Changeset 477

Timestamp:

May 3, 2014 3:13:19 PM (10 years ago)

Author:

anonymous

Message:

Added cookie storage to Prefs(). Created App->addCookie method. Improved PHP version checks.

Location:

trunk

Files:

• lib/App.inc.php (modified) (4 diffs)
• lib/ImageThumb.inc.php (modified) (2 diffs)
• lib/Prefs.inc.php (modified) (21 diffs)
• lib/Upload.inc.php (modified) (1 diff)
• lib/Utilities.inc.php (modified) (1 diff)
• services/login.php (modified) (1 diff)

trunk/lib/App.inc.php

@@ -179 +179 @@
         $this->timer = new ScriptTimer();
         $this->timer->start('_app');
+
+        // The codebase now requires a minimum PHP version.
+        $codebase_minimum_php_version = '5.3.0';
+        if (version_compare(PHP_VERSION, $codebase_minimum_php_version, '<')) {
+            $this->logMsg(sprintf('Codebase minimum PHP version of %s not satisfied (you have %s). ', $codebase_minimum_php_version, phpversion()), LOG_NOTICE, __FILE__, __LINE__);
+        }
     }
 
@@ -608 +614 @@
         preg_match_all('/(<[^>\s]{7,})[^>]*>/', $message, $strip_tags_allow);
         $message = strip_tags(preg_replace('/\s+/', ' ', $message), (!empty($strip_tags_allow[1]) ? join('> ', $strip_tags_allow[1]) . '>' : null));
+
+        // Serialize multi-line messages.
+        $message = preg_replace('/\s+/m', ' ', $message);
 
         // Store this event under a unique key, counting each time it occurs so that it only gets reported a limited number of times.
@@ -1241 +1250 @@
     }
 
-
     /**
      * to enforce the user to connect via http (port 80) by redirecting them to
@@ -1252 +1260 @@
         }
     }
+
+    /*
+    * Sets a cookie, with error checking and some sane defaults.
+    *
+    * @access   public
+    * @param    string  $name       The name of the cookie.
+    * @param    string  $value      The value of the cookie.
+    * @param    string  $expire     The time the cookie expires, as a unix timestamp or string value passed to strtotime.
+    * @param    string  $path       The path on the server in which the cookie will be available on
+    * @param    string  $domain     The domain that the cookie is available to
+    * @param    bool    $secure     Indicates that the cookie should only be transmitted over a secure HTTPS connection from the client.
+    * @param    bool    $httponly   When TRUE the cookie will be made accessible only through the HTTP protocol (makes cookies unreadable to javascript).
+    * @return   bool                True on success, false on error.
+    * @author   Quinn Comendant <quinn@strangecode.com>
+    * @version  1.0
+    * @since    02 May 2014 16:36:34
+    */
+    public function setCookie($name, $value, $expire='+10 years', $path=null, $domain=null, $secure=null, $httponly=null)
+    {
+        if (!is_scalar($name)) {
+            $this->logMsg(sprintf('Cookie name must be scalar, is not: %s', getDump($name)), LOG_NOTICE, __FILE__, __LINE__);
+            return false;
+        }
+        if (!is_scalar($value)) {
+            $this->logMsg(sprintf('Cookie "%s" value must be scalar, is not: %s', $name, getDump($value)), LOG_NOTICE, __FILE__, __LINE__);
+            return false;
+        }
+
+        // Defaults.
+        $expire = (is_numeric($expire) ? $expire : (is_string($expire) ? strtotime($expire) : $expire));
+        $secure = $secure ?: ('' != getenv('HTTPS') && $this->getParam('ssl_enabled'));
+        $httponly = $httponly ?: true;
+
+        // Make sure the expiration date is a valid 32bit integer.
+        if (is_int($expire) && $expire > 2147483647) {
+            $this->logMsg(sprintf('Cookie "%s" expire time exceeds a 32bit integer (%s)', $key, date('r', $expire)), LOG_NOTICE, __FILE__, __LINE__);
+        }
+
+        // Measure total cookie length and warn if larger than max recommended size of 4093.
+        // https://stackoverflow.com/questions/640938/what-is-the-maximum-size-of-a-web-browsers-cookies-key
+        // The date the header name include 51 bytes: Set-Cookie: ; expires=Fri, 03-May-2024 00:04:47 GMT
+        $cookielen = strlen($name . $value . $path . $domain . ($secure ? '; secure' : '') . ($httponly ? '; httponly' : '')) + 51;
+        if ($cookielen > 4093) {
+            $this->logMsg(sprintf('Cookie "%s" has a size greater than 4093 bytes (is %s bytes)', $key, $cookielen), LOG_NOTICE, __FILE__, __LINE__);
+        }
+
+        // Ensure PHP version allow use of httponly.
+        if (version_compare(PHP_VERSION, '5.2.0', '>=')) {
+            $ret = setcookie($name, $value, $expire, $path, $domain, $secure, $httponly);
+        } else {
+            $ret = setcookie($name, $value, $expire, $path, $domain, $secure);
+        }
+
+        if (false === $ret) {
+            $this->logMsg(sprintf('Failed to set cookie (%s=%s) probably due to output before headers.', $name, $value), LOG_NOTICE, __FILE__, __LINE__);
+        }
+        return $ret;
+    }
 } // End.

