Not sure why you are killing the application scope variables, as this is across all users to the site anyway and don't need to be killed unless your storing info in here that are used for this user only, and if this is the case change your code so that it doesn't use the application scope unless you have variables that can be shared across multiple users.
Secondly, if you are using the client scope check that it is being removed from the DB. Or is this stored in the cookie or Registry, either way the client variable should be killed. The best practice I can recommend if the SSL site is not on the same machine use WDDX encrypted in the url or store the information in the DB to transfer to the SSL site. You have to remember that if the Secured Site is on another domain you will get a complete new set of CFID & CFToken variables and this will be why when returning back that the client variables are still there. If it was me, I would store the required info into a DB before going to the secured site then by using a cookie with another value to help identify the user pull this info back out of the DB. There might be a more efficient way, but this has always worked for me. -----Original Message----- From: Lacey Lawson [mailto:[EMAIL PROTECTED]] Sent: Wednesday, 23 January 2002 1:54 AM To: CF-Talk Subject: sessions and secure servers I have a shopping cart that uses cfid and cftoken as identifiers for customers. When they get to the end of placing the order, I have the following code to kill the variables: <CFSET STRUCTCLEAR(APPLICATION)> <CFSET STRUCTCLEAR(SESSION)> <CFLOOP INDEX="X" LIST="#GetClientVariablesList()#"> <CFSET DELETED = DELETECLIENTVARIABLE("#X#")> </CFLOOP> <CFCOOKIE NAME="cfid" EXPIRES="NOW"> <CFCOOKIE NAME="cftoken" EXPIRES="NOW"> <CFCOOKIE NAME="cfglobals" EXPIRES="NOW"> However, since this is done on the secure server (https://myserver.hostdomain.com/clientdir) and the variables were set on the client's domain (www.clientsite.com), it doesn't kill the ones that were set at www.clientsite.com, and when you return to the site, the variables ______________________________________________________________________ Why Share? Dedicated Win 2000 Server � PIII 800 / 256 MB RAM / 40 GB HD / 20 GB MO/XFER Instant Activation � $99/Month � Free Setup http://www.pennyhost.com/redirect.cfm?adcode=coldfusionc FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
