Allow Logout without re-entering auth.

Rocksolid_Light/spoolnews/user.php

@@ -65,9 +65,6 @@ if (disable_page_by_user_agent($client_device, "bot", "User")) {
     exit();
 }
 
-// How long should cookie allow user to stay logged in?
-// 14400 = 4 hours
-$auth_expire = 14400;
 $logged_in = false;
 if (! isset($_POST['username'])) {
     $_POST['username'] = $_COOKIE['mail_name'];
@@ -86,22 +83,7 @@ if ((password_verify($_POST['username'] . $keys[0] . get_user_config($_POST['use
         if ($ip_pass) {
             $_SESSION['pass'] = true;
         }
-        $authkey = password_hash($_POST['username'] . $keys[0] . get_user_config($_POST['username'], 'encryptionkey'), PASSWORD_DEFAULT);
-        $pkey = hash('crc32', get_user_config($_POST['username'], 'encryptionkey'));
-        set_user_config(strtolower($_POST['username']), "pkey", $pkey);
-        ?>
-<script type="text/javascript">
-       if (navigator.cookieEnabled)
-         var authcookie = "<?php echo $authkey; ?>";
-         var savename = "<?php echo stripslashes($name); ?>";
-	 var auth_expire = "<?php echo $auth_expire; ?>";
-	 var name_expire = "7776000";
-	 var pkey = "<?php echo $pkey; ?>";
-         document.cookie = "mail_auth="+authcookie+"; max-age="+auth_expire+"; path=/";
-         document.cookie = "mail_name="+savename+"; max-age="+name_expire+"; path=/";
-         document.cookie = "pkey="+pkey+"; max-age="+name_expire+"; path=/";
-      </script>
-<?php
+        set_user_logged_in_cookies($name, $keys);
         $logged_in = true;
     } else {
         echo 'Authentication Required';
@@ -143,6 +125,8 @@ if ($logged_in == true) {
     echo '<button class="np_button_link" type="submit">Configuration</button>';
     echo '</form>';
     echo '</td>';
+}
+if ((isset($_COOKIE["mail_name"]))) {
  // Logout button
  echo '<td>';
  echo '<form target="' . $frame['content'] . '" method="post" action="user.php">';