trunk/lib/ImageThumb.inc.php

@@ -128 +128 @@
                 if (!is_dir($params['source_dir'])) {
                     $app->logMsg(sprintf('Attempting to auto-create source directory: %s', $params['source_dir']), LOG_NOTICE, __FILE__, __LINE__);
-                    if (phpversion() > '5') {
+                    if (version_compare(PHP_VERSION, '5.0.0', '>=')) {
                         // Recursive.
                         mkdir($params['source_dir'], isset($params['dest_dir_perms']) ? $params['dest_dir_perms'] : $this->getParam('dest_dir_perms'), true);
@@ -607 +607 @@
 
         // Sharpen image using a custom filter matrix.
-        if (phpversion() > '5.1' && true === $spec['sharpen'] && $spec['sharpen_value'] > 0) {
+        if (version_compare(PHP_VERSION, '5.1.0', '>=') && true === $spec['sharpen'] && $spec['sharpen_value'] > 0) {
             $sharpen_value = round((((48 - 10) / (100 - 1)) * (100 - $spec['sharpen_value'])) + 10); // TODO: WTF is this math?
             imageconvolution($dest_image_resource, array(array(-1, -1, -1), array(-1, $sharpen_value, -1),array(-1, -1, -1)), ($sharpen_value - 8), 0);

trunk/lib/Prefs.inc.php

@@ -30 +30 @@
  * @version 2.1
  *
- * Example of use:
+ * Example of use (database storagetype):
 ---------------------------------------------------------------------
 // Load preferences for the user's session.
@@ -36 +36 @@
 $prefs = new Prefs('my-namespace');
 $prefs->setParam(array(
-    'persistent' => $auth->isLoggedIn(),
+    'storagetype' => ($auth->isLoggedIn() ? 'database' : 'session'),
     'user_id' => $auth->get('user_id'),
 ));
@@ -49 +49 @@
 $prefs->set('datalog_num_entries', getFormData('datalog_num_entries'));
 $prefs->save();
-
 ---------------------------------------------------------------------
  */
@@ -60 +59 @@
     private $_params = array(
 
+        // Legacy parameter, superceeded by the 'storagetype' setting.
         // Enable database storage. If this is false, all prefs will live only as long as the session.
-        'persistent' => false,
-
-        // The current user_id for which to load/save persistent preferences.
+        'persistent' => null,
+
+        // Store preferences in one of the available storage mechanisms: session, cookie, database
+        'storagetype' => 'session',
+
+        // ----------------------------------------------------------
+        // Cookie-type settings.
+
+        // Lifespan of the cookie. If set to an integer, interpreted as a timestamp (0 for 'when user closes browser'), otherwise as a strtotime-compatible value ('tomorrow', etc).
+        'cookie_expire' => '+10 years',
+
+        // The path on the server in which the cookie will be available on.
+        'cookie_path' => null,
+
+        // The domain that the cookie is available to.
+        'cookie_domain' => null,
+
+        // ----------------------------------------------------------
+        // Database-type settings.
+
+        // The current user_id for which to load/save database-backed preferences.
         'user_id' => null,
 
@@ -82 +100 @@
     public function __construct($namespace='')
     {
-        $app =& App::getInstance();
+        $app =& App::getInstance();
 
