if(isset($_POST['login'])){
    $user = $_POST['username'];
    $pass = $_POST['password'];

    $data = mysqli_query($conn, "SELECT * FROM admin WHERE username='$user' AND password='$pass'");
    $cek = mysqli_num_rows($data);

    if($cek > 0){
        $_SESSION['login'] = true;
        header("location:admin.php");
    } else {
        echo "Login gagal";
    }
}
?>

<!DOCTYPE html>
<html>
<head>
<title>Login Admin</title>
</head>
<body>

<h2>Login Admin</h2>

<form method="POST">
<input type="text" name="username" placeholder="Username"><br><br>
<input type="password" name="password" placeholder="Password"><br><br>
<button name="login">Login</button>
</form>

</body>
</html>