RE: duplicate logins

Bryan Love Mon, 04 Jun 2001 09:56:01 -0700
sounds appropriate, but if you want to pass the url token you must add it to
every address in the site (anchor tags, form actions, javascript functions).
It is automatically added to all cfinclude's unless you specifically tell it
not to.

Also, you don't need to recreate the urltoken, CF creates one automatically:

replace this:
        <CFIF NOT ISDEFINED("session.rollCount")>
                <CFSET SESSION.ROLLCOUNT = 1>
                <CFCOOKIE NAME="isOn" VALUE="testing">
                <CFSET APPLICATION.ADDTOKEN =
"cfid=#client.cfid#&cftoken=#client.cftoken#">
        <CFELSE>
                <CFSET APPLICATION.ADDTOKEN = IIF(NOT
ISDEFINED("cookie.isOn"),
                DE("cfid=#client.cfid#&cftoken=#client.cftoken#"), DE(""))>
        </CFIF>

with this:
        <cfparam name="session.rollCount" default="1">

and use #urltoken# wherever you need to.
                                                    
Bryan Love ACP
Internet Application Developer
[EMAIL PROTECTED]
                                                    


-----Original Message-----
From: David Grabbe [mailto:[EMAIL PROTECTED]]
Sent: Monday, June 04, 2001 9:19 AM
To: CF-Talk
Subject: duplicate logins



Hello All!

        I'm running into a problem with session/cookie management, and am
hoping
you folks would be able to point me in the right direction.

        It's like this:  we ask user's to sign in with basic information to
gain
access to a certain part of the website.  After they fill out the form, I
run a script which writes their information to a database and sets a session
variable to represent that they have already logged in (so they don't have
to log back in if they surf to other parts of the site and then come back).
This works fine for probably 85% of the users, but it seems that for some
users that session variable isn't getting set (I haven't been able to verify
this; I can't replicate the problem but I've received reports about it).  It
might be an issue of the user turning of cookies -- which I am attempting to
catch and deal with in the Application.cfm file.

        If the user is not accepting cookies, I'm trying to add the CFID and
CFTOKEN to the URL so I can still keep track of their session info.

        Here's the code I am working with -- do you see anything amiss?

TIA!

Cheers,
David



---------------Application.cfm------------------------

<cfapplication name="cgg" clientmanagement="Yes" sessionmanagement="Yes"
setclientcookies="Yes" sessiontimeout="#CreateTimeSpan(1,0,0,0)#"
applicationtimeout="#createTimeSpan(1,0,0,0)#" clientstorage="Cookie"
setdomaincookies="Yes">

<CFIF NOT ISDEFINED("session.rollCount")>
        <CFSET SESSION.ROLLCOUNT = 1>
        <CFCOOKIE NAME="isOn" VALUE="testing">
        <CFSET APPLICATION.ADDTOKEN =
"cfid=#client.cfid#&cftoken=#client.cftoken#">
<CFELSE>
        <CFSET APPLICATION.ADDTOKEN = IIF(NOT ISDEFINED("cookie.isOn"),
        DE("cfid=#client.cfid#&cftoken=#client.cftoken#"), DE(""))>
</CFIF>

-------------------------------------------------------




-----------form processing page---------------------



                <!--- Insert Query Here --->
                <cfquery name="Update_login" datasource="dsn" maxrows=1>
        INSERT INTO
tablename(name,city,state,zip,country,email,num_people,login_date,login_time
,http_user_agent)

VALUES('#name#','#city#','#state#','#zipcode#','#country#','#email#','#num_p
eople#','#DateFormat(Now(),"MM/DD/YYYY")#','#TimeFormat(Now(), "hh:mm:ss
tt")#','<cfoutput>#CGI.HTTP_USER_AGENT#</cfoutput>')</cfquery>




<cfoutput>
<cfif (ParameterExists(save_info)) AND (#save_info# IS "Yes")>
        <cfcookie name="name" value="#name#" expires="NEVER">
        <cfcookie name="city" value="#city#" expires="NEVER">
        <cfcookie name="state" value="#state#" expires="NEVER">
        <cfcookie name="zipcode" value="#zipcode#" expires="NEVER">
        <cfcookie name="country" value="#country#" expires="NEVER">
        <cfcookie name="email" value="#email#" expires="NEVER">

<cfelse>
        <cfcookie name="name" value="#name#" expires="NOW">
        <cfcookie name="city" value="#city#" expires="NOW">
        <cfcookie name="state" value="#state#" expires="NOW">
        <cfcookie name="zipcode" value="#zipcode#" expires="NOW">
        <cfcookie name="country" value="#country#" expires="NOW">
        <cfcookie name="email" value="#email#" expires="NOW">

</cfif>

</cfoutput>

<CFSET SESSION.LOGGED_IN = "yes">

<script>
self.location='newlocation.cfm';
</script>

-----------------------------------------------------------




-----------------newlocation.cfm---------------------------

<CFIF SESSION.CGG_RA_LIVE_LOGGED_IN IS NOT "yes">
                                <cflocation url="login.cfm" addtoken="Yes">
</CFIF>


<--- HTML content here --->

--------------------------------------------------------------
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm

Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
RE: duplicate logins

Reply via email to
