Hi there,
I have a curious problem on our Commerce Server 2002 installation.
The situation is this:
We use Commerce Server to handle a large amount of orders for products.
In order to secure that a users is serious about an order, we send an
e-mail
with a link, which he/she has to click in order to confirm his/her order.
Now, for some users this link doesn't work and therefore we have set up
the
following arrangement:
We have a number of controllers who can access users' accounts.
If a user cannot use the link, a controller logs in to the system and
changes the user's login and e-mail to his own e-mail address.
The controller then clicks the link in the e-mail to confirm the order.
Finally, the controller changes the login and e-mail back to the user's
original settings
The curious part about this is:
When a controller has done this for one user and does it again for a new
user, he suddenly has the ability to press F5 in the "Edit profile" and
thereby switching between the users he has been changing over time.
My guess is that AuthTicket somehow holds all the information the
controller
has ever accessed. Is it possible to somehow erase this information?
Many thanks in advance,
Maria
|
