When a customer creates an account or logs in, s/he is offered the option (a "Remember Me?" checkbox) to be automatically logged into your website on subsequent visits. If the customer checks this box, a cookie is set in the customer's browser; that cookie's name is zcrm_xxxx where "xxxx" is an MD5 hash of your store's name (as set in Configuration->My Store). That cookie remains set (and provides a continued-login to your store) until:
the customer clicks the Logoff link in your store.
the cookie expires or is otherwise removed.
Security Note: The customer's password, as stored in the cookie, is a hashed version of customer's Zen Cart hashed password value, so the customer's actual password or password hash is never exposed.
Once you have installed the plugin, the following additional configuration settings are available in Configuration->Customer Details:
Enable Automatic Login? Controls the overall enabling of the plugin's feature. Set to true or false (default). Note that the default value has changed in v1.4.3 from true to false, since you should set your "Secret Key" prior to enabling!
Automatic Login (Cookie Lifetime) Identifies the number of days that the "Remember Me" cookie should live (default: 14).
Automatic Login (Secret Key) Contains the "shared secret" used to hash the customer's already hashed password.
Automatic Login (Checkbox Default) Identifies whether (true) or not (false, the default) to pre-check the Remember Me? checkbox on the login and create_account pages.
This plugin currently has no core-file overwrites, but it does have two (2) template-overrides; you should always backup your cart's database and files prior to making any changes.
Zen Cart v1.5.6c's template_default template was used as the Zen Cart basis for all template-override changes. If your store runs on a Zen Cart 1.5.5 variant, note that the tpl_modules_create_account.php now places the country-entry prior to the address-entry!
Changes to template-overrides now include minor, future-proofing, changes so that PHP errors aren't issued if you choose to uninstall the plugin without removing its template-related changes.
v2.0.0 (and later) now includes required updates to the One-Page Checkout plugin's alternate form of the login page, using v2.3.1 of that plugin as the change-basis.
This plugin creates a single cookie for your store in a customer's browser. If a customer shares their computer with someone else after requesting to be "remembered", those additional persons will have access to that customer's account.
Unzip the plugin's package file. Rename the YOUR_ADMIN folder to match your secret admin folder's name and the YOUR_TEMPLATE directory to match your current template's name.
Use a program like WinMerge or Beyond Compare to compare the plugin's two (2) template-overrides to your store's current files and merge any changes required.
Log into your Zen Cart admin.
Copy the plugin's files to your store's file system.