cflocation addtoken yes or no?

Question

I use <cflocation> tags in a number of places on my
site. Each time they add the CFID and CFTOKEN in the url. I
understand this is because the addtoken default is "yes".
I'd like to set them to addtoken="no" so the url looks
cleaner.
Is there any reason I shouldn't do this? What are the
downsides of having addtoken="no"?
Thanks!

Newsgroup_User · Accepted Answer

jeremy@noble wrote:> Yes, our site requires cookies, and we assume people areusing them. So if they are using them then there should be nochange in the way sessions are managed, right?Nope, no change, and you would actually eliminate apossibility of cross session sharing where people email or create web page linkswith the cfid and cftoken values in it.

Newsgroup_User · Answer

jeremy@noble wrote:> Is there any reason I shouldn't do this? What are thedownsides of having > addtoken="no"?You can't have a cookieless website. I.E. if you go with themodern default of using/requiring cookies you will be fine.

Sign up

To post, reply, or follow discussions, please sign in with your Adobe ID.

Sign in to Adobe Community

To post, reply, or follow discussions, please sign in with your Adobe ID.

Scanning file for viruses.

This file cannot be downloaded