I recently found the reason we were seeing two sets of cfid and cftoken
cookies. We had code similar to this running:
cfif myvars.KillSessionOnClose and IsDefined(cookie.CFID)
cfset variables.LocalCFID=cookie.CFID
cfset variables.LocalCFToken=cookie.CFToken
cfcookie name=CFID
We finally resolved this issue.
First, a big thanks as always to everyone who commented and helped us along
on this thread.
Second, here is the resolution. In our case, the problem was some enhanced
security filters that we put place recently. One of the scopes being
scanned was the cookie
On Tue, Mar 11, 2014 at 11:52 AM, Dave Watts wrote:
No, I think you should only have the one cookie for jsessionid. I'm
not sure why you have the other two.
As you can imagine I did some reading on jsession vars after I opened up
this thread. Look at the comparison table here:
Hi there,
Thanks for your follow up post. It definitely seems that we have something
similar going on. We have switched some features to be less dependent on
sessions and more on other scopes. That has worked ok but longer term we
want sessions to work consistently.
It's been very difficult
Hi All,
I was just about to post on a very similar problem when I saw this thread.
We've just had this come up in the last couple of weeks and it happens
sporadically. A few quick points:- the problem is that sessions restart
with each request- the problem happens sporadically- the problem
I was just about to post on a very similar problem when I saw this thread.
We've just had this come up in the last couple of weeks and it happens
sporadically. A few quick points:- the problem is that sessions restart
with each request- the problem happens sporadically- the problem is solved
Hi Dave,
I may be getting a bit over my head here, but here is an example of what
our session dump looks like:sessionid: 84303380daf164aedda3456e2d1856513d2e
urltoken:
CFID=83197727CFTOKEN=9af68af80f73df3-F872B04C-CA42-C7AB-D8FB410E558AEEE5js
I may be getting a bit over my head here, but here is an example of what
our session dump looks like:sessionid: 84303380daf164aedda3456e2d1856513d2e
urltoken:
CFID=83197727CFTOKEN=9af68af80f73df3-F872B04C-CA42-C7AB-D8FB410E558AEEE5js
I recently tried switching to j2ee sessions and noticed the same thing,
that cfid and cftoken were still being created as well. So it isn't a
unique case.
On Tue, Mar 11, 2014 at 6:52 PM, Dave Watts dwa...@figleaf.com wrote:
I may be getting a bit over my head here, but here is an example
Thanks Dave,
I'm not really the developer here but I think that we may have client
variables enabled and my recollection was that client variables may require
cfid and cftoken.
It's been running pretty smoothly for a while until this very recent
issue.
Nick
I'm not really the developer here but I think that we may have client
variables enabled and my recollection was that client variables may require
cfid and cftoken.
It's been running pretty smoothly for a while until this very recent
issue.
Yes, client variables do require CFID and CFTOKEN.
Thanks Russ,
With client variables (we're phasing them out) in place as well as the more
secure j2ee session variables, we seem to have all in use at the moment.
But, I think that has been a pretty stable configuration for us for some
time.
Nick
One really interesting behavior here, which may point us in the direction
of a better solution, is that when this problem with session.jsessionid
happens (it resets ever page request), cookie.jsessionid remains
persistent.
I don't know enough about the linkage there to know if that is expected
check that you do not have any cflocation tags which are using
addtoken=yes (the default), this seems to be a fairly common cause of
superfluous cfid and cftokens cookies being created
as as per other thread, try completely removing the cookies or use
incognito mode to see if it persists, and
I think it was pretty clear that code he listed was being used solely to
diagnose a problem he was experiencing **on a production server** and
from **multiple client computers**, and that wasn't necessarily
reproducible on a development server. And I don't think the code was
meant for
to changes in session management in
recent releases of CF to prevent session fixation vulnerabilities,
etc. You might have CFID/CFTOKEN cookies that have different domain
attributes, and CF is looking at the wrong ones, if I recall
correctly. Here's a workflow description from a guy who's smarter than
me
+1 for J2EE sessions.
-Carl V.
On 3/7/2014 9:20 AM, Dave Watts wrote:
The best solution, in my opinion, is to switch to J2EE sessions,
assuming you can invest the time and effort to do that.
