Also note - that if you are assigning your Admin - "roles" or "Access
rights" you can compare set what content that level Admin has rights to.
On my sites - I have two DB tables - Admin and Users. I separate them. And
ONLY Admin can login to the Admin pages.
And for Admin - I assign "Access Rights" - - So - you could for example have
admin who can "Update the site" and other Admin who can "Check online
orders" - but neither can do both. Or you can have a "Master Admin" - that
can do both.
So, using Adrian's example - in the "login-check.cfm" - you would see if
they are logged in. If they are - run a query to see what their Admin Role
is - and set a Session Variable for that. <cfset SESSION.AdminRole = "Dork">
And then on the pages only for "Dorks" - you can place:
<cfif SESSION.AdminRole NEQ "DORK">
Error or redirect
<cfelse>
Show page
</cfif>
Although I prefer:
<cfif SESSION.AdminRole NEQ "DORK">
<cflocation url="error.cfm?error=RoleViolation">
</cfif>
That way the page isn't wrapped in an IF statement.
- Nick
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to
date
Get the Free Trial
http://ad.doubleclick.net/clk;207172674;29440083;f
Archive:
http://www.houseoffusion.com/groups/cf-newbie/message.cfm/messageid:4448
Subscription: http://www.houseoffusion.com/groups/cf-newbie/subscribe.cfm
Unsubscribe:
http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.15
