Link to home
Start Free TrialLog in
Avatar of GarethABC
GarethABCFlag for United Kingdom of Great Britain and Northern Ireland

asked on

Losing Coldfusion Sessions

Dear All

Over the last few months we have been having issues with our web apps which run on coldfusion.  For some reason the sessions are being lost.  At first we thought it was to do with an update to IE or even using windows 7 but this was soon to be wrong as someone that was having problems logged onto a PC of a user who wasnt having the same problem and still had the error, even though the other user could still use the web app after logging back on after.

We have never had any problems before and nothing has changed in the code as we have moved on to developing our web apps in asp.net for 5 years.

The message we get is


Error resolving parameter SESSION.MANAGER

The session variable MANAGER does not exist. The cause of this error is very likely one of the following things:


The name of the session variable has been misspelled.
The session variable has not yet been created.
The session variable has timed out.

Open in new window



Any ideas?
Avatar of erikTsomik
erikTsomik
Flag of United States of America image

make sure you do not delete session variable somewhere in the code
Avatar of gdemaria
> that was having problems logged onto a PC of a user who wasnt having the same problem and still had the error, even though the other user could still use the web app after logging back on after

It sounds like it is specific to particular users?   User-A has no problem, but user-B has problems on the same computer, is that right?

Does the error happen after a certain period of time or immediately after login or.. ?

Are there any particular actions or pages that it happens on, or does it happen anywhere in the app?

Are you able to reproduce intentionally or is it fairly random?

Thanks,


Avatar of tampatechtiger
tampatechtiger

We had the same issue...we have thousands of users and after, literally, hundreds of hours of testing and monitoring the only thing we could come up with was that something about the individual user platform/network/ISP/etc. was causing a failure of the user's browser-client to associate with the session on the server.  I know...not a very conclusive or exciting answer...but for the solution we used two approaches that worked (nearly) flawlessly.

1. For sites that we had "upgraded" to the new application.cfc (from application.cfm) architecture, we just put in a little piece of code in the "onrequest" method that said "If session.[somevariable] is undefined...kick the user back to the login page.

2. For sites that we had not "upgraded" we just created a little file called "sessioncheck.cfm" that did the same "isdefined" check on the pertinent session variables...and did the same thing.

If your site is not user-authenticated..;you could do a similar thing by just triggering the session variable clear/reload process instead of sending them to the "login" page.

I wish I had a more clear-cut answer for you regarding the root-cause of your issue, but the approach I've noted is effective...albeit a bit unsavory.
Avatar of GarethABC

ASKER

Thanks for all the answers so far

as for deleting sessions, we are not deleting sessions, the apps are old coldfusion apps that have not changed for years and have been working up until the end of last year, so why the sudden change for the sessions to be lost?

It doesnt make sense how one user can logon to the PC and use the Web apps no problems without losing session but another user can logon the same PC and have problems losing the sessions??

All we can think of is that it is something to do with the AD accounts??

We have no intention to upgrade our Coldfusion server etc... and eventually these apps will be re developed into asp.net

Hi, Try going into the administrator and setting the sessions to J2EE
Capture.JPG
Hi ya,  tried looking at that but we have coldfusion 5 :-(


coldfusion.jpg
More investigation and it seems that a user can only be a member of so many AD groups.  If a user is in too many ADgroups for permissions, we get the error message, otherwise all works ok.

ANy ideas?????

Assuming that an "AD Group" is some type of role that you have associated with users, it sounds like it would be in the code.   That would explain why it only happens sometimes and not to all users, only the users that are getting assigned many roles would have this problem.

Are you able to find and post some code that may be relevant to this area?
ASKER CERTIFIED SOLUTION
Avatar of GarethABC
GarethABC
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
never did solve this