asked on

Getting Unique User Info

I'm trying to write an authentication mechanism that will allow a user to log in to a suite of web applications, but only do so once for all the applications.

So in other words, I want to maintain session state between web applications. The best way I can think to do this is to get some sort of unique identifier from each user; a machine code or a browser serial number. Does anyone know how to do this in CF?

mrichmon

The best way is to store a cookie with a client id (ie the CDIF and CFTOKEN) on the user machine and then store al of their variables/info in the client scope.

hart

i think mrichmon has given you the solution, you can just use the cookies to store users value and identify him as a unique one..

Regards
Hart

Remulac

ASKER

Sorry. I forgot to mention that we are not going to use cookies due to security reasons and because the customer can turn them off. This is what makes this solution a little bit tricky.

mrichmon

Even if the cutstomer turns off cookies you can pass the cfid and cftoken through the URL.

Using both methods is the best way to go so that they are stored as memory-only cookies if allowed and in the URL if not.

Remulac

ASKER

How can I pass this information between applications; particularly between CF and .NET apps? CFTOKEN is only for a particular session of a particular application, as far as I know. If the user types a new URL into the address bar that takes them to another application in our suite, how will I get this info into the new app?

CF would have to know when the user is leaving the specified app, and be able to insert the token into the URL that is pointing to the new app.

ASKER CERTIFIED SOLUTION

mrichmon

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial