CFID and CFTOKEN are stored in cookies or are passed through the URL,
they are not in the session structure.  So if you wipe the session
structure out the CFID and CFTOKEN are still there.  Usually what I do
is reset the cookies CFID and CFTOKEN in the application.cfm so they do
not have an expires value that way when the browser closes they cease to
exist.
 
-----Original Message-----
From: Stephenie Hamilton [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, June 25, 2002 10:30 AM
To: CF-Community
Subject: RE: Log out routine

If I am logging them out of the app, does it matter if they lose their
CFID and CFTOKEN?

~~
Stephenie 



-----Original Message-----
From: Jochem van Dieten [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, June 25, 2002 11:17 AM
To: CF-Community
Subject: Re: Log out routine


Kevin Schmidt wrote:
> You wouldn't lose CFID and CFTOKEN if you use structdelete.  You have 
> to specify the key within the structure so you can pick and choose 
> what session vars to knock off.  Plus CFID and CFTOKEN aren't stored 
> in the session structure so how would you lose them??

Take a look at the difference between StructClear() and StructDelete().

Jochem



______________________________________________________________________
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm

Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

Reply via email to