> I am building an application where we do not want to require > the user's browser to accept cookies. Like most applications > out there we use the session scope very heavily and want to > continue to utilize it. > > I have read the CFMX WACK Ben Forta book about this task and > it recommends passing one of these variables: > 1. session.URLToken > Or > 2. client.URLToken > > (this ensures the CFID, CFTOKEN, or JSESSIONID are available.) > > Has anyone done this before? What is the "best way" to > accomplish this? > > The application is almost complete and I am not currently > passing session.URLToken and am not sure what other people > have done to accomplish this in an effective and easy to > implement way.
I would recommend that you use the URLSessionFormat function instead of the above. You will need to ensure that the token is passed on each page request, whether that request is triggered by a hyperlink, a form submission, a CFLOCATION or other server-side redirection, or a JavaScript or other client-side redirection. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Logware (www.logware.us): a new and convenient web-based time tracking application. Start tracking and documenting hours spent on a project or with a client with Logware today. Try it for free with a 15 day trial account. http://www.houseoffusion.com/banners/view.cfm?bannerid=67 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:195783 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
