Hi all,
I have encountered some severe strangeness with CFHTTP. I have a site
spilt over two servers - a secure server (our own) and a non-secure server
(the clients). The secure server communicated to a password protected
area on the insecure site via CFHTTP, to do some database setup tasks and
things. The password protection was implemented in CF so the username and
password were just sent as POST variables, like they would do in a form.
All worked well.
Then for reasons not important the security I wrote in CF was disabled,
and directory security was enabled (standard HTTP authentication). I made
the appropriate changes to the CFHTTP calls, namely adding USERNAME="..."
PASSWORD="..." attributes. CFHTTP suthenticated correctly, shown by the
fact that the filecontent was output from the protected area, but it
wasn't working correctly.
After some serious bug hunting, I found that the contents of ALL FORM
FIELDS were being doubled ! So that "blah" became "blah,blah". I
thought, oh I must be doing something wierd somewhere, this can't be
right. So I put my checking code (which just output all the form fields
supplied) as the very first code in the appropriate application.cfm.
Unbelievably, they were very definatly doubled, coming into the
application.cfm.
To cut a long story short, after much hair pulling we removed the security
completely and just restricted the IP addresses into that section of the
website, it again works well.
Anybody seen this sort of thing before ?
---
James Sleeman
[EMAIL PROTECTED] (home)
[EMAIL PROTECTED] (work)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