         $this->_ns = $namespace;
@@ -106 +124 @@
     public function initDB($recreate_db=false)
     {
-        $app =& App::getInstance();
-        $db =& DB::getInstance();
+        $app =& App::getInstance();
+        $db =& DB::getInstance();
 
         static $_db_tested = false;
@@ -144 +162 @@
     public function setParam($params=null)
     {
+        // CLI scripts can't use prefs stored in HTTP-based protocols.
+        if (defined('_CLI')
+        && isset($params['storagetype'])
+        && in_array($params['storagetype'], array('cookie', 'session'))) {
+            $app->logMsg(sprintf('Storage type %s not available for CLI', $params['storagetype']), LOG_NOTICE, __FILE__, __LINE__);
+        }
+
+        // Convert the legacy param 'persistent' to 'storagetype=database'.
+        if (isset($params['persistent']) && $params['persistent'] && !isset($params['storagetype'])) {
+            $params['storagetype'] = 'database';
+        }
+
         if (isset($params) && is_array($params)) {
             // Merge new parameters with old overriding only those passed.
@@ -159 +189 @@
     public function getParam($param)
     {
-        $app =& App::getInstance();
+        $app =& App::getInstance();
 
         if (isset($this->_params[$param])) {
@@ -190 +220 @@
      * @param  string $key          The name of the preference to modify.
      * @param  string $val          The new value for this preference.
-     * @param  bool   $persistent   Save this value forever? Set to false and value will exist as long as the session is in use.
      */
     public function set($key, $val)
@@ -196 +225 @@
         $app =& App::getInstance();
 
-        if ('' == $key) {
-            $app->logMsg(sprintf('Key is empty (provided with value: %s)', $val), LOG_NOTICE, __FILE__, __LINE__);
+        if (!is_string($key)) {
+            $app->logMsg(sprintf('Key is not a string-compatible type (%s)', getDump($key)), LOG_NOTICE, __FILE__, __LINE__);
+            return false;
+        }
+        if ('' == trim($key)) {
+            $app->logMsg(sprintf('Key is empty (along with value: %s)', $val), LOG_NOTICE, __FILE__, __LINE__);
+            return false;
+        }
+        if (!is_scalar($val) && !is_array($val) && !is_object($val)) {
+            $app->logMsg(sprintf('Value is not a string-compatible type (%s=%s)', $key, getDump($val)), LOG_WARNING, __FILE__, __LINE__);
             return false;
         }
@@ -205 +242 @@
         // - or the new value is different than the default
         // - or there is a previously existing saved key.
-        if (!isset($_SESSION['_prefs'][$this->_ns]['defaults'][$key])
-        || $_SESSION['_prefs'][$this->_ns]['defaults'][$key] != $val
-        || isset($_SESSION['_prefs'][$this->_ns]['saved'][$key])) {
-            $_SESSION['_prefs'][$this->_ns]['saved'][$key] = $val;
-            $app->logMsg(sprintf('Setting preference %s => %s', $key, truncate(getDump($val, true), 128, 'end')), LOG_DEBUG, __FILE__, __LINE__);
-        } else {
-            $app->logMsg(sprintf('Not setting preference %s => %s', $key, truncate(getDump($val, true), 128, 'end')), LOG_DEBUG, __FILE__, __LINE__);
-        }
+        switch ($this->getParam('storagetype')) {
+        case 'session':
+        case 'database': // DB prefs are saved in the session temporarily until they are saved.
+            if (!isset($_SESSION['_prefs'][$this->_ns]['defaults'][$key])
+            || $_SESSION['_prefs'][$this->_ns]['defaults'][$key] != $val
+            || isset($_SESSION['_prefs'][$this->_ns]['saved'][$key])) {
+                $_SESSION['_prefs'][$this->_ns]['saved'][$key] = $val;
+                $app->logMsg(sprintf('Setting session preference %s => %s', $key, getDump($val, true)), LOG_DEBUG, __FILE__, __LINE__);
+            } else {
+                $app->logMsg(sprintf('Not setting session preference %s => %s', $key, getDump($val, true)), LOG_DEBUG, __FILE__, __LINE__);
+            }
+            break;
+
+        case 'cookie':
+            $name = $this->_getCookieName($key);
+            $val = json_encode($val);
+            $app->setCookie($name, $val, $this->getParam('cookie_expire'), $this->getParam('cookie_path'), $this->getParam('cookie_domain'));
+            $app->logMsg(sprintf('Setting cookie preference %s => %s', $key, $val), LOG_DEBUG, __FILE__, __LINE__);
+            break;
+        }
+
     }
 
