<?phpif (!$_SESSION["valid_user"]) { // User not logged in, redirect

1. <?php
2.  
3. if (!$_SESSION["valid_user"]) {
4. // User not logged in, redirect to login page
5. Header("Location: login.php");
6. }
7. else
8. {
9. echo "SELECT * FROM users where username='$username' AND password='$password' ";
10. $result = mysql_query("SELECT * FROM users WHERE username='".$_SESSION['username']."'");
11. $row = mysql_fetch_array($result);
12. $userid = $row['user_id'];
13.  
14. }
15. ?>