http://www.macromedia.com/support/email/wishform/
--
Hugo Ahlenius
-------------------------------------------------------------
Hugo Ahlenius E-Mail: [EMAIL PROTECTED]
Project Officer Phone: +46 8 230460
UNEP GRID-Arendal Fax: +46 8 230441
Stockholm Office Mobile: +46 733 467111
WWW: http://www.grida.no
-------------------------------------------------------------
| -----Original Message-----
| From: Bud [mailto:[EMAIL PROTECTED]
| Sent: Monday, October 11, 2004 14:37
| To: CF-Talk
| Subject: New HOTFIX breaks J2EE sessions!
|
| Hi. I put this out under a different subject but got no response.
|
| The new hotfix released on 10/7 does not decode the JSESSIONID cookie.
|
| 1) If I manually set a JSESSIONID cookie based on a URL
| variable or whatnot, which I do when I move from one domain
| to another (such as a shared SSL URL when collecting payment
| info), it is URL encoded.
|
| 2) CF reads it but does not decode the value. It must think
| it is an invalid ID since the $ become %24.
|
| The session is sufficiently broken. Until now, as with any
| URL Encoded value, CF will decode it before processing it,
| comparing it, etc.
|
| My only workaround is to set the cookie with _javascript_. I
| don't want to rely on _javascript_.
|
| I need to get this to MM. I've got applications breaking all
| over the place.
| --
|
| Bud Schneehagen - Tropical Web Creations, Inc.
|
| _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
| Web Based Solutions / eCommerce Development & Hosting
| http://www.twcreations.com/ - http://www.cf-ezcart.com/ Toll
| Free: 877.207.6397 - Local & Int'l Phone/Fax: 386.789.0968
|
|
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings] [Donations and Support]
