Ok maybe one of the more experienced CF'ers can inject with some insight. As for myself, I don't get why you're timeout the session in the manner that you are, after you've already flushed the structure. Don't you run the risk setting the session timeout to nothing as one user is loggin out, just as another is logging in? I would suspect that clearing the session is sufficient to prevent the average user from re-accessing the secure area without having logged in again....yes/no?
> From: "John Jonathan Kopanas" <[EMAIL PROTECTED]> > Reply-To: [EMAIL PROTECTED] > Date: Wed, 5 Jun 2002 14:29:59 -0400 > To: <[EMAIL PROTECTED]> > Subject: Re: [CFTALKTor] please help > > I can set them because a session is there it is just a new session is not > created. I end up taking the last one. > >> Are you able to set any other session vars on successful re-login? >> >>> From: "John Jonathan Kopanas" <[EMAIL PROTECTED]> >>> Reply-To: [EMAIL PROTECTED] >>> Date: Tue, 4 Jun 2002 17:25:49 -0400 >>> To: <[EMAIL PROTECTED]> >>> Subject: Re: [CFTALKTor] please help >>> >>> I am using fusebox so I do not use an application page. But once the > person >>> logs in again successfully the cfapplication is called to turn on >>> sessionManagement. So it gets turned back on but session.cfid and >>> session.cftoken are not reset i.e. not re-created which is what I need > them >>> to do. I figure they will be re-created with new values. >>> >>>> Ok, I'm not really following what you're doing. Please forgive me if > this >>> is >>>> a stupid question but do you have that application tag in the > application >>>> page of the directory where the page setting the new session exists? >>>> >>>> Karl >>>> >>>>> From: "John Jonathan Kopanas" <[EMAIL PROTECTED]> >>>>> Reply-To: [EMAIL PROTECTED] >>>>> Date: Tue, 4 Jun 2002 16:48:44 -0400 >>>>> To: "CFTALK Toronto" <[EMAIL PROTECTED]> >>>>> Subject: [CFTALKTor] please help >>>>> >>>>> I am having a problem that is driving me crazy. Please tell me where > my >>>>> logic is wrong. >>>>> >>>>> I created an app with a secure section. I am using session management >>> and >>>>> don't use cookies. I just pass CFID and CFToken in the URL. When the >>> user >>>>> logs out I use structClear(session) and then have the session timeout >>> with >>>>> the following line: >>>>> >>>>> <cfapplication clientmanagement="No" sessionmanagement="Yes" >>>>> sessionTimeout="#createTimeSpan(0,0,0,1)#" >>>>> applicationTimeout="#createTimeSpan(0,0,0,1)#" setclientcookies="No" >>>>> setdomaincookies="No" name="#attributes.sessionName#"> >>>>> >>>>> When I go back and login session.cfid is not re-created nor is >>>>> session.cftoken, I am assuming it is because it takes the old session >>> and >>>>> does not create a new one. How do I make sure the old session is >>> destroyed >>>>> when I logout and when I go back to login in a new session is created. >>>>> >>>>> >>>>> Thanks. >>>>> >>>>> >>>>> - >>>>> You are subscribed to the CFUGToronto CFTALK ListSRV. >>>>> This message has been posted by: "John Jonathan Kopanas" >>> <[EMAIL PROTECTED]> >>>>> To Unsubscribe, Please Visit and Login to http://www.CFUGToronto.org/ >>>>> Manager: Kevin Towes ([EMAIL PROTECTED]) >>> http://www.CFUGToronto.org/ >>>>> This System has been donated by Infopreneur, Inc. >>>>> (http://www.infopreneur.net) >>>> >>>> - >>>> You are subscribed to the CFUGToronto CFTALK ListSRV. >>>> This message has been posted by: "A. Karl Zarudny" >>> <[EMAIL PROTECTED]> >>>> To Unsubscribe, Please Visit and Login to http://www.CFUGToronto.org/ >>>> Manager: Kevin Towes ([EMAIL PROTECTED]) >>> http://www.CFUGToronto.org/ >>>> This System has been donated by Infopreneur, Inc. >>>> (http://www.infopreneur.net) >>>> >>> >>> - >>> You are subscribed to the CFUGToronto CFTALK ListSRV. >>> This message has been posted by: "John Jonathan Kopanas" > <[EMAIL PROTECTED]> >>> To Unsubscribe, Please Visit and Login to http://www.CFUGToronto.org/ >>> Manager: Kevin Towes ([EMAIL PROTECTED]) > http://www.CFUGToronto.org/ >>> This System has been donated by Infopreneur, Inc. >>> (http://www.infopreneur.net) >> >> - >> You are subscribed to the CFUGToronto CFTALK ListSRV. >> This message has been posted by: "A. Karl Zarudny" > <[EMAIL PROTECTED]> >> To Unsubscribe, Please Visit and Login to http://www.CFUGToronto.org/ >> Manager: Kevin Towes ([EMAIL PROTECTED]) > http://www.CFUGToronto.org/ >> This System has been donated by Infopreneur, Inc. >> (http://www.infopreneur.net) >> > > - > You are subscribed to the CFUGToronto CFTALK ListSRV. > This message has been posted by: "John Jonathan Kopanas" <[EMAIL PROTECTED]> > To Unsubscribe, Please Visit and Login to http://www.CFUGToronto.org/ > Manager: Kevin Towes ([EMAIL PROTECTED]) http://www.CFUGToronto.org/ > This System has been donated by Infopreneur, Inc. > (http://www.infopreneur.net) - You are subscribed to the CFUGToronto CFTALK ListSRV. This message has been posted by: "A. Karl Zarudny" <[EMAIL PROTECTED]> To Unsubscribe, Please Visit and Login to http://www.CFUGToronto.org/ Manager: Kevin Towes ([EMAIL PROTECTED]) http://www.CFUGToronto.org/ This System has been donated by Infopreneur, Inc. (http://www.infopreneur.net)
