If you take a simple solution to this - you need to write a request where you check the status of the user.
I will sign a simple example, for simplicity we do not take into account protection against injections, etc.
For example, you need to only allow access to users with status = 4, then it might look like this.
For example, a user logs in via the login form and submits their username and password. You check them and pull data from the database. On a live example, you still need to write a check to see if the data entered is correct at all and whether such a user exists. But nonetheless.

$r = mysqli_query($mysqli, "
  SELECT * FROM `users` 
  WHERE `email` = '$email' 
  AND `password` = '$password'
");
$f = mysqli_fetch_array($r);

if($f['status'] == '4') { // Если в поле status для текущего юзера у нас значение 4
  echo 'Разрешаем доступ, выполняем дальнешие действия по авторизации';
} else {
  echo 'Пользователю с вашим статусом доступ запрещен';
}

Good afternoon.
If you don't understand, then don't reinvent the wheel.
Take any framework, all this is implemented there. Learn how it works, and only then proceed to implement your own solution.
Start with YII2 or Laravel frameworks . You can also study this material in parallel .