~|
Order the Adobe Coldfusion
On Thu, Mar 6, 2014 at 5:22 PM, Russ Michaels r...@michaels.me.uk wrote:
see if there are multiple cfid/cftoken cookies set.
if so, that is likely the issues, and deleting all cookies should solve it.
in your cflocation tags you need to use addtoken=no otherwise this can
cause problems
The best solution, in my opinion, is to switch to J2EE sessions,
assuming you can invest the time and effort to do that.
I'm having almost the exact same problem. My login system, had been
working perfectly (CF8) until we moved everything to a new server with
CF10 on it.
Now, Chrome will
try this
http://www.petefreitag.com/item/815.cfm
On Fri, Mar 7, 2014 at 6:34 PM, Gerald Guido gerald.gu...@gmail.com wrote:
On Thu, Mar 6, 2014 at 5:22 PM, Russ Michaels r...@michaels.me.uk wrote:
see if there are multiple cfid/cftoken cookies set.
if so, that is likely the issues, and
To: cf-talk
Subject: Re: CF session management suddenly not sticking ...
The best solution, in my opinion, is to switch to J2EE sessions,
assuming you can invest the time and effort to do that.
I'm having almost the exact same problem. My login system, had been
working perfectly (CF8) until we
IIRC, unless you explicitly access CFID/CFTOKEN in your code, there
shouldn't be any issues.
-Carl V.
On 3/7/2014 10:45 AM, Les Mizzell wrote:
So considering the above - what, in theory, would be the exact
consequences in switching to J2EE sessions? I don't this there would be
that much code
So considering the above - what, in theory, would be the exact
consequences in switching to J2EE sessions? I don't this there would be
that much code that would need to be changed. I'm simply checking that
session.isADMIN is true in my application file. I admittedly don't have
a
I forgot about the persistence issue. Personally, I consider the lack
of session persistence to be a security benefit. But not everyone will
agree.
-Carl V.
On 3/7/2014 11:17 AM, Dave Watts wrote:
If you're not directly referencing CFID and CFTOKEN in your code, and
you're not relying on
I think it was pretty clear that code he listed was being used solely to
diagnose a problem
Precisely. Its the production environment but not the production site.
I'm testing with some old in-office desktops that mimic the problem
reported to us by users when this site was live for roughly 24
I think by add on he might have been referring to a browser add-on or
plugin that the users have installed into Internet Explorer.
-Carl V.
Or maybe you have an add on that is killing cookies.
That was my very first thought and I went straight to the design team who
swore that we weren't
I was thinking html code but yes thats a possibility as well. However a)
my test units are plain vanilla XP/IE8 wkstns and b) the CF code in
question has been running fine for years on these same desktops. We use
the web site in-house on a daily basis.
Worth noting: The demo code you were
Are you sure no cfpatches have been installed, specifically the one in the
link I sent earlier.
Often people are adamant when they say no only to find someone else did it.
Russ Michaels
www.michaels.me.uk
cfmldeveloper.com
cflive.net
cfsearch.com
On 7 Mar 2014 21:03, Money Pit
Are you sure no cfpatches have been installed, specifically the one in the
link I sent earlier.
Well earlier I said
...it is CF9 with all patches.
But I should have said it is *9.01* with all patches. So yes APSB11-04
was definitely one of them. I subscribe to Foundeo's monthly (?)
Speaking of that linked article, I disabled the session fixation patch via
Pete's instructions (-Dcoldfusion.session.protectfixation=false in the JVM)
and so far I've got proper functionality. I've had inconsistent results
before this so I'm not declaring temporary victory just yet but this is
New site version running at http://new.lelandwest.com On some older
browsers (XP wkstns w/IE8 are definitely vulnerable) the site will not
maintain state - i.e. cfid and cftoken get new values on every page visit
(they're displayed on screen right now).
It doesn't always happen, even on the
check the cookies that have been set in the browser, there are addons that
will show you this.
see if there are multiple cfid/cftoken cookies set.
if so, that is likely the issues, and deleting all cookies should solve it.
On Thu, Mar 6, 2014 at 10:09 PM, Money Pit websitema...@gmail.com wrote:
Well you were right I had multiple values, but problem persists. Ran code
below in OnRequestEnd.cfm and verified it was doing its job as expected
(deleting existing cookies, page reloads with new cfid and cftoken, and the
cReset cookie keeps it from happening all over again). The code didn't
so if you check the cookies after running your code, is there only one cfid
and cftoken, or is there still 2
On Fri, Mar 7, 2014 at 12:17 AM, Money Pit websitema...@gmail.com wrote:
Well you were right I had multiple values, but problem persists. Ran code
below in OnRequestEnd.cfm and
Nope I was down to one pair, and it was the pair just generated via the
cflocation. The code was doing its job.
