I'd suggest using a touch of code in application.cfm that sniffed the requested URL for the areas that you wanted to secure, then rewriting and cflocating to the secure url for that resource.
Running the entire site under SSL is a performance consideration that depends mostly on how your SSL traffic is being managed - either by the webserver or some outside box. It's not the fastest way to do things, but it saves a lot of headaches. Application and session variables are completely unaffected by the use of ssl. Steve On Tue, 08 Feb 2005 18:46:29 -0500, Nathan Mische <[EMAIL PROTECTED]> wrote: > Andrew, > > I have the same question. (This issue just came up today in a > conversation I was having with some other developers about FarCry and I > have no idea of the answer.) > > --Nathan > > Andrew Mercer wrote: > > >How would you go about setting up a farCry site to run over HTTP for > >general viewing and then HTTPS for member only areas when a login is > >required (with IIS)? > > > >Would APPLICATION and SESSION variables be lost as the user is > >directed back and forward between HTTP and HTTPS? > > > >Is there anything wrong/bad about running the whole site on HTTPS? > > > >--- > >You are currently subscribed to farcry-dev as: [EMAIL PROTECTED] > >To unsubscribe send a blank email to [EMAIL PROTECTED] > >Aussie Macromedia Developers: http://lists.daemon.com.au/ > > > > > > > > --- > You are currently subscribed to farcry-dev as: [EMAIL PROTECTED] > To unsubscribe send a blank email to [EMAIL PROTECTED] > Aussie Macromedia Developers: http://lists.daemon.com.au/ > -- ------- Steve Rittler [EMAIL PROTECTED] --- You are currently subscribed to farcry-dev as: [email protected] To unsubscribe send a blank email to [EMAIL PROTECTED] Aussie Macromedia Developers: http://lists.daemon.com.au/
