RE: ColdFusion Windows Authentication
You can still get to that information from the client (IE) if security settings on the browser is adjusted: http://www.perlmonks.org/?node_id=396274 Not the password though.. Helge -Original Message- From: Jason Fisher [mailto:ja...@wanax.com] Sent: 5. februar 2010 17:33 To: cf-talk Subject: Re: ColdFusion Windows Authentication Right, what Dave said. If the website is set to allow Anonymous Access, then the CGI vars that are tracked by the web server will not be set. From: Dave Watts dwa...@figleaf.com Sent: Friday, February 05, 2010 11:23 AM To: cf-talk cf-talk@houseoffusion.com Subject: Re: ColdFusion Windows Authentication When I was dumping the CGI variables on the page most of them were empty, including auth_password and auth_user and from what I've read CGI variables are read-only so how do these get set? They get set by the web server, when a user authenticates against that web server using HTTP Basic or NTLM Authentication. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ http://training.figleaf.com/ Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on GSA Schedule, and provides the highest caliber vendor-authorized instruction at our training centers, online, or onsite. ~| Want to reach the ColdFusion community with something they want? Let them know on the House of Fusion mailing lists Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:330450 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: ColdFusion Windows Authentication
I think some important questions are : how are you calling the SRS system? Is there a hyperlink straight to the report, or are you expecting the report to come back through the CF front-end? Is the client logged into the machine using domain credentials when the request is made to the SRS? - Matt Small Right, what Dave said. If the website is set to allow Anonymous Access, then the CGI vars that are tracked by the web server will not be set. When I was dumping the CGI variables on the page most of them were empty, including auth_password and auth_user and from what I've read CGI variables are read-only so how do these get set? They get set by the web server, when a user authenticates against that web server using HTTP Basic or NTLM Authentication. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ http://training.figleaf.com/ Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on GSA Schedule, and provides the highest caliber vendor-authorized instruction at our training centers, online, or onsite. ~| Want to reach the ColdFusion community with something they want? Let them know on the House of Fusion mailing lists Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:330451 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
re: ColdFusion Windows Authentication
Can you pass cgi.auth_user and cgi.auth_password into the SSRS call in some way? ~| Want to reach the ColdFusion community with something they want? Let them know on the House of Fusion mailing lists Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:330416 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: ColdFusion Windows Authentication
Have you looked into LDAP? Thanks, Eric Cobb http://www.cfgears.com ColdFusion - the most profitable dead language I've ever worked with. Craig Brown wrote: I'm developing an application that will hopefully interact with SQL Server Reporting Services 2005 so that when the user clicks a link to generate a report it will connect to the reporting services and produce the report. The reporting services uses Windows Authentication and trying to connect to it has me at a loss! I've been reading up about CGI.REMOTE_USER but all the results I've read tend to be about doing it the other way about. At the moment whenever the 'generate report' link is clicked a login prompt appears and once valid login details are entered the report is produced but what I require is to get rid of the login prompt but still pass in the login credentials somehow. Has anyone had any experience with anything like this or have any ideas? Thanks Craig ~| Want to reach the ColdFusion community with something they want? Let them know on the House of Fusion mailing lists Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:330417 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: ColdFusion Windows Authentication
When I was dumping the CGI variables on the page most of them were empty, including auth_password and auth_user and from what I've read CGI variables are read-only so how do these get set? Thanks ~| Want to reach the ColdFusion community with something they want? Let them know on the House of Fusion mailing lists Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:330427 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: ColdFusion Windows Authentication
When I was dumping the CGI variables on the page most of them were empty, including auth_password and auth_user and from what I've read CGI variables are read-only so how do these get set? They get set by the web server, when a user authenticates against that web server using HTTP Basic or NTLM Authentication. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ http://training.figleaf.com/ Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on GSA Schedule, and provides the highest caliber vendor-authorized instruction at our training centers, online, or onsite. ~| Want to reach the ColdFusion community with something they want? Let them know on the House of Fusion mailing lists Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:330428 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: ColdFusion Windows Authentication
Right, what Dave said. If the website is set to allow Anonymous Access, then the CGI vars that are tracked by the web server will not be set. From: Dave Watts dwa...@figleaf.com Sent: Friday, February 05, 2010 11:23 AM To: cf-talk cf-talk@houseoffusion.com Subject: Re: ColdFusion Windows Authentication When I was dumping the CGI variables on the page most of them were empty, including auth_password and auth_user and from what I've read CGI variables are read-only so how do these get set? They get set by the web server, when a user authenticates against that web server using HTTP Basic or NTLM Authentication. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ http://training.figleaf.com/ Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on GSA Schedule, and provides the highest caliber vendor-authorized instruction at our training centers, online, or onsite. ~| Want to reach the ColdFusion community with something they want? Let them know on the House of Fusion mailing lists Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:330430 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
