Re: CFMX Losing CFID/CFTOKEN From Session...

Mon, 19 Jul 2004 06:39:19 -0700

On Jul 19, 2004, at 5:51 AM, Dan G. Switzer, II wrote:

> >> A client of mine just started seeing a weird problem where their
>  >> application
>  >>��server is no longer seeing the CFID/CFTOKEN in the session scope.
> This
>  >>��problem just cropped up the other day.
>  >
>  >Did rebooting resolve the problem.
>  >
>  >I have never seen this in CFMX, but had seen it on earlier releases
> of
>  >CF
>
>  No. The servers have all been rebooted and before that I tried
> re-cycling
>  the services. Also, I tried a simple test by creating a new directory
> with
>  just two files, an application.cfm and an index.cfm.
>
>  The files look like this:
>
>  application.cfm
>  ------------------------------------------
>  <cfsetting enablecfoutputonly="yes" showdebugoutput="no">
>  <!---//
>  enable Session management
>  //--->
>  <cfapplication
>  name="TestApp"
>  sessionManagement="yes"
>  sessionTimeout="#createTimeSpan(0, 0, 60, 0)#"
>  >
>  <cfsetting enablecfoutputonly="no">
>
>  application.cfm
>  ------------------------------------------
>  <cfdump var="#session#">
>
>  Running just this simple example results in only the jsessionid &
> urltoken
>  showing up in the session scope, the cfif & cftoken do show up in the
> cookie
>  scope though. Also, the cftoken value looks a little strange to me:
>
>  24eb864e2918a850-D4DFAFA3-C128-3D3F-45166598748BD5B1
>

That does look odd. I get:
sessionid: 20302920891090243360642
urltoken: CFID=602&CFTOKEN=63656077&jsessionid=20302920891090243360642

Did you try flipping off J2ee session variables?

Dick

>  Shouldn't it only be the portion after the first dash? What's the part
>  before first dash?
>
>  I can resolve the problem by adding the following code to any
> application
>  using session management:
>
>  <cflock scope="session" type="execlusive" timeout="30">
>  <cfif structKeyExists(cookie, "cfid") and NOT
>  structKeyExists(session, "cfid")>
>  <cfset session.cfid = cookie.cfid>
>  </cfif>
>  <cfif structKeyExists(cookie, "cfid") and NOT
>  structKeyExists(session, "cftoken")>
>  <cfset session.cftoken = cookie.cftoken>
>  </cfif>
>  </cflock>
>
>  However, I really shouldn't have to do that. I also feel like this is
> an
>  unnecessary hack. Something else is wrong and I'd like to resolve that
>  issue.
>
>  - Dan
>
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings] [Donations and Support]

Reply via email to