you're better off writing a custom system to handle it. Now that you have
UDFs and CFCs at your disposal for the actual structure, it's quite simple
if you have a good understanding of the security model and how to a build
database to store it.
I've tried to use the CFMX security framework several times (all legitimate
attempts, taking the time to read the docs, run some samples, etc), and
every time I've come to the conclusion that it's not very useful except for
very simple security systems. And even then, you're probably still better
of building a more complete system, and just dumbing it down at the UI
level, because applications have a tendancy to grow and require more
advanced security as time goes on.
Even if you do opt to go with the built-in CFMX security, I'd definitely
recommend wrapping all the functionality in a application-scope CFC. That
way, when you decide that the app has outgrown the framework, you can
transparently substitute in a new mechanism simply by changing that one CFC.
Cheers,
barneyb
> -----Original Message-----
> From: Jeff Chastain [mailto:[EMAIL PROTECTED]
> Sent: Monday, March 08, 2004 12:02 PM
> To: CF-Talk
> Subject: Re-evaluate CFMX Security
>
> I have always written my own custom security methods for
> login access to an
> application. I have read several articles about the cflogin
> etc. tags in CFMX
> and thought I would give them another look.
>
> The project I am currently working on has the concept of
> rights as well as
> permissions. For example, a user might have the right to
> upload a document, but
> it will depend on the parent folder's permissions as to where
> the user can
> actually upload the document.
>
> With the CFMX tags, there appears to be a 'role' concept, but
> I am having
> trouble figuring out how to wrap these tags around this
> concept. I am probably
> making this way to difficult, so if anybody has any
> experience, I would
> appreciate it.
>
> Thanks
> -- Jeff
>
> -------------------------------------------------
> This mail sent through IMP: http://horde.org/imp/
>
>
>
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
