SESSIONs typically are bad news in server farms because they exist in one
place so if a new server gets the next request it won't know who the user
is. Client vars can be set and should be set to use a database. That way all
the servers have access to them. Unfortunately as far as I know this has to
be done in the CF admin.
If they'll let you use the DB I would. They can set it up all it needs is
two tables. you can just put them in your main datasource.
The easiest would be the cookies approach if you want to be hassle free as
far as dealing with the hosting place and all.
Hope that helps some.
J.
John Wilker
Web Applications Consultant
Macromedia Certified ColdFusion Developer
www.red-omega.com <http://www.red-omega.com>
Pepsi's "Come Alive With the Pepsi Generation" translated into "Pepsi Brings
Your Ancestors Back From the Grave" in Chinese.
-----Original Message-----
From: Mike Kear [mailto:[EMAIL PROTECTED]]
Sent: Friday, June 15, 2001 8:21 PM
To: CF-Talk
Subject: Surely someone can help me ... Please?
I'm starting to really get worried here - my hosting company hasn't
responded to numerous requests, and there hasn't been anyone on this list
who's helped me either. I'm in a real bind and don't know what to do now .
.. .
I'm really confused about Session/vs/Client variables. All the stuff I've
read about client variables seems to be about how to set up servers and
administer servers. I don't have any control over that and I'm getting no
help from my hosting company.
I'm moving a site to a load-balanced multiple server environment that has
been working fine on a single-server setup.
It's been no problem until I came to do the login and access control part of
the admin section. Of course the session variables that were fine in the
old setup won't work here. I have to use client variables. Now I have some
choices I've never had to face before .... I'd like the opinions of the
group here please ...
(a) Should I set client cookies and if so should they be session only? The
people accessing the admin section are a wide variety of users, with a
variety of browsers, but I don't have a problem with insisting they allow
cookies if that's the best way to go. The cookies are only going to be
necessary for access to the admin area of the site anyway.
(b) The hosting company has a fetish for security and has closed off
CFRegistry, CFFile, CFDirectory etc, so I can't imagine they'll let me use
the registry for storing client variables. (I've asked but not had a reply
yet) Therefore I'll need to be storing client variables in the SQLServer7
database - should I use the central datasource for it or my own datasource?
Are there issues here I need to take into account?
( c ) aside from these issues, if I just change all my session. scope
variables to client scope, is that going to take care of most of the issues
involved in keeping security and tracking users round the site? Or are
there other matters I need to take into account now too?
Cheers,
Mike Kear
Windsor, NSW, Australia
AFP WebWorks
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