@@ -226 +276 @@
     {
         $app =& App::getInstance();
-        if (isset($_SESSION['_prefs'][$this->_ns]['saved']) && array_key_exists($key, $_SESSION['_prefs'][$this->_ns]['saved'])) {
-            $app->logMsg(sprintf('Found %s in saved', $key), LOG_DEBUG, __FILE__, __LINE__);
-            return $_SESSION['_prefs'][$this->_ns]['saved'][$key];
-        } else if (isset($_SESSION['_prefs'][$this->_ns]['defaults']) && array_key_exists($key, $_SESSION['_prefs'][$this->_ns]['defaults'])) {
-            $app->logMsg(sprintf('Found %s in defaults', $key), LOG_DEBUG, __FILE__, __LINE__);
-            return $_SESSION['_prefs'][$this->_ns]['defaults'][$key];
-        } else {
-            $app->logMsg(sprintf('Key not found in prefs cache: %s', $key), LOG_DEBUG, __FILE__, __LINE__);
-            return null;
+
+        switch ($this->getParam('storagetype')) {
+        case 'session':
+        case 'database':
+            if (isset($_SESSION['_prefs'][$this->_ns]['saved']) && array_key_exists($key, $_SESSION['_prefs'][$this->_ns]['saved'])) {
+                $app->logMsg(sprintf('Found %s in saved', $key), LOG_DEBUG, __FILE__, __LINE__);
+                return $_SESSION['_prefs'][$this->_ns]['saved'][$key];
+            } else if (isset($_SESSION['_prefs'][$this->_ns]['defaults']) && array_key_exists($key, $_SESSION['_prefs'][$this->_ns]['defaults'])) {
+                $app->logMsg(sprintf('Found %s in defaults', $key), LOG_DEBUG, __FILE__, __LINE__);
+                return $_SESSION['_prefs'][$this->_ns]['defaults'][$key];
+            } else {
+                $app->logMsg(sprintf('Key not found in prefs cache: %s', $key), LOG_DEBUG, __FILE__, __LINE__);
+                return null;
+            }
+            break;
+
+        case 'cookie':
+            $name = $this->_getCookieName($key);
+            if ($this->exists($key)) {
+                $val = json_decode($_COOKIE[$name]);
+                $app->logMsg(sprintf('Found %s in cookie: %s', $key, getDump($val)), LOG_DEBUG, __FILE__, __LINE__);
+                return $val;
+            } else {
+                $app->logMsg(sprintf('Key not found in cookie: %s', $key), LOG_DEBUG, __FILE__, __LINE__);
+                return null;
+            }
+            break;
         }
     }
@@ -246 +314 @@
     public function exists($key)
     {
-        return array_key_exists($key, $_SESSION['_prefs'][$this->_ns]['saved']);
+        switch ($this->getParam('storagetype')) {
+        case 'session':
+        case 'database':
+            return array_key_exists($key, $_SESSION['_prefs'][$this->_ns]['saved']);
+
+        case 'cookie':
+            $name = $this->_getCookieName($key);
+            return isset($_COOKIE[$name]);
+        }
+
     }
 
@@ -256 +333 @@
     public function delete($key)
     {
-        unset($_SESSION['_prefs'][$this->_ns]['saved'][$key]);
+        $app =& App::getInstance();
+
+        switch ($this->getParam('storagetype')) {
+        case 'session':
+        case 'database':
+            unset($_SESSION['_prefs'][$this->_ns]['saved'][$key]);
+            break;
+
+        case 'cookie':
+            if ($this->exists($key)) {
+                // Just set the existing value to an empty string, which expires in the past.
+                $name = $this->_getCookieName($key);
+                $app->setCookie($name, '', time() - 86400);
+                // Also unset the received cookie value, so it is unavailable.
+                unset($_COOKIE[$name]);
+            }
+            break;
+        }
+
     }
 
