reloads the app.)
HTH.
/charlie
From: cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] On Behalf Of
Dale Fraser
Sent: Monday, April 07, 2014 10:50 PM
To: cfaussie@googlegroups.com
Subject: RE: [cfaussie] CF10 Cross Domain sessions with HTTPS
I suspect you could clear all cookies
Sunday, April 06, 2014 10:10 PM
To: cfau...@googlegroups.com
Subject: Re: [cfaussie] CF10 Cross Domain sessions with HTTPS
Dale I've used a combination of the Application specific sessioncookies.domain
and the manual cookie set in the onSessionStart and it appears to be working
wh
half Of *Phil Rasmussen
> *Sent:* Sunday, April 06, 2014 10:10 PM
> *To:* cfau...@googlegroups.com
> *Subject:* Re: [cfaussie] CF10 Cross Domain sessions with HTTPS
>
>
>
> Dale I've used a combination of the Application specific
> sessioncookies.domain and the
: cfaussie@googlegroups.com
Subject: Re: [cfaussie] CF10 Cross Domain sessions with HTTPS
Dale I've used a combination of the Application specific sessioncookies.domain
and the manual cookie set in the onSessionStart and it appears to be working
which is odd? Previously i had tried these set
ts cookies for the domain rather than sub domain.
>>
>>
>>
>> Regards
>>
>> Dale Fraser
>>
>>
>>
>> *From:* cfau...@googlegroups.com [mailto:cfau...@googlegroups.com] *On
>> Behalf Of *Phil Rasmussen
>>
>> *Sent:* Monday,
> Regards
>
> Dale Fraser
>
>
>
> *From:* cfau...@googlegroups.com [mailto:
> cfau...@googlegroups.com ] *On Behalf Of *Phil Rasmussen
> *Sent:* Monday, 7 April 2014 10:27 AM
> *To:* cfau...@googlegroups.com
> *Subject:* Re: [cfaussie] CF10 Cross Domain sessions wit
[mailto:cfaussie@googlegroups.com] On Behalf Of
Phil Rasmussen
Sent: Monday, 7 April 2014 10:27 AM
To: cfaussie@googlegroups.com
Subject: Re: [cfaussie] CF10 Cross Domain sessions with HTTPS
Hi Dale thanks for the suggestion I had actually tried that and unfortunately
to no avail.
I've
f *Phil Rasmussen
> *Sent:* Monday, 7 April 2014 9:34 AM
> *To:* cfau...@googlegroups.com
> *Subject:* Re: [cfaussie] CF10 Cross Domain sessions with HTTPS
>
>
>
> Andrew I understand and completely agree with the crossing between HTTP /
> HTTPS and sessions dropping,
googlegroups.com] On Behalf Of
Phil Rasmussen
Sent: Monday, 7 April 2014 9:34 AM
To: cfaussie@googlegroups.com
Subject: Re: [cfaussie] CF10 Cross Domain sessions with HTTPS
Andrew I understand and completely agree with the crossing between HTTP / HTTPS
and sessions dropping, however we
Andrew I understand and completely agree with the crossing between HTTP /
HTTPS and sessions dropping, however we have since switched the entire
application over to HTTPS across all the subdomains and still have the same
problem.
I am basically trying to find a solution (any solution at this st
Regards,
Andrew Scott
WebSite: http://www.andyscott.id.au/
Google+: http://plus.google.com/113032480415921517411
On Thu, Apr 3, 2014 at 9:26 AM, Phil Rasmussen wrote:
> Hi Guys
>
>
> When crossing between the domains (which had worked for many years prior)
> the session drops and CF issues a
Hi Charlie,
Thanks for the informative post that's very very helpful. We are currently
running CF 9.0.2 on our existing Production setup so Session Fixation is
already in play and even passing the JSESSIONID around in some parts of the
site when jumping from HTTP to HTTPS and back it appears to
Yes, Phil. Many have had such issues. There are some subtleties to when some
experience it and not others.
One thing I will suggest: use a client dev tool to watch closely the cookies
being sent and received between the browser and CF. Watch for what’s changing,
what’s duplicated, and ESPECIALL
13 matches
Mail list logo
