public function updatePin() {
    header("Content-Type: application/json; charset=utf-8");

    $db = (new Database())->getConnection();
    $data = json_decode(file_get_contents("php://input"), true);

    if (!isset($data["id"]) || !isset($data["code_pin"])) {
        echo json_encode(["success" => false, "message" => "Paramètres manquants"]);
        return;
    }

    $stmt = $db->prepare("UPDATE membres SET code_pin = ? WHERE id = ?");
    $stmt->execute([$data["code_pin"], $data["id"]]);

    echo json_encode(["success" => true, "message" => "Code PIN mis à jour"]);
}
