Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Roles don't refresh after log out

Posted on 2004-05-03
5
168 Views
Last Modified: 2013-12-24
I have a cflogin-based application.  I have a typical setup with the suggested cflogin structure in the web application construction kit and in the CFdocs.  I have a user interface that allows an admin to update a user's roles.  The problem is that when a user logs in after the roles have been updated, they still have access to all the pages they did before.  How can I make the CF application server requery roles every time a user logs in?  
0
Comment
Question by:OmegaProgrammer
5 Comments
 
LVL 17

Expert Comment

by:anandkp
ID: 10977019
well i guess this is a browser cache issue

purge ur browser cache & chk again - it shld !
0
 
LVL 35

Expert Comment

by:mrichmon
ID: 10978707
If you are storing the information in  cookies then you may need to clear the user cookies and re-write them.
0
 

Author Comment

by:OmegaProgrammer
ID: 10980967
Well I'm storing the login information in the cfloginuser structure and using the IsUserInRole function.  I assumed that when I ran the cflogout command that it would clear it, but apparently it doesn't.  Any suggestions?
0
 
LVL 35

Accepted Solution

by:
mrichmon earned 500 total points
ID: 10981376
From the cold fusion web app construction kit:

"Behind the scenes the <cflogin> framework sets a cookie on the browser machine to remember the user has logged in"

So it is possible that the cookie is not getting cleared.

Additionally you may want to try using the optional attribute IDLETIMEOUT="seconds"

The default is 1800 seconds (30 min).  You could try setting this to 300 (5 min) and see what happens....
0
 
LVL 2

Expert Comment

by:LeaperJPD
ID: 10991334
I think this would be related to the session variables / etc. that coldfusion uses.  Stuff this code into the onrequestend.cfm template for the application in question.

 <cfif IsDefined("cookie.CFID")>
 <cfcookie name="CFID" value="#cookie.CFID#">
</cfif>
<cfif IsDefined("cookie.CFToken")>
 <cfcookie name="CFToken" value="#cookie.CFToken#">
</cfif>

or just put that code at the end of each page where you expect the user to log out, but DO NOT use it after a cflocation or it won't work.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Troubleshoot mediawiki <-> ActiveDirectory authentication 2 131
wordpress limitations 4 124
System Analysis 5 61
Ways to assess https/ssl websites 3 103
Introduction This article explores the design of a cache system that can improve the performance of a web site or web application.  The assumption is that the web site has many more “read” operations than “write” operations (this is commonly the ca…
Lease-to-own eliminates the expenditure of hardware replacement and allows you to pay off the server over time. Usually, this is much cheaper than leasing servers. Think of lease-to-own as credit without interest.
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question