> I'm using the cflogout tag but I don't think the session was logged out.
> I managed to delete the cookie but the user can still get into the
> protected area after logout. This is the code for logout i'm using...
>
> <cflogout>
> <cfif IsDefined("cookie.ISTHISPERSONLOGGEDINORWHAT") EQ "Yes">
> <cfcookie NAME="ISTHISPERSONLOGGEDINORWHAT" VALUE="Yes" EXPIRES="NOW">
> </cfif>
> <cflocation url="http://localhost/applewood/mycommunity/index2.cfm";>
>
> I thought that the cflogout was supposed to get rid of the session. Can
> someone shed some light on this please?Unless you specifically set the value of the LOGINSTORAGE attribute of your CFAPPLICATION tag to "SESSION", there is no correlation between CFLOGIN and the Session scope. In addition, deleting a cookie that you created yourself won't, by itself, affect the session. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ phone: 202-797-5496 fax: 202-797-5444 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Special thanks to the CF Community Suite Gold Sponsor - CFHosting.net http://www.cfhosting.net Message: http://www.houseoffusion.com/lists.cfm/link=i:4:183517 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
