$error = $login = $parol = ""; { $login = $_POST['login']; $parol = $_POST['parol']; if ($login == "" || $parol == "") { $error = "Not all fields were entered<br />"; } else { $query = $con-> query("SELECT login,parol FROM users WHERE login='$login' AND parol='$parol'"); if($query->num_rows > 0){ $error = "<span class='error'>Username/Password invalid</span><br /><br />"; } else { $_SESSION['login'] = $login; $_SESSION['parol'] = $parol; } } }