Session variables are set, then immediately disappear. What now?

Hi BKBK,

<cfset session.user = {} /> is a shorter way of doing: <cfset session.user = structNew() /> in CF8. Is this a bad way of doing things?

I wanted to create another struct in the session because it makes more logical sense in most of my code to say something like session.user...and I can have other things like session.pages.

My Application.cfc code is below:

=====================================

<cfcomponent output="false">

<cfsetting enablecfoutputonly="no" />

    <cfprocessingdirective suppresswhitespace="yes" pageencoding="utf-8">
   
        <cfset this.name = hash(now(),"md5","utf-8") />
        <cfset this.applicationTimeout = createTimeSpan(0,0,30,0) />
        <cfset this.clientManagement = true />
        <cfset this.clientStorage = "cookie" />
        <cfset this.loginStorage = "session" />
        <cfset this.sessionManagement = true />
        <cfset this.sessionTimeout = createTimeSpan(0,0,30,0) />
        <cfset this.setClientCookies = true />
        <cfset this.setDomainCookies = true />
        <cfset this.scriptProtect = true />
       
        <cffunction name="onApplicationStart" returntype="boolean" output="true">

            <cfset application.userObject = createObject("component", "cfc.user").init() />
            <cfset application.udfObject = createObject("component", "cfc.udf").init() />
            <cfset application.uploadObject = createObject("component", "cfc.upload").init() />
           
            <cfreturn true />
           
        </cffunction>
       
        <cffunction name="onRequestStart" returntype="boolean" output="true">
       
            <!--- Database Details --->
            <!--- I've taken out sensitive data that is here, like DB tables etc --->
           
            <!--- File Uploads In Bytes --->
            <cfset request.fileUploadLimit = 4194304 />
           
            <!--- Application Authentication --->
            <cflock scope="session" timeout="30" type="exclusive">
                <cfif not isDefined("session.user") and getFileFromPath(cgi.script_name) neq "login.cfm">
                    <cflocation url="#getDirectoryFromPath(cgi.script_name)#login.cfm" addtoken="no" />
                </cfif>
            </cflock>
           
            <!--- Application Logout --->
            <cfif isDefined("url.logout") and url.logout eq "true">
                <cfinvoke component="#application.userObject#" method="logoutUser" />
                <cflocation url="#getDirectoryFromPath(cgi.script_name)#login.cfm" addtoken="no" />
            </cfif>
           
            <!--- Get all items --->
            <cfquery name="variables.getItems" datasource="#request.dsn#" username="#request.username#" password="#request.password#">
            SELECT *
            FROM #request.tbl_items#
            </cfquery>
           
            <cfset request.itemObject = createObject("component", "cfc.item").init(variables.getItems) />
            <cfset request.uiObject = createObject("component", "cfc.ui").init(variables.getItems) />
            <cfset request.positionObject = createObject("component", "cfc.position").init(variables.getItems) />
            <cfset request.messagesObject = createObject("component", "cfc.messages").init() />
            <cfset request.insertObject = createObject("component", "cfc.insert").init() />
            <cfset request.updateObject = createObject("component", "cfc.update").init() />
            <cfset request.selectObject = createObject("component", "cfc.select").init() />

            <cfreturn true />
       
        </cffunction>

        <cffunction name="onRequest" returnType="void" output="true">
            <cfargument name="thePage" type="string" required="true" />
            <cfinclude template="#arguments.thePage#" />
        </cffunction>
       
        <cffunction name="onRequestEnd" returnType="void" output="false">
            <cfargument name="thePage" type="string" required="true" />
            <!--- Ending requests --->
        </cffunction>
       
        <!---
        <cffunction name="onError" returntype="void" output="true">
       
            <cfargument name="Except" required="true" />
            <cfargument name="EventName" type="String" required="true" />

            <cflog file="skyliteCMS_generalExceptions" type="fatal" application="yes" text="Event: #arguments.eventName#." />
            <cflog file="skyliteCMS_generalExceptions" type="fatal" application="yes" text="Message: #except.message#" />

            <cfmail to="#request.adminEmail#" from="Skylite CMS" subject="Skylite CMS Exception" charset="utf-8" type="html" server="#request.adminEmailSMTP#" username="#request.adminEmailUsername#" password="#request.adminEmailPassword#">
                <p>An exception ha occured:</p>
                <p>#except.message#</p>
            </cfmail>
           
            <cfinclude template="error.cfm" />
            <cfabort />
    
        </cffunction>
        --->

        <cffunction name="onSessionStart" returnType="void" output="false">
            <!--- Log database stuff here --->
        </cffunction>
       
        <cffunction name="onSessionEnd" returnType="void" output="false">
            <cfargument name="sessionScope" type="struct" required="true" />
            <cfargument name="appScope" type="struct" required="false" />
            <!--- Log database stuff here --->
        </cffunction>
   
    </cfprocessingdirective>

</cfcomponent>

=============================================

I know some of that code is bad, but I'll sort that one! Just can't understand why the session disappears.

ALSO, I noticed that when I dump out #session#, everytime I refresh the page, sessionid is new every time. Is this normal? Surely we have one ID per session? It seems like it keeps wiping the session every time. Almost like it IS SETTING it but then clearing it at the same time.

Thanks for the help!

Mikey.