LukeDD wrote:
> If this is the case, If multiple users are
> on the application, the cf server cannot get mixed up in
the sessions, can it?
The CF server tells multiple users apart by the cfide &
cftoken cookie
values. It is possible for an application to mishandle these
cookies
and cause sessions to be mixed up. In the old days, some poor
quality
proxy servers would do this. They would cache cookies at the
proxy and
cause all users passing through them to use the same values.
This does bring up the point that users with cookies disabled
or blocked
will not have session state maintained when they use the
application.
CF will detect no cookies and generate a new set, rebuilding
the session
scope, every time a request is received from such a user.