Where in my code does it mention storing the password in a cookie.
I agree with what you say however, that cookies should not be used to store secure information. However, I totally disagree with people who go on about how others can gain access to cookies on your pc and then use information...