     }
 
 
+    public function getUserByID($I_id){
+        $O_model = Model::get();
+        $stmt = $O_model->prepare("SELECT * FROM USER WHERE ID=:id");
+        $stmt->bindParam("id", $I_id);
+        $stmt->execute();
+        
+        $row = $stmt->fetch();
+        if ($row === false) return null;
+        return $row;
+    }
+
     public function getUserByEmail($S_email){
         $O_model = Model::get();
         $stmt = $O_model->prepare("SELECT * FROM USER WHERE email=:email");

Views/user/view.php

@@ -1,3 +1,4 @@
 <p> Your account : </p>
 <p> Email : <?= $A_view["EMAIL"] ?> </p>
-<p> Name : <?= $A_view["USERNAME"] ?> </p>
+<p> Name : <?= $A_view["USERNAME"] ?> </p>
+<p> Admin status : <?= $A_view["ADMIN"] ? "yes" : "no" ?> </p>