diff --git a/b3-dev/api/api-php/index.php b/b3-dev/api/api-php/index.php
index 651f4a4..0f62149 100644
--- a/b3-dev/api/api-php/index.php
+++ b/b3-dev/api/api-php/index.php
@@ -33,7 +33,15 @@
       case "/key/" :
         if($vars['REQUEST_METHOD'] == "POST") 
         {
-
+          if(!empty($_POST['user']) && !empty($_POST['password']))
+          {
+            
+          }
+          else 
+          {
+            header('HTTP/1.1 403 Forbidden');
+            echo json_encode( (object) array('error'=>'PLease provide a valid user and matching password') );
+          }
         }
         else 
         {