when you get the password out of the form, encrypt it the same way and compare it to the encrypted one in the database.
