if you are not SETTING the session vars I reccommend locking in application.cfm and setting them to request scope vars.
----- Original Message ----- From: "Seamus Campbell" <[EMAIL PROTECTED]> To: "CF-Talk" <[EMAIL PROTECTED]> Sent: Sunday, November 11, 2001 8:36 PM Subject: still confused re locking > I'm still confused over locking! > > I have this sort of query > <cfquery name="get_expired" datasource="#request.DSN#"> > SELECT User_ID, nickname, expiry_date > FROM tbl_client > WHERE user_id=#SESSION.user_ID# > </cfquery> > > I should lock the #SESSION.user_ID# but am I right in thinking that locking > the whole query is wasteful? > > If so how do I get around this? > > What are the best practices? > > And what about hidden fields in forms eg > <input type="hidden" name="user_id" > value="<cfoutput>#SESSION.User_id#</cfoutput>"> > > Lock the whole form? > Lock just the above line?? > > Any help would be appreciated (I have looked at Jim Schley's Best Practices > article and Ben Forta's article but they have confused me on the above 2 > points) > > Many thanks > > Seamus > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Your ad could be here. Monies from ads go to support these lists and provide more resources for the community. http://www.fusionauthority.com/ads.cfm FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