Another repeatable mystery: If I turn down IE8's security from the default
of Medium-High to Medium it will always fix the problem. Same as with
Private Browsing.
On Thu, Mar 6,
in your cflocation tags you need to use addtoken=no otherwise this can
cause problems
the IE security setting may be down to the cookie acceptance policy, I
don't know why that would make a difference, but worth comparing the 2
settings to see how it differs.
On Fri, Mar 7, 2014 at 12:50 AM,
Yup I'm doing that. Put together a test page so as to take all of my code
out of the picture... although that back end has been fine for years... The
redesign was just a re-skin. But to be thorough I made this:
cfapplication
name=test_0915
sessionmanagement=Yes
clientmanagement=Yes
If you are going to be dumping things out in production, for the world to
see, I would stop that habit. The last thing you want to do is annoy your
clients / visitors with this stuff. People are not forgiving when they see
these things on the screen, personally if you have to do this, for god
-talk
Subject: Re: Question about session management
Ahh okay thank you!
- Alex
Original message
From: Dave Watts dwa...@figleaf.com
Date: 07/18/2013 8:29 PM (GMT-05:00)
To: cf-talk cf-talk@houseoffusion.com
Subject: Re: Question about session management
If I have a path
management
Ahh okay thank you!
- Alex
Original message
From: Dave Watts dwa...@figleaf.com
Date: 07/18/2013 8:29 PM (GMT-05:00)
To: cf-talk cf-talk@houseoffusion.com
Subject: Re: Question about session management
If I have a path:
/inetpub/myapp
In /myapp I have
function)
Is that 5 days?
- Alex
-Original Message-
From: DeMarco, Alex [mailto:alex.dema...@suny.edu]
Sent: Thursday, July 18, 2013 8:31 PM
To: cf-talk
Subject: Re: Question about session management
Ahh okay thank you!
- Alex
Original message
From
I am a bit out of practice with regards to session management.
If I have a path:
/inetpub/myapp
In /myapp I have an application .cfm in it has a application name of
MYAPPNAME with a sessiontimeout of 30 minutes
But in /inetpub/myapp/login I have another application.cfm with an application
If I have a path:
/inetpub/myapp
In /myapp I have an application .cfm in it has a application name of
MYAPPNAME with a sessiontimeout of 30 minutes
But in /inetpub/myapp/login I have another application.cfm with an
application name of MYAPPNAME with a sessiontimeout of 30 minutes
Ahh okay thank you!
- Alex
Original message
From: Dave Watts dwa...@figleaf.com
Date: 07/18/2013 8:29 PM (GMT-05:00)
To: cf-talk cf-talk@houseoffusion.com
Subject: Re: Question about session management
If I have a path:
/inetpub/myapp
In /myapp I have
Has anyone on the list had any experience implementing session
management for LiveCycle Data Services into ColdFusion 9? I am building
an app using CF, Flex LCDS and am trying to find a way to call a few
clean up methods on the CF side when a user disconnects. Unfortunately,
I haven't found
On Dec 23, 2007 11:13 PM, Brad Wood [EMAIL PROTECTED] wrote:
I'll admit, it's nice how well CF simplifies the messy stuff, but messing
with the mutli-server install has a way of dumping you waist-deep with the
unfamiliar (and previously hidden) world of Java.
True. I prefer the multiserver
Hope that helps?
Very much so-- thanks.
I need to find (or make) a big Venn diagram that shows all these
relations...
~Brad
~|
Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to
date
Get the Free
Actually, thank you for the clarification. There are many acronyms in the Java
world that I only partially understand sometimes. JRE, J2EE, JDK, JVM, EAR,
WAR, ANT, JRun, etc...
I'll admit, it's nice how well CF simplifies the messy stuff, but messing
with the mutli-server install has a
)
2) you write your own session management based on cookies
3) you rely on session replication (and, if you're not on CF8, make
sure you don't put CFCs in session scope - and if you are on CF8,
make
sure you don't put arrays in the CFCs that are in session scope -
and
whatever
*opens mouth pours in coffee*
Ok ok I am following now, had to think about cfpresentation for a second and
its making sense.
