I do the same. I create an order record and store the order_id in a session. The first thing I do in any action is look for the id in the session. If it's not there, go back to the start. If it's there, do some some stuff, reading from the db if appropriate. This means I can process an order from beginning to end without asking the user to log in or create an account first or revealing the id in the address bar, which also means it is difficult (but not impossible) for someone to spoof their way into another order. As Paul rightly says, you can then analyse abandoned orders.
Jeremy Burns On 26 Feb 2010, at 08:50, WebbedIT wrote: > I haven't used cookies directly. I would personally store this in the > database and mark each record with the session id. This then allows > you to analyse abandoned carts etc. > > Paul > > Check out the new CakePHP Questions site http://cakeqs.org and help others > with their CakePHP related questions. > > You received this message because you are subscribed to the Google Groups > "CakePHP" group. > To post to this group, send email to cake-php@googlegroups.com > To unsubscribe from this group, send email to > cake-php+unsubscr...@googlegroups.com For more options, visit this group at > http://groups.google.com/group/cake-php?hl=en Check out the new CakePHP Questions site http://cakeqs.org and help others with their CakePHP related questions. You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to cake-php@googlegroups.com To unsubscribe from this group, send email to cake-php+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/cake-php?hl=en