Hi Robert:
A quick tip, we had a situation with mixed sessin identities not long
ago. The reason - ghost-ing machines which had a CFID/CFTOKEN cookie, so
all ghosted machines had the same cookie - same identity of swapped
identities in the middle of session.
Also, putting this in your Application.cfm would make sure that these
cookies are terminated upon browser close;
<cfif IsDefined( "Cookie.CFID" ) AND IsDefined( "Cookie.CFTOKEN" )>
<cfset tmpCFID = Cookie.CFID>
<cfset tmpCFTOKEN = Cookie.CFTOKEN>
<cfcookie name="CFID" value="#tmpCFID#">
<cfcookie name="CFTOKEN" value="#tmpCFTOKEN#">
</cfif>
Hope that helps,
Dimo Michailov
Robert Shaw wrote:
> Hi,
> Using CF 5 we switched form client vars to session and now we're seeing
> session swapping (login as one account and see data from another's). Any
> tips on what might be happening and why we'd be seeing this. I imagine it's
> tied to the switching.
>
> TIA,
> Rob
>
>
>
>
>
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4
Subscription:
http://www.houseoffusion.com/cf_lists/index.cfm?method=subscribe&forumid=4
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Signup for the Fusion Authority news alert and keep up with the latest news in
ColdFusion and related topics. http://www.fusionauthority.com/signup.cfm
Unsubscribe:
http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
