require('connect.php'); if(isset($_REQUEST["submit"])){ $user=$_POST["username"]; $pass=$_POST["password"]; $result = mysql_query("SELECT * FROM user where username='".$user."' and password='".md5($pass)."'",$db); while($fields = mysql_fetch_array($result)){ $_SESSION['user']=$fields[username]; ?> } } ?>