Adam H
On Dec 21, 2007 7:06 AM, Jochem van Dieten [EMAIL PROTECTED] wrote:
Adam Haskell wrote:
Thats not what I meant but I may not have understand Jochem's original
Adam Haskell wrote:
Thats not what I meant but I may not have understand Jochem's original
statement correctly. My statement was that a switch would route any outgoing
HTTP requests from the cluster node for the cluster back to the same node
(not subsequent incoming requests to the same node).
Thank you for the input Adam.
~Brad
-Original Message-
From: Adam Haskell [mailto:[EMAIL PROTECTED]
Sent: Thursday, December 20, 2007 7:53 PM
To: CF-Talk
Subject: Re: JREE Servers (was Session Management - sticky sessions)
We use clustered CF servers, most sitting behind F5 switches
On Dec 20, 2007 12:26 PM, Brad Wood [EMAIL PROTECTED] wrote:
Can I get a show of hands (off-list probably) from people out there
using any JRE other than JRUN?
JRun is not a JRE. JRun uses whatever JRE (actually JDK) that you've configured.
Same for JBoss, WebSphere, WebLogic etc. You need a
Interesting.
Updater 7, huh? Isn't it about time for JRun 5? :)
~Brad
-Original Message-
From: Matthew Williams [mailto:[EMAIL PROTECTED]
Sent: Wednesday, December 19, 2007 9:22 PM
To: CF-Talk
Subject: Re: JREE Servers (was Session Management - sticky sessions)
But wait! Adobe just
Interesting.
Updater 7, huh? Isn't it about time for JRun 5? :)
~Brad
You'd think. However, JRun is dead as an independent platform. From hence
force forward, no new updates unless CF requires it. Not many care, however ;).
Matthew Williams
Geodesic GraFX
www.geodesicgrafx.com/blog
You'd think. However, JRun is dead as an independent platform. From
hence force forward, no new updates unless CF requires it. Not many
care, however ;).
I see.
There never seems to be an over-abundance of people on the list willing
to answer questions about JRun, let along other J2EE
+1 for Mutli-Instance on JRun
~|
Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to
date
Get the Free Trial
http://ad.doubleclick.net/clk;160198600;22374440;w
Archive:
+1 for Mutli-Instance on JRun
Here as well. Also running clustering.
Matthew Williams
~|
Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to
date
Get the Free Trial
We use clustered CF servers, most sitting behind F5 switches. We do sticky
sessions with Jboss and WebSphere and have session replication with
WebSphere. Not being an admin I like jboss as websphere is not easy to admin
for a non admin type, its also expensive and heavy. You might note though
that
is that if you do not have sticky session, you have to
be able to manage sessions that move between servers at will. That
means that either:
1) you use client scope instead of session scope (with all the
attendant restrictions)
2) you write your own session management based on cookies
3) you rely
between servers at will. That
means that either:
1) you use client scope instead of session scope (with all the
attendant restrictions)
2) you write your own session management based on cookies
3) you rely on session replication (and, if you're not on CF8, make
sure you don't put
All, Do I have this correct?
If your site is running on a cluster, in order to manage session variables
properly,
you want to use the Java option within the CFadmin to manage session variables
cause the sessions will be foreced to use the server that initiated the session
management?
Correct
restrictions)
2) you write your own session management based on cookies
3) you rely on session replication (and, if you're not on CF8, make
sure you don't put CFCs in session scope - and if you are on CF8, make
sure you don't put arrays in the CFCs that are in session scope - and
whatever other restrictions
I'd generally recommend you use an
enterprise J2EE server that does replication in an intelligent way -
i.e., not JRun).
Funny you say that-- I had always assumed that people DID view JRUN as
an enterprise J2EE server. I have always been reticent to move away
from JRUN because I expected CF
session management based on cookies
3) you rely on session replication (and, if you're not on CF8, make
sure you don't put CFCs in session scope - and if you are on CF8, make
sure you don't put arrays in the CFCs that are in session scope - and
whatever other restrictions there are)
No queries either
Funny you say that-- I had always assumed that people DID
view JRUN as an enterprise J2EE server. I have always been
reticent to move away from JRUN because I expected CF to work
more reliably with it and support to be more readily
available. Of course neither of those factors
Thanks for the insight as usual, Dave.
Sean's comment has got me thinking about seriously considering a J2EE
platform other than JRun.
Can anyone find any good resources which juxtapose the features, ease of
use, cost etc of major J2EE players. I Googled for a while and couldn't
turn up much.
