Here's what I do. Its kind of a roundabout way, but it works for me:
on loign create a session variable.
in the application .cfm file do the following:
<cfif not isDefined("Session.sessionStarted")
<cfset notLoggedIn="true">
</cfif>
<cfif isDefined("notLoggedIn")>
<cfset path=getDirectoryFromPath(#cgi.cf_template_path#)>
<cfif (cgi.cf_template_path IS NOT #path#login.cfm) and
(cgi.cf_template_path IS NOT #path#logincheck.cfm)>
<cfinclude tempalte="login.cfm">
<cfabort>
</cfif>
</cfif>
----- Original Message -----
From: "Jon Tillman" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, August 11, 2000 14:25
Subject: password protection
> 'lo all,
> I have a directory that holds administrative pages for my client database,
and
> need to secure it (obviously). What is the best way to go about doing that
so
> that one cannot call the modules in that directly, circumventing and
/login
> module...
>
> --
> ***********************************************
> Jon Tillman
> LINUX USER: #141163
> ICQ: 4015362
> [EMAIL PROTECTED]
> ***********************************************
> Help Jon build a network!
> Looking for giveaway computers & parts
> I want whatever you have
> Will pay postage
> ***********************************************
>
> --------------------------------------------------------------------------
----
> Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
> To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or
send a message to [EMAIL PROTECTED] with 'unsubscribe' in
the body.
>
------------------------------------------------------------------------------
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
