Sravan, as for your request for "other ideas", you didn't reply to the
couple of ideas I offered in my last email, attached.
/charlie
From: [email protected] [mailto:[email protected]] On Behalf Of sravan kumar
Sent: Monday, June 22, 2009 11:07 PM
To: [email protected]
Subject: RE: [ACFUG Discuss] single sign-on issue CF 8
i tried this in between two cf servers and it works well. i was able to
access other CF server page from html page.
Any other ideas?
thanks
Sravan
> Date: Fri, 19 Jun 2009 16:11:05 -0600
> Subject: RE: [ACFUG Discuss] single sign-on issue CF 8
> From: [email protected]
> To: [email protected]
>
> I have a simple test for you I think. Make an HTML page that does a form
> post to the URL of your application. Make sure the HTML page is hosted on
> a different webserver of some kind, preferrably a completely different
> machine. Log into your CF app and take note of the sessionid variables.
> Put that information into the form action parameter on your html page,
> obviously appended onto the url to the app. Try viewing the HTML and
> posting the information with either javascript or a submit button.
>
> What is your result?
>
-------------------------------------------------------------
To unsubscribe from this list, manage your profile @
http://www.acfug.org?fa=login.edituserform
For more info, see http://www.acfug.org/mailinglists
Archive @ http://www.mail-archive.com/discussion%40acfug.org/
List hosted by http://www.fusionlink.com
-------------------------------------------------------------
--- Begin Message ---
I saw your later note saying you're sending those session keys as URL parms.
Since you say things are failing on posts, how about getting the posting app
to try sending them as cookies instead? Maybe some aspect of the http spec
(or the web server) is not letting query strings in on form posts. Just a
guess.
Also, you ask "why causes CF to think it's a new session". As I said before,
you can do a CFLOG of the incoming session keys in the URL, form, and/or
cookie scope to see if they're coming in as you'd expect (for the cookie
scope, note that CF will generate values for that in the request if it
thinks none of the keys were set, so you should also log the
cgi.http_cookie, as that represents the real cookie value (if any) passed
into the request.
Hope that helps.
If you remain stumped, I'm available to provide remote assistance. If I
don't solve the problem, you won't have to pay. :-) More at
carehart.org/consulting/.
/charlie
From: [email protected] [mailto:[email protected]] On Behalf Of sravan kumar
Sent: Friday, June 19, 2009 5:25 PM
To: [email protected]
Subject: RE: [ACFUG Discuss] single sign-on issue CF 8
I didn't have this problem when user is in my application. User is able to
navigate between pages without any problem.
Third party website is able to make a GET request without any problems. If
bombs out only when they make a POST request.
i wonder what causes CF8.0 to think that it is a new session.
\
thanks
sravan
-------------------------------------------------------------
To unsubscribe from this list, manage your profile @
http://www.acfug.org?fa=login.edituserform
For more info, see http://www.acfug.org/mailinglists
Archive @ http://www.mail-archive.com/discussion%40acfug.org/
List hosted by FusionLink <http://www.fusionlink.com>
-------------------------------------------------------------
--- End Message ---