But wait! Adobe just released updater 7 for JRun 4. It's supposed to have
vastly improved on the clustering interfacing by reducing a bunch of the
overhead. I'm slated to test this on my shared servers for this coming year.
Matthew Williams
Geodesic GraFX
www.geodesicgrafx.com/blog
On Dec 19, 2007 7:21 PM, Matthew Williams [EMAIL PROTECTED] wrote:
But wait! Adobe just released updater 7 for JRun 4. It's supposed to have
vastly improved on the clustering interfacing by reducing a bunch of the
overhead. I'm slated to test this on my shared servers for this coming year.
Sean,
Any opinions on how JBoss compares against the two?
Mark
On Dec 20, 2007 6:07 PM, Sean Corfield [EMAIL PROTECTED] wrote:
On Dec 19, 2007 7:21 PM, Matthew Williams [EMAIL PROTECTED] wrote:
But wait! Adobe just released updater 7 for JRun 4. It's supposed to have
vastly improved on
hi Bobby Hartsfield,
Could you tell me how to create the structure 'user' as you said.And
where to put it?in Application.cfm file?
I check userID that try to login by cfloop as you has shown,put the
code in Login.cfm page,but error is at cfloop tag.
Could you help me the solution,more clearly.
hi Bobby Hartsfield,
Could you tell me how to create the structure 'user' as you said.And
where to put it?in Application.cfm file?
I check userID that try to login by cfloop as you has shown,put the
code in Login.cfm page,but error is at cfloop tag.
Could you help me the solution,more clearly.
:[EMAIL PROTECTED]
Sent: Thursday, August 02, 2007 3:06 AM
To: CF-Talk
Subject: Re: How to Prevent Simultaneous Login / Session Management
hi Bobby Hartsfield,
Could you tell me how to create the structure 'user' as you said.And where
to put it?in Application.cfm file?
I check userID that try
I know I can prevent any simultaneous logins by simply flagging the account
as logged in when a user logins. However, if the user closes the browser
or is disconnected without properly logging out, how would I go about
allowing them to log back in? Since as far as I know, the server and
database
: Paul Henderson [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 21, 2007 11:11 AM
To: CF-Talk
Subject: How to Prevent Simultaneous Login / Session Management
I know I can prevent any simultaneous logins by simply flagging the account
as logged in when a user logins. However, if the user closes
[mailto:[EMAIL PROTECTED]
Sent: Thursday, June 21, 2007 12:11 PM
To: CF-Talk
Subject: How to Prevent Simultaneous Login / Session Management
I know I can prevent any simultaneous logins by simply flagging the account
as logged in when a user logins. However, if the user closes the browser
If you don't want reuse sessions based on the value in the cookie, or
you want to prevent people who are intentionally trying to log in with
two sessions, kill any existing session that the person may have right
before logging them in with their new session. Keep track of active
sessions in the
able to log
back in before the session ends.
-- Josh
- Original Message -
From: Andy Matthews [EMAIL PROTECTED]
To: CF-Talk cf-talk@houseoffusion.com
Sent: Thursday, June 21, 2007 10:00 AM
Subject: RE: How to Prevent Simultaneous Login / Session Management
You shouldn't have an issue
I know I can prevent any simultaneous logins by simply flagging the account
as logged in when a user logins. However, if the user closes the browser
or is disconnected without properly logging out, how would I go about
allowing them to log back in? Since as far as I know, the server and
database
in without waiting for a
session to timeout...maybe in CF9.
-Original Message-
From: Jim Davis [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 21, 2007 2:38 PM
To: CF-Talk
Subject: Re: How to Prevent Simultaneous Login / Session Management
I know I can prevent any simultaneous logins
If you want the session to end (as far as CF is concerned) on browser
close you will have to trap an event with JS and do an ajax call to
cleanup the session on the server.
On 6/22/07, Paul Henderson [EMAIL PROTECTED] wrote:
Thanks for all the feedback guys, I think the bumping technique
| But on real mobile device(SE, Nokia), it is different.When user
logout
| and select back, it shown the previous page and its content, but no
| session timeout shown. And i found something funny, that is it
| displays previous page without checking session.Does that means
| session not
| It work perfectly on emulator but not on real mobile devices.
| When the user logout and click back on real mobile devices, the
| previous content is viewable and i can see that session is not
working
| through-out the application. It shouldn't be like this. Please
help!!
| Thanks in
| But on real mobile device(SE, Nokia), it is different.When user logout
| and select back, it shown the previous page and its content, but no
| session timeout shown. And i found something funny, that is it
| displays previous page without checking session.Does that means
| session not existing?
