$sql = $db->prepare("SELECT username,password FROM students WHERE username=? and

1. $sql = $db->prepare("SELECT username,password FROM students WHERE username=? and password=?");
2. $sql->execute(array($username, $password));
3. $allRows = $sql->fetchAll(PDO::FETCH_ASSOC);
4.                                    
5. if ($sql->count($allRows) == 1){
6.      $_SESSION['login_user']=$username;
7.      header("location: index.php");
8. }