I'm sorry if this is going over old ground, but I never had to face this
situation before and to tell the truth, I didn't really grasp the
implications of session vs client variables before .
I'm moving a site to a load-balanced multiple server environment that has
been working fine on a single-server setup.
No problem until I came to do the login part of the admin section. Of
course the session variables that were fine in the old setup won't work
here. I have to use client variables. Now I have some choices I've never
had to face before .... I'd like the opinions of the group here please ...
(a) Should I set client cookies and if so should they be session only?
The people accessing the admin section are a wide variety of users, with a
variety of browsers, but I don't have a problem with insisting they sllow
cookies if that's the best way to go. The cookies are only going to be
necessary for access to the admin area of the site anyway.
(b) The hosting company has a fetish for security and has closed off
CFRegistry, CFFile, CFDirectory etc, so I can't imagine they'll let me use
the registry for storing client variables. (I've asked but not had a reply
yet) Therefore I'll need to be storing client variables in the SQLServer7
database - should I use the central datasource for it or my own datasource?
Are there issues here I need to take into account?
( c ) aside from these issues, if I just change all my session. scope
variables to client scope, is that going to take care of most of the issues
involved in keeping security and tracking users round the site? Or are
there other matters I need to take into account now too?
Cheers,
Mike Kear
Windsor, NSW, Australia
AFP WebWorks
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