I'm using CFML and WML to develop a wap application. I meet the session
management problems.
My application using session management, so when user login, session enabled to
the application, user can view the menu, the content, everything, and click
logout, session clear. When user click back
Dave,
If you use:
cfapplication setclientcookies=Yes
The cookies themselves are permanent which has some consequences for most
applications.
I have in the past come back to an application and found myself still logged
in after being away for a week!
I now use:
cfapplication
Hi,
I'm trying to clarify the expiration time for the Cookie.CFID and
Cookie.CFTOKEN cookies created when a new session starts. Is it the length of
the time that is specified in the sessionmanagement attribute of the
cfapplication tag? If so, is this documented anywhere?
I did find some
I'm almost positive that those two cookies are unexpiring, because
they're used for more than just session management. The session
timeout is performed on the server - after period X, the cookies are
accepted, but not considered to be part of the session any more. If
you le J2EE sessions
cfcookie name=CFID value=#Variables.cfid_local#
cfcookie name=CFTOKEN value=#Variables.cftoken_local#
DK
On 9/12/05, Barney Boisvert [EMAIL PROTECTED] wrote:
I'm almost positive that those two cookies are unexpiring, because
they're used for more than just session management. The session
timeout
Is it possible to detect if session management is enabled in a given
application?
I think I could probably do something like this:
cftry
cfset session.test = 1
cfset variables.sessionEnabled = false
cfcatch type=any
cfset variables.sessionEnabled = true
cfcatch
/cftry
I
Have you tried cfoutput#isDefined(session)#/cfoutput
Rick Root wrote:
Is it possible to detect if session management is enabled in a given
application?
I think I could probably do something like this:
cftry
cfset session.test = 1
cfset variables.sessionEnabled = false
cfcatch type
Kevin Bridges wrote:
Have you tried cfoutput#isDefined(session)#/cfoutput
I did not, but that doesn't work. The session scope is apparently
always defined, you just can't access it.
For example:
cfoutput#isDefined(session)#/cfoutput
cfdump var=#application#
cfdump var=#session#
cfset
You can also tell if session management is on at the server level.
cfset CreateObject(java,
coldfusion.server.ServiceFactory).RuntimeService.isSessionEnabled()
-Original Message-
From: Kevin Bridges [mailto:[EMAIL PROTECTED]
Sent: 27 July 2005 14:38
To: CF-Talk
Subject: Re: detecting
That is neat! Is there a good location to read about additional objects
that are available like that?
cfset ServiceFactory =
CreateObject(java,coldfusion.server.ServiceFactory)
cfdump var=#ServiceFactory#
Robertson-Ravo, Neil (RX) wrote:
You can also tell if session management
management
That is neat! Is there a good location to read about additional objects
that are available like that?
cfset ServiceFactory =
CreateObject(java,coldfusion.server.ServiceFactory)
cfdump var=#ServiceFactory#
Robertson-Ravo, Neil (RX) wrote:
You can also tell if session management
Robertson-Ravo, Neil (RX) wrote:
You can also tell if session management is on at the server level.
cfset CreateObject(java,
coldfusion.server.ServiceFactory).RuntimeService.isSessionEnabled()
Alas, that's not particularly cross platform... ie, doesn't work in
bluedragon. =) I'm working
How would you do this programmatically?
TIA
Tim Heald
Senior Web Developer
TeraTech, Inc.
2003 Winner CFDJ awards Best Consulting Service
Email: [EMAIL PROTECTED]
Voice: 1-301-424-3903 x111
Web: http://www.teratech.com
~|
How would you do this programmatically?
One easy way, offhand:
cftry
cfset Session.isEnabled = true
cfcatch
... Session management isn't enabled - do something!
/cfcatch
/cftry
Alternatively, you might test for the existence of the Session scope - I
: Friday, July 15, 2005 6:05 PM
To: CF-Talk
Subject: RE: Detect if Session Management is enabled?
How would you do this programmatically?
One easy way, offhand:
cftry
cfset Session.isEnabled = true
cfcatch
... Session management isn't enabled - do something
The try/catch method is the only one that seems to work, and
is going to write to error logs right?
No, it won't automatically write to error logs. That's up to you. You can do
that using the CFLOG tag.
Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
Fig Leaf Software provides the
1 - 100 of 223 matches
Mail list logo