if($ENV{REQUEST_METHOD} eq 'POST')
{
    $q = new CGI;

    $username = $q->param('user_name');
    $pword = $q->param('pwd');

}

my( $session, $query, $cookie, $name, $cgi);

#Create a new session
$session = new CGI::Session(undef, undef, {Directory=>'./tmp/sessions'});

#Allow cgi-session read the cookie at the next request
$cookie = $query->cookie( -name => $session->name,
                          -value => $session->id );
print $query->header( -cookie=>$cookie);

#Store the username in the session
$name = $cgi->param($username);
$session->param($username, $name);

#Check if the username and password match
#Do rest of code