> on 3/17/03 10:46 AM, Raymond Camden at [EMAIL PROTECTED] wrote: > > The cflogin tag has nothing to do with sessions. Period. As > it stands, > > you 'create' a session when you put the cfapplication tag in your > > browser. I believe it exists even before you do your first <cfset > > session.foo = 1>. (Actually, I'm sure of this since you can cfdump > > session immediately.) You _can_ however set a session var on login. > > You will see in my code that after the users logs in > correctly, I set > > various session values (I do it all at once by getting a struct of > > user data then appending it on the session scope.) > > So I could, inside my cflogin, create an array to hold user > info, then store that in the session scope? Is that ym approach?
Well, if it's user data like age, name, rank, etc, a struct seems to make more sense, but use whatever is best for you. > > It doesn't matter where it exists. If you want a popup, > then it has to > > be in the web directory somewhere. If you cfinclude the code, you > > don't have to worry about Application.cfm blocking access to it > > (something I see cfnewbies do - protect all files using > > application.cfm and forget to make it possible to view the login > > page.) > > This was my concern. So I could put the login popup in the > root directory, and if the user successfully logs in, I pass > them down one level to the protected directory. Am I thinking > thru that correctly? That is one approach. > So I want my login.cfm form to go to > action="login_process.cfm" and on this page, query the > database, and if the user exists, and is a valid user, then I > want to pass this down to the lower directory, and use the > application.cfm of that directory to log that user in and set Why not just use one application.cfm in the root of your site? > session variables? What would be my approach for passing that > successful login information to the application.cfm without > using something that can be "seen"? > See above. Did you notice how my code looked for form variables to detect a login? There is no reason why your code couldn't do that. I'd have the popup simply output JavaScript code to 'push' the parent window to /lower, where /lower is the subdirectory of protected files. Note - you don't really need to use a whole other subdirectory. You could write your Application.cfm code so that the popups load. ======================================================================= Raymond Camden, ColdFusion Jedi Master for Mindseye, Inc Member of Team Macromedia Email : [EMAIL PROTECTED] Blog : www.camdenfamily.com/morpheus/blog Yahoo IM : morpheus "My ally is the Force, and a powerful ally it is." - Yoda ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/cf_lists/index.cfm?method=subscribe&forumid=4 FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Get the mailserver that powers this list at http://www.coolfusion.com Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
