Or take it one step further, don't rely on cfid_cftoken at all. Use the session to create a createUUID() and then register the uuid to the application var. Wouldn't this protect you a little better if you were in a clustered environment?
~Todd
At 10:13 AM 5/29/2003 -0500, you wrote:
Quick tip - if you don't want to make your own key with CFID_CFTOKEN, don't forget you can use session.urlToken, which is the same (well, I believe it's cdid=#cfid#&cftoken=#cftoken#, but it serves the same purpose).
======================================================================== === Raymond Camden, ColdFusion Jedi Master for Mindseye, Inc
----------------------------------------------------------
You are subscribed to cfcdev. To unsubscribe, send an email
to [EMAIL PROTECTED] with the word 'unsubscribe cfcdev' in the message of the email.
CFCDev is run by CFCZone (www.cfczone.org) and supported by Mindtool, Corporation (www.mindtool.com).
