Same application name. I even tried this: Instead of redirecting, I did the following in login_exec.cfm:
<cfdump var="#session#"> <cfset session.isAuthorized = true> <a href="statistics.cfm">Statistics</a> <cfdump var="#session#"> <cfabort> When I got to this page, I could see my session.isAuthorized was set to false before the <cfset> and true after it. Then, I clicked on the statistics link, and the <cfdump var="#session#"> on that page shows: Same application name Same CFID Same CFTOKEN Same Session ID but session.isAuthorized shows false. :( I'm going to try putting the code on another machine to see if it solves the problem or not. I'm pulling my hair out (well, if I had any hair!). Dave ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:315333 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
