Which is considered a better practice: storing user variables like customerID and customerIsAuthorized in a locked session scope; or, simply set cookies on the user's machine?
Will using the session scope greatly reduce the portability of the application? In other words, is it common to find hosts or individuals running CF server with the session variables disabled in the CF administrator?
Likewise, I know that a small percentage of the people using the Internet have their privacy settings set very tight - making cookies not the best practice to use when it comes to application functionality.
Setting cookies makes for more portable code - at the risk of sacraficing functionality, and using session variables risks losing portablility while ensuring that the application functions for every user.
Any thoughts and/or advice will be greatly appreciated.
- Greg
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
