I finally figured out what was going on. Since our client wanted to have
special objects show up for authenticated users, I built in some code that
checked to see if the url variable "login" was defined. Inside of that code
I placed my CFA_AUTHENTICATE tag. This was the problem. Something in that
tag needs to be present to set the request.cfa.activeuser variable. I don't
want the average user to the site to see a login dialogue, so I then changed
my conditional to check for cookie.CFAuth OR the login url variable.
Everything works as it should now.
Is there a more straightforward way to handle this? It works fine, but I'd
like to get the best practices put into place when possible.
Thanks again for the help.
-
Nate Smith,
Lead Developer
[EMAIL PROTECTED]
www.doceus.com
-----
-----Original Message-----
From: Nate Smith [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, April 18, 2001 7:06 AM
To: Spectra-Talk
Subject: RE: CFA_SECURE Auth Not Persisting
I am not using LDAP. This is really weird because in my admin section of the
site, request.cfa.activeuser is persisting. However, in my general site the
activeuser variable is not persisting. I've compared the two sets of code
and I can find no differences. Could it be that if I am logged into the
admin site that the general site somehow loses information? I would think
that they would check the same cookie or the same session variable and the
value would persist between both sites if it were to happen at all.
As it is right now with an ODBC user directory the request.cfa.activeuser
variable is still not persisting. I'll try request.cfa.security.username to
see if perhaps the login is failing somehow.
Thanks for the feedback guys. I'll keep you posted.
Nate
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
------------------------------------------------------------------------------
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/spectra_talk or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
