session_start(); session_register("permission2"); include "include.php"; $_SESSION["permission2"]="";//reset session if($_POST["Submit"]=="LOGIN"){ $table="tbl_users"; $query = "SELECT * FROM $table where user_name='".$_POST["textfield2"]."'"; $result = mysql_query($query); $val = mysql_fetch_array($result); if($val["password"]==$_POST["textfield3"]){ $_SESSION["permission2"]= $val["user_name"]; //echo "correct"; echo(""); }else{ //echo "incorrect password"; echo(""); $_SESSION["permission2"]=""; } mysql_close(); } ?>