diff --git a/admin.php b/admin.php
index d66635d..5d64b15 100644
--- a/admin.php
+++ b/admin.php
@@ -1,3 +1,22 @@
+<?php
+if (null !== $_POST['set_pwd']) {
+	$pwd = $_POST['set_pwd'];
+	file_put_contents('data/admin_pwd', password_hash($pwd, PASSWORD_DEFAULT));
+	setcookie('owe_admin', base64_encode($pwd), ['httponly' => true]);
+	header('location: admin.php');
+} elseif (null !== $_POST['pwd']) {
+	$pwd = $_POST['pwd'];
+	if (password_verify($pwd, file_get_contents('data/admin_pwd'))) {
+		setcookie('owe_admin', base64_encode($pwd), ['httponly' => true]);
+		header('location: admin.php');
+		print("DER KEKS MÜSSTE GESETZT SEIN");
+	} else {
+		print("Nope, falsch");
+	}
+}
+
+?>
+
 <!DOCTYPE html>
 
 <?php
@@ -47,13 +66,6 @@ $config_data = json_decode($raw_json_config, false);
 
 	<?php
 
-	if (null !== $_POST['set_pwd']) {
-		$pwd = $_POST['set_pwd'];
-		file_put_contents('data/admin_pwd', password_hash($pwd, PASSWORD_DEFAULT));
-		setcookie('owe_admin', base64_encode($pwd), ['httponly' => true]);
-		header('location: admin.php');
-	}
-
 	endif;
 
 	if ($login):
@@ -96,17 +108,8 @@ $config_data = json_decode($raw_json_config, false);
 	</form>
 
 	<?php
-	if (null !== $_POST['pwd']) {
-		$pwd = $_POST['pwd'];
-		if (password_verify($pwd, file_get_contents('data/admin_pwd'))) {
-			setcookie('owe_admin', base64_encode($pwd), ['httponly' => true]);
-			header('location: admin.php');
-		} else {
-			print("Nope, falsch");
-		}
-	}
-
-	endif; ?>
+	endif;
+	?>
 	</p>
 
 	<script>