while (! defined $cookies{'authorized'})
{
    if (param)
    {
         if authorized 
         {
         set cookie
         }  #end here!!!!!!!!!!!!!!!!!!
    }

#if we make it here, user isnt validated, so generate form
    generate login form
}

#now that we're out of the loop, redirect
redirect