Updating a variable in a session query

Question

I'm looking for some help into resetting a session query variable in coldfusion.I'm currently implementing a lock account after 10 tries to a login form and I'm struggling to reset the number of failed tries once a user successfully logs in.public function getLoginFails(required String Username, required String App){
  
   getLoginFailsQuery = new Query();
   getLoginFailsQuery.setDatasource(this.datasource)
   getLoginFailsQuery.addParam(username)
   getLoginFailsQuery.addParam(ip)
   getLoginFailsQuery.addParam(application)
   getLoginFailsQuery.setSQL(data inserted into db)

session.numFails = getloginFailsQuery.execute().getResult();

if(session.numFails.count < 10){
     return session.numFails.count;
   }else if(session.numFails.count == 10){
       run a query to update accountLocked to = 1; 
   }
} The above part works fine (I know some stuff is missing from the addparams() etc). It updates to 1 if 10 attempts and stores the tries in a session. session variable showingMy issues is resetting the variable when a successful login has occurred.session.numFails.count = 0 doesn't work, am I missing something?

BKBK · Answer

I would solve the problem using the principle of separation-of-concerns. Session.numFails and session.numFails.count are query properties. So I wouldn't use them directly in login-validation code.

Instead, I would define a new variable for that purpose.

Oh, and remember to "var" the variables in a function.

All in all, something like:

public function getLoginFails(required String Username, required String App){
  
   var getLoginFailsQuery = new Query();
   getLoginFailsQuery.setDatasource(this.datasource)
   getLoginFailsQuery.addParam(arguments.username)
   /* Where does ip come from? */
   getLoginFailsQuery.addParam(ip)
   /* Do you mean arguments.app in place of application? */
   getLoginFailsQuery.addParam(application)
   getLoginFailsQuery.setSQL(data inserted into db)

   session.numFails = getloginFailsQuery.execute().getResult();
   session.failureCount = session.numFails.count;
   if(session.failureCount < 10){
     return session.failureCount;
   }else if(session.failureCount == 10){
       run a query to update accountLocked to = 1; 
   }
}

When a successful login has occurred, reset session.failureCount to 0.

Sign up

To post, reply, or follow discussions, please sign in with your Adobe ID.

Sign in to Adobe Community

To post, reply, or follow discussions, please sign in with your Adobe ID.

Scanning file for viruses.

This file cannot be downloaded