> How exactly are you appending the variable to the URLs in your pages?
>
> Can't you do this before the cfapplication tag:
>
> if (isDefined("cookie.CFID") and isDefined("cookie.CFTOKEN") and
> isDefined("url.CFID") and isDefined("url.CFTOKEN") and cookie.CFID neq
> url.CFID and cookie.CFTOKEN neq url.CFTOKEN) {
> NewCFID = cookie.CFID;
> NewCFTOKEN = cookie.CFTOKEN;
> }
>
> and this after:
>
> if(isDefined("NewCFID") AND isDefined("newCFTOKEN")) {
> url.cfid = NewCFID;
> url.cftoken = newCFTOKEN;
> session.urltoken = "CFID=#newCFID#&CFTOKEN=#newCFTOKEN#";
> }
This is the best idea yet. A user switched into another's session will
most certainly see at least a page or two of the other's session, but
the next click should bring them back into their own.
That's certainly better than what we've got now. Resetting the
session.urltoken however will affect both users (easy to get around by
changing session to request).
I just had this other crazy idea. I could probably use the
coldfusion.runtime.SessionTracker.getSessionCollection() to track down
their real session vars, copy them to the request scope or something...
Alright, well that certainly gives me something to work with.
Thanks Stephen!
-nathan strutz
http://www.dopefly.com/
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings] [Donations and Support]
