Untitled

<?php
    require_once("../Style/user-navigation.php");
    require_once("../System/class.user.php");

    $user = new USER();

    if($user->is_loggedin()!=""){
    ?><script> location.replace("Home.php?action=select&id=<?php echo $userRow['id']; ?>"); </script>
    <?php
    }

    if(isset($_POST['btn-login'])){
        $username = strip_tags($_POST['username']);
        $password = strip_tags($_POST['password']);

        if($user->doLogin($username,$password)){ ?>
        <script> location.replace("Home.php?action=select&id=<?php echo $userRow['id']; ?>"); </script>
        <?php
        }
    }

?>

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<body class="nav-md" style="background-image: url('https://zellox.com/wp-content/uploads/2016/05/background-website-%E2%80%AB1%E2%80%AC-1600x900.gif');">

        <!-- page content -->
        <div class="clearfix"></div>

        <a class="hiddenanchor" id="signin"></a>

        <div class="login_wrapper">
        <div class="animate form login_form">
          <section class="login_content">
            <form method="post">
              <h1>Login Form</h1>
              <div>
                <input type="text" class="form-control" name="username" placeholder="Username" required="" />
              </div>
              <div>
                <input type="password" class="form-control" name="password" placeholder="Password" required="" />
              </div>
              <div>
               <button type="submit" name="btn-login" class="btn btn-primary ">Log In</button>
                <a class="reset_pass" href="#">Lost your password?</a>
              </div>

              <div class="clearfix"></div>

              <div class="separator">
                <p class="change_link">New to site?
                  <a href="Register.php" class="to_register"> Create Account </a>
                </p>

                <div class="clearfix"></div>
                <br />

              </div>
            </form>
          </section>
        </div>
        </div>
      </div>
        <!-- /page content -->
  </body>
</html>

public function doLogin($username,$password){
        try
        {
            $stmt = $this->conn->prepare("SELECT id, username, password FROM users WHERE username=:username");
            $stmt->execute(array(':username'=>$username));
            $userRow=$stmt->fetch(PDO::FETCH_ASSOC);
            if($stmt->rowCount() == 1)
            {
                if($password= $userRow['password'])
                {
                    $_SESSION['user_session'] = $userRow['id'];
                    return true;
                }
                else
                {
                    return false;
                }
            }
        }
        catch(PDOException $e)
        {
            echo $e->getMessage();
        }
    }