Login issues

chuckury

I'm curious how I would go about keeping a user logged in until they hit the log-out button. Heres all the code I have so far (Still working on login thingy) DONT STEAL!:
registeradd.php

<?
include("config.php");
include("forms.php");
$user = $_POST['user'];
$pass = $_POST['pass'];
$email = $_POST['email'];
$first = $_POST['first'];
$last = $_POST['last'];
$msn = $_POST['msn'];
$aim = $_POST['aim'];
$icq = $_POST['icq'];
$points = 10;
$queryuser = "SELECT * FROM users WHERE username ='$user'";
$checkuser = mysql_query($queryuser);
$num = mysql_numrows($checkuser);
if ($num == "1") {
print "Sorry the username $user has already been taken, please choose another name!";
} elseif (!$user || !$pass || !$email || !$first || !$last) {
print "The following error(s) have occured!<br>";
if (!$user) {
print "You did not include a username!<br>";
} 
if (!$pass) {
print "You did not include a password!<br>";
}
if (!$email) {
print "You did not include an email address!<br>";
}
if (!$first) {
print "You did not include your first name!<br>";
}
if (!$last) {
print "You did not include your last name!<br>";
}
registerform();
} else {
$date1 = date("y.m.d");
$date = date("y.m.d");
$query = "INSERT INTO `users` ( `username` , `password` , `emailadd` , `first_name` , `last_name` , `msn` , `aim` , `icq` , `signupdate` , `lastsignin` , `userid` , `points` ) VALUES ('$user', ENCRYPT( '$pass' ) , '$email', '$first', '$last', '$msn', '$aim', '$icq', CURDATE( ) , CURDATE( ) , '', '$points');";
mysql_query($query);
print "The user account $user has been succesfully completed you may login below.<br><form action='login.php' method='post'>
Username:<input type='text' name='user'><br>
Password:<input type='password' name='pass'><br>
<input type='submit' value='Login'></form><br>";
}

?>

<?
include("forms.php");
registerform();
?>

forms.php

<?
function registerform() {
echo "Fields marked by a <b>*</b> are required!<br>
<form action='registeradd.php' method='post'>
*Username:<input type='text' name='user'><br>
*Password:<input type='password' name='pass'><br>
*Re-type password:<input type='password' name='repass'><br>
*Email address:<input type='text' name='email'><br>
*First Name:<input type='text' name='first'><br>
*Last Name:<input type='text' name='last'><br>
AIM:<input type='text' name='aim'><br>
ICQ:<input type='text' name='icq'><br>
MSN:<input type='text' name='msn'><br>
<input type='submit' value='Submit'><input type='reset' value='Reset'></form><br>";
}

function loginform() {
echo "<form action='login.php' method='post'>
Username:<input type='text' name='user'><br>
Password:<input type='password' name='pass'><br>
<input type='submit' value='Login'></form><br>";
}
?>

config.php

<? 
$dbhost = 'localhost';
$dbusername = 'dennmat';
$dbpasswd = 'password';
$database_name = 'dennmat';
$connection = mysql_pconnect("$dbhost","$dbusername","$dbpasswd") or die ("Couldn't connect to server.");
$db = mysql_select_db("$database_name", $connection) or die("Couldn't select database.");
?>

Please help!

planetsim

Either by using Sessions or cookies

Basically store something like there username or UserID

When they logout you delete either the session or cookie.

Id suggest reading up on them also reading the STICKIED thread in the NEwbies forum this information about cookies and sessions are in it