Just to clarify (or else correct me if I'm wrong)
CF only generates the CFID and CFTOKEN if a CFAPPLICATION is executed,
correct? No CFAPPLICATION, no CFID or CFTOKEN. Of course it's rare to not
be using a CFAPPLICATION...
At 03:40 PM 03/06/2001 -0500, you wrote:
> > Looks like we're going to have to use client.URLtoken since
> > the customer doesn't want cookies required.
> >
> > I've heard that the CFTOKEN is generated based on your IP
> > address (which is how the server knows it's you when you come
> > back) ...
> >
> > but will CFTOKEN get confused if users come through proxies
> > or have dynamic IP addressing?
>
>I don't think that CFTOKEN is generated based on your IP address. To the
>best of my knowledge, it's generated using internal state information (time,
>etc) within CF without regard to any info from the browser. CF will generate
>a CFID and CFTOKEN for each user that doesn't send those variables back,
>regardless of IP address.
>
>Dave Watts, CTO, Fig Leaf Software
>http://www.figleaf.com/
>voice: (202) 797-5496
>fax: (202) 797-5444
>
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
