Refactor geolocation queries to use AND conditions for better accuracy. Update permission checks for equipment management to utilize unified 'equipment' scope. Enhance user role assignment logic to ensure correct username usage. Improve session error handling in login and index files for clearer user feedback.

login.php

@@ -53,6 +53,11 @@ $username = $password = '';
 $username_err = $password_err = '';
 $retry = 0;
 
+// Check for error parameter from redirects
+if (isset($_GET['error']) && $_GET['error'] === 'session_expired') {
+    $password_err = $password_err_2 ?? 'Session expired or invalid. Please login again.';
+}
+
 // Process submitted form data
 if ($_SERVER['REQUEST_METHOD'] === 'POST') {