@@ -265 +360 @@
     public function clear($focus='all')
     {
+
         switch ($focus) {
         case 'all' :
-            $_SESSION['_prefs'][$this->_ns] = array(
-                'loaded' => false,
-                'load_datetime' => '1970-01-01',
-                'defaults' => array(),
-                'saved' => array(),
-            );
-            break;
-
+            switch ($this->getParam('storagetype')) {
+            case 'session':
+            case 'database':
+                $_SESSION['_prefs'][$this->_ns] = array(
+                    'loaded' => false,
+                    'load_datetime' => '1970-01-01',
+                    'defaults' => array(),
+                    'saved' => array(),
+                );
+                break;
+            case 'cookie':
+                foreach ($_COOKIE as $key => $value) {
+                    // All cookie keys with our internal prefix. Use only the last part as the key.
+                    if (preg_match('/^' . preg_quote(sprintf('strangecode-%s-', $this->_ns)) . '(.+)$/i', $key, $match)) {
+                        $this->delete($match[1]);
+                    }
+                }
+                break;
+            }
+            break;
         case 'defaults' :
             $_SESSION['_prefs'][$this->_ns]['defaults'] = array();
             break;
-
         case 'saved' :
             $_SESSION['_prefs'][$this->_ns]['saved'] = array();
@@ -298 +405 @@
     {
         $app =& App::getInstance();
-        $db =& DB::getInstance();
-
-        // Skip this method if not using the db.
-        if (true !== $this->getParam('persistent')) {
-            return true;
-        }
+        $db =& DB::getInstance();
+
+        // Skip this method if not using the db.
+        if ('database' != $this->getParam('storagetype')) {
+            return true;
+        }
 
         $this->initDB();
 
         // Prefs already loaded for this session.
-        if (!$force && $this->_isLoaded()) {
-            return true;
-        }
+        if (!$force && $this->_isLoaded()) {
+            return true;
+        }
 
         // User_id must not be empty.
@@ -322 +429 @@
 
         // Retrieve all prefs for this user and namespace.
-        $qid = $db->query("
-            SELECT pref_key, pref_value
-            FROM " . $db->escapeString($this->getParam('db_table')) . "
-            WHERE user_id = '" . $db->escapeString($this->getParam('user_id')) . "'
-            AND pref_namespace = '" . $db->escapeString($this->_ns) . "'
-            LIMIT 10000
-        ");
-        while (list($key, $val) = mysql_fetch_row($qid)) {
+        $qid = $db->query("
+            SELECT pref_key, pref_value
+            FROM " . $db->escapeString($this->getParam('db_table')) . "
+            WHERE user_id = '" . $db->escapeString($this->getParam('user_id')) . "'
+            AND pref_namespace = '" . $db->escapeString($this->_ns) . "'
+            LIMIT 10000
+        ");
+        while (list($key, $val) = mysql_fetch_row($qid)) {
             $_SESSION['_prefs'][$this->_ns]['saved'][$key] = unserialize($val);
-        }
-
-        $app->logMsg(sprintf('Loaded %s prefs from database.', mysql_num_rows($qid)), LOG_DEBUG, __FILE__, __LINE__);
-
-        // Data loaded only once per session.
-        $_SESSION['_prefs'][$this->_ns]['loaded'] = true;
+        }
+
+        $app->logMsg(sprintf('Loaded %s prefs from database.', mysql_num_rows($qid)), LOG_DEBUG, __FILE__, __LINE__);
+
+        // Data loaded only once per session.
+        $_SESSION['_prefs'][$this->_ns]['loaded'] = true;
         $_SESSION['_prefs'][$this->_ns]['load_datetime'] = date('Y-m-d H:i:s');
 
-        return true;
+        return true;
     }
 
@@ -354 +461 @@
     private function _isLoaded()
     {
+        if ('database' != $this->getParam('storagetype')) {
+            return true;
+        }
+
         if (isset($_SESSION['_prefs'][$this->_ns]['load_datetime'])
         && strtotime($_SESSION['_prefs'][$this->_ns]['load_datetime']) > time() - $this->getParam('load_timeout')
@@ -376 +487 @@
     {
         $app =& App::getInstance();
-        $db =& DB::getInstance();
-
-        // Skip this method if not using the db.
-        if (true !== $this->getParam('persistent')) {
-            return true;
-        }
+        $db =& DB::getInstance();
+
+        // Skip this method if not using the db.
+        if ('database' != $this->getParam('storagetype')) {
+            return true;
+        }
 
