I use CFLOGIN with CFC roles. This provides for the user/admin/etc scenario and generally suffices for most of our security needs. The authentication is done via LDAP and everything is secured via SSL. Security checking for each page is done with IsUserInRole(), which therefore works with memory.
On 1/7/06, Baz <[EMAIL PROTECTED]> wrote: > Hi, > > I'm curious how people are handling session/user/permission/login management > these days... > > Have most of you implemented your own custom solutions? Do a lot of people > use cflogin? Are people using CFC roles? > > How are people handling checking permissions for each page? Do you check > against data stored in memory? Do you query on each request? Let's say that > there are regular users and admins, how verify which one they are? -- CFAJAX docs and other useful articles: http://jr-holmes.coldfusionjournal.com/ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Message: http://www.houseoffusion.com/lists.cfm/link=i:4:228691 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
