Php Login Class - Security and Logic check

I write a simple php login class that only operate on php sessions to login user in the system.

My Question is that this class is secure enough to be used on production environment ?

NOTE : Die Statements are used only for testing of scripts

class.login.inc.php

class Login
{

//setSessionFunction sets a login session with user id and all user details array

private function setSession($user_id,$user_details)
{
  $_SESSION['user_id'] = $user_id;
  $_SESSION['user_details'] = $user_details;
  $_SESSION['key'] = $this->hashSession();
}

//GetIp function is used to get ip address of client
private function hashSession()
{
return sha1($_SERVER['HTTP_USER_AGENT'] . getIP());
}


//get sessions and verify them
public function getSession(){

if(isset($_SESSION['user_id']) && ($_SESSION['user_id']!== '') )
 if($this->verifySessionUser($_SESSION['user_id']) === true )
  if($this->hashSession() == $_SESSION['key'])
return true;
else
 return false;


}


//Logout Function 
public function logout(){
   $_SESSION['user_id'] = null;
   $_SESSION['key'] = null;
   $_SESSION = array();
   session_unset();
   session_destroy();
}
public function verifyUser($username,$password){
  $password = sha1($password);
  $conn = new mysqli(DB_HOST,DB_USERNAME,DB_PASSWORD,DB_DATABASE);
  if(!$conn) die("Connection Error To DATABASE" . mysqli_connect_errno());
  $sql = "SELECT * FROM user WHERE username = ?";
  $mysqli = $conn->prepare($sql);
  if(!$conn) die("Query Error To DATABASE In Class Session" . mysqli_errno($conn));
  $mysqli->bind_param("s",$username);
  $mysqli->execute();
  $result = $mysqli->get_result();
  $mysqli->close();
  $conn->close();
   if($result->num_rows > 0)
      {
           $r = $result->fetch_assoc();
          if($r['password'] === $password)
          {
     $this->setSession($r['user_id'],$r);
     return true;
          }else return false;
     }
     else
        return false;
        return false;

}


//Private DataBase Verification of User Credentials
private function verifySessionUser($user_id){
$conn = new mysqli(DB_HOST,DB_USERNAME,DB_PASSWORD,DB_DATABASE);
  if(!$conn) die("Connection Error To DATABASE" . mysqli_errno());
  $sql = "SELECT * FROM user WHERE user_id = ?";
  $mysqli = $conn->prepare($sql);
  if(!$conn) die("Query Error To DATABASE In Class Session" . mysqli_errno());
  $mysqli->bind_param("d",$user_id);
  $mysqli->execute();
  $result = $mysqli->get_result();
  $mysqli->close();
  $conn->close();
   if($result->num_rows > 0)
      {
     return true;
     }
     else
        return false;
  }
}

securepage.php

$user = new Session();
   if($user->getSession() == true)
      {
         header("location: admin.php");
         exit();
       }

Is there any security measures i should consider in future ?