Application.cfm code below. (Thanks for your help with this)
<cfapplication name="SydneyIVF_Admin" sessionmanagement="yes"
loginstorage="session" sessiontimeout="#CreateTimeSpan(0,0,30,0)#"
setdomaincookies="yes" >
<cflogin idletimeout="1800">
<!--- SECTION 1: If not logged in user, or login form not
submitted,
include the login form--->
<cfif NOT isDefined("Form.username")>
<cfinclude template="login/login_form.cfm">
<cfabort>
<cfelse>
<!--- SECTION 2:The user has submitted the form, but
either the name
or password is blank, so include the form
again --->
<cfif Form.username is "" OR Form.password is "">
<cfinclude template="login/login_form.cfm">
<h3>You must enter text in both the User ID and
Password fields.</h3>
<cfabort>
<cfelse>
<!--- SECTION 3:The user has submitted name and
password, check the database for
match --->
<cfquery name="qGetUser"
datasource="#request.dsn#">
SELECT * FROM tbl_users WHERE User_Name =
'#FORM.UserName#' and User_Password=
'#FORM.Password#'
</cfquery>
<!--- SECTION 4: The user has submitted a valid
name and password --->
<cfif qGetUser.RecordCount>
<!--- Use <cfloginuser> here to identify
the user to ColdFusion --->
<cfloginuser name="#Form.username#"
password="#Form.password#" roles="#qGetUser.user_Roles#">
<cfset loggedin="1">
<!--- SECTION 5: User has submitted
invalid name and/or password,
so show the form again --->
<cfelse>
<cfinclude
template="login/login_form.cfm">
<h3>Your information is not
valid. Please try again.</h3>
<cfabort>
</cfif>
</cfif>
</cfif>
</cflogin>
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Andrew
Scott
Sent: Friday, 8 April 2005 1:50 PM
To: CFAussie Mailing List
Subject: [cfaussie] RE: Weird session behaviour
Tom,
If you have removed the session storing, and hitting the DB then it
seems to be in the application part. I am still curious how you pull the
right data out of the application scope?
Regards
Andrew Scott
Technical Consultant
NuSphere Pty Ltd
Level 2/33 Bank Street
South Melbourne, Victoria, 3205
Phone: 03 9686 0485 - Fax: 03 9699 7976
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Tom
MacKean
Sent: Friday, 8 April 2005 1:44 PM
To: CFAussie Mailing List
Subject: [cfaussie] RE: Weird session behaviour
Yep. When I go to another computer, the cfid and cftoken are the same
as on my computer. When I refresh the page, they change.
I have just gone through and taken all the session variables out of the
site, and included on every page a call to the db to get the info that
was previously stored in the session structure.
The problem did not go away.
The problem has to be on the server. I'm going to try Adam's suggestion
now of giving each page a unique url. Wish me luck.
:(
T
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Andrew
Scott
Sent: Friday, 8 April 2005 1:32 PM
To: CFAussie Mailing List
Subject: [cfaussie] RE: Weird session behaviour
Have you tried outputting the cfid and cftoken to see if these change at
all?
Regards
Andrew Scott
Technical Consultant
NuSphere Pty Ltd
Level 2/33 Bank Street
South Melbourne, Victoria, 3205
Phone: 03 9686 0485 - Fax: 03 9699 7976
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Tom
MacKean
Sent: Friday, 8 April 2005 10:33 AM
To: CFAussie Mailing List
Subject: [cfaussie] RE: Weird session behaviour
Thanks Barry,
The weird thing is not that it doesn't work, just that it is
transferring session data from one computer to another.
E.g. I log in on my computer as me, all the pages are headed Welcome
Tom.
I go to another machine that I've never logged in on before, log in as
someone else, say Joe Bloggs.
The first page says Welcome Joe, but if I click on a link the new page
says Welcome Tom. If I refresh, it says Welcome Joe. This happens for
each page I visit, but once a page has been visited it will always
correctly display Welcome Joe.
So back to my own computer, click on a link and it says Welcome Joe.
Refresh and it says Welcome Tom.
And back and forth.
The welcome name is stored in a session scope structure and called by
session.thisuser.user_firstname.
My problem was that I thought that session scope variable applied only
to a particular browser.
The data must be caching somewhere. While I recognise that there may be
ways of getting around the problem by forcing the browser to request a
unique page (as per Adam's suggestion yesterday) what I'd prefer to do
is find where/why the page is misbehaving and fix that.
Thanks,
Tom
---
You are currently subscribed to cfaussie as: [EMAIL PROTECTED]
To unsubscribe send a blank email to
[EMAIL PROTECTED]
Aussie Macromedia Developers: http://lists.daemon.com.au/
NOTICE: Medical and scientific information provided in print and
electronically by Sydney IVF might not be relevant to your own
circumstances and should always be discussed with your own doctor before
you act on it.
This communication is confidential and may contain copyright or
otherwise protected information of Sydney IVF Limited or a third party.
If you are not the intended recipient of this communication please
immediately let us know by reply email or telephone us on +61 2 9221
5964, delete the communication and destroy all copies.
---
You are currently subscribed to cfaussie as: [EMAIL PROTECTED] To
unsubscribe send a blank email to
[EMAIL PROTECTED]
Aussie Macromedia Developers: http://lists.daemon.com.au/
---
You are currently subscribed to cfaussie as: [EMAIL PROTECTED]
To unsubscribe send a blank email to
[EMAIL PROTECTED]
Aussie Macromedia Developers: http://lists.daemon.com.au/
---
You are currently subscribed to cfaussie as: [email protected]
To unsubscribe send a blank email to [EMAIL PROTECTED]
Aussie Macromedia Developers: http://lists.daemon.com.au/
