Albee_J
asked on
ColdFusion using Query String parameters
I have attached the instructions for a form I am working on. I understand how to pass the string for validation, but what I don't know is how to hide the results from the user and then append the information to another string that the user would see (below):
<cfoutput><a href="http://print.redleafdigital.com/fma/login.aspx?key=#Sesson.Key#">Customized Holiday Cards</a></cfoutput>
SSO.pdf
<cfoutput><a href="http://print.redleafdigital.com/fma/login.aspx?key=#Sesson.Key#">Customized Holiday Cards</a></cfoutput>
SSO.pdf
The SSO.pdf is a bit strange because the examples do have typos and use the same string as auth= key and the session key.
From the description I read that the session key is generated for every use as a new key and valid only for one ´session authentication. Therefore there is no need to hide the Session key.
Big care is to keep the auth= key secret but that auth key handling has NOT to go to browser. It has to be handled completely on ColdFusion side.
From the description I read that the session key is generated for every use as a new key and valid only for one ´session authentication. Therefore there is no need to hide the Session key.
Big care is to keep the auth= key secret but that auth key handling has NOT to go to browser. It has to be handled completely on ColdFusion side.
ASKER
Thanks for the information Zvonko:
What I am stuck on is how to grab the returned auth key and store it as a session variable that can be used to redirect the user.
See my code below. (note I have hidden our key information etc)
What I am stuck on is how to grab the returned auth key and store it as a session variable that can be used to redirect the user.
See my code below. (note I have hidden our key information etc)
<!---Digital Storefront Code--->
<cfif IsDefined('Sesson.AuthKey')>
<cflocation addtoken="no" url="http://print.redleafdigital.com/***/login.aspx?key=#Sesson.AuthKey#">
<cfelse>
<dd class="bodytext"><img src="../SiteImages/new.gif" alt="New" width="37" height="24" hspace="2"><cfoutput><a href="http://print.redleafdigital.com/***/SSO.aspx?user=#Session.SuNameKey#&company=**auth=****-****-**-****-****">Customized Holiday Cards</a></dd>
</cfoutput>
</cfif>
<!---End Digital Storefront Code--->
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Excellent, Thank you!
Not sure what you are doing, but perhaps you need hidden variables:
<input type="hidden" name="myFieldName" value="#url.theFieldName#"