CFID and CFTOKEN are stored in cookies or are passed through the URL, they are not in the session structure. So if you wipe the session structure out the CFID and CFTOKEN are still there. Usually what I do is reset the cookies CFID and CFTOKEN in the application.cfm so they do not have an expires value that way when the browser closes they cease to exist. -----Original Message----- From: Stephenie Hamilton [mailto:[EMAIL PROTECTED]] Sent: Tuesday, June 25, 2002 10:30 AM To: CF-Community Subject: RE: Log out routine
If I am logging them out of the app, does it matter if they lose their CFID and CFTOKEN? ~~ Stephenie -----Original Message----- From: Jochem van Dieten [mailto:[EMAIL PROTECTED]] Sent: Tuesday, June 25, 2002 11:17 AM To: CF-Community Subject: Re: Log out routine Kevin Schmidt wrote: > You wouldn't lose CFID and CFTOKEN if you use structdelete. You have > to specify the key within the structure so you can pick and choose > what session vars to knock off. Plus CFID and CFTOKEN aren't stored > in the session structure so how would you lose them?? Take a look at the difference between StructClear() and StructDelete(). Jochem ______________________________________________________________________ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