         // User_id must not be empty.
@@ -395 +506 @@
             $db->query("
                 DELETE FROM " . $db->escapeString($this->getParam('db_table')) . "
-                WHERE user_id = '" . $db->escapeString($this->getParam('user_id')) . "'
-                AND pref_namespace = '" . $db->escapeString($this->_ns) . "'
+                WHERE user_id = '" . $db->escapeString($this->getParam('user_id')) . "'
+                AND pref_namespace = '" . $db->escapeString($this->_ns) . "'
             ");
 
@@ -422 +533 @@
         return false;
     }
+
+    /*
+    *
+    *
+    * @access   public
+    * @param
+    * @return
+    * @author   Quinn Comendant <quinn@strangecode.com>
+    * @version  1.0
+    * @since    02 May 2014 18:17:04
+    */
+    private function _getCookieName($key)
+    {
+        $app =& App::getInstance();
+
+        if (mb_strpos($key, sprintf('strangecode-%s', $this->_ns)) === 0) {
+            $app->logMsg(sprintf('Invalid key name (%s). Leave off "strangecode-%s-" and it should work.', $key, $this->_ns), LOG_NOTICE, __FILE__, __LINE__);
+        }
+        return sprintf('strangecode-%s-%s', $this->_ns, $key);
+    }
 }
 

trunk/lib/Upload.inc.php

@@ -86 +86 @@
                 if (!is_dir($params['upload_path'])) {
                     $app->logMsg(sprintf('Attempting to auto-create upload directory: %s', $params['upload_path']), LOG_NOTICE, __FILE__, __LINE__);
-                    if (phpversion() > '5') {
+                    if (version_compare(PHP_VERSION, '5.0.0', '>=')) {
                         // Recursive.
                         mkdir($params['upload_path'], isset($params['dest_dir_perms']) ? $params['dest_dir_perms'] : $this->getParam('dest_dir_perms'), true);

trunk/lib/Utilities.inc.php

@@ -29 +29 @@
  * Print variable dump.
  *
- * @param  mixed $var      Variable to dump.
- * @param  bool  $display   Hide the dump in HTML comments?
- * @param  bool  $var_dump Use var_dump instead of print_r.
+ * @param  mixed    $var        The variable to dump.
+ * @param  bool     $display    Print the dump in <pre> tags or hide it in html comments (non-CLI only).
+ * @param  bool     $var_dump   Use var_dump instead of print_r.
+ * @param  string   $file       Value of __FILE__.
+ * @param  string   $line       Value of __LINE__
  */
 function dump($var, $display=false, $var_dump=false, $file='', $line='')
 {
-    if (empty($var)) {
-        $var = '(nothing to dump)';
-    }
     if (defined('_CLI')) {
-        echo "\nDUMP FROM: $file $line\n";
-    } else {
-        echo $display ? "\n<br />DUMP: <strong>$file $line</strong>\n<br /><pre>\n" : "\n\n\n<!--\n$file $line\n";
+        echo "DUMP FROM: $file $line\n";
+    } else {
+        echo $display ? "\n<br />DUMP <strong>$file $line</strong><br /><pre>\n" : "\n<!-- DUMP $file $line\n";
     }
     if ($var_dump) {
         var_dump($var);
     } else {
-        print_r($var);
+        // Print human-readable descriptions of invisible types.
+        if (null === $var) {
+            echo '(null)';
+        } else if (true === $var) {
+            echo '(bool: true)';
+        } else if (false === $var) {
+            echo '(bool: false)';
+        } else if (is_scalar($var) && '' === $var) {
+            echo '(empty string)';
+        } else if (is_scalar($var) && preg_match('/^\s+$/', $var)) {
+            echo '(only white space)';
+        } else {
+            print_r($var);
+        }
     }
     if (defined('_CLI')) {
         echo "\n";
     } else {
-        echo $display ?  "\n</pre><br />\n" : "\n-->\n\n\n";
+        echo $display ? "\n</pre><br />\n" : "\n-->\n";
     }
 }

trunk/services/login.php

@@ -32 +32 @@
 $app->sslOn();
 
+// Cookie-based storage preferences.
 require_once 'codebase/lib/Prefs.inc.php';
 $login_prefs = new Prefs('login');
-$login_prefs->setDefaults(array('username' => ''));
+$login_prefs->setParam(array('storagetype' => 'cookie'));
 
 $frm['username'] = getFormdata('username', $login_prefs->get('username'));