Ciao l'ho fatto così va bene???

<?php

session_start();

$user = $SESSION['username'];

if ($user)


//user is logged in

if {$_POST['submit'])) {


// check fields

$oldpassword = md5($_POST['oldpassword']);
$newpassword = md5($_POST['newpassword']);
$repeatnewpassword = md5 ($_POST['repeatnewpassword"]);

// check password against db

//connect db
$connect = mysql_connect("localhost","root","") or die ();
mysql_select_db($db['name']) or die ();

$queryget = mysql_query("SELECT password FROM WHERE username='$user'") or die ("Query didnt work");
$row = mysql_fetch_assoc($queryget);

$oldpassworddb = $row['password'];

echo $olrdpassworddb."
";
echo $oldpassword."<br">;

//check passwords
if ($oldpassword==$oldpassworddb)
{

// check two new passwords
if ($newpasword==$repeatnewpassword)

{

//success
//change password in db

$querychange = mysql_query("'
UPDATE users SET password='$newpassword' WHERE username="$user'
"};
session_destroy();
die("Your password has been changed. <a href='index.php'>Rerturn to main page.")


}
else

die ("New passwords don't match!")



}
else

die("Old password doesnt match!");


}
else
?>

Però mi da questo errore Parse error: syntax error, unexpected '{', expecting '(' in D:\Inetpub\webs\feelmeit\manageme.php on line 95

ora cosa devo fare?