We're trying to pin down the cause of a problem that's preventing some of our users
getting access to a pay area of our site.
We're setting a session in the .asp-built shop then passing them to the ColdFusion
section and setting up a session, which will identify them to the CF Server when they
travel around the site, and grant them appropriate access based on their status with
us.
However some people who are using Norton Personal Firewall are being denied access to
the ColdFusion parts of the site, even though they're granted access to the .asp parts
of the site.
Has anyone else experienced this? Does .asp set up sessions differently to the way
CF does it? Is there something about Norton Personal Firewall that requires us to set
up our CF sessions differently? Anyone have any thoughts as to what might be
causing this?
For the record, we're setting up both client and session management (we're going to
delete one of them when we finally button this problem down) and storing client vars
in the SQL7 database. It's all on a single server box so we dont need domain cookies
set. (Do we?)
The application tag is as follows:
<.cfapplication name="CFcalcs"
clientmanagement="Yes"
sessionmanagement="Yes"
setclientcookies="Yes"
sessiontimeout="#CreateTimeSpan(0,1,0,0)#"
clientstorage="CFClientVariables">
Cheers
Mike Kear
Windsor, NSW, Australia
AFP Webworks.
______________________________________________________________________
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
