Sean, Ray... maybe you clean up my desire to ignore those tags. I'm used to building applications that allow me to assign certain permissions to certain groups. If I start using the "roles" it seems to me that I lose those "down to the breadcrumb" permissions and I'm building CFCs around "Roles" instead of around permissions.
Or... am I thinking about this the wrong way? For example, if I have a CMS app, an author might not be able to publish something, but an editor can. However, if I decided to make a new group (without making a code change) and assign them publishing rights, I can without having to change code. Seems that CFLOGIN is for *really* simple user / role authentication models. Correct me if I'm wrong? Thanks, ~Todd At 11:14 PM 8/16/2002 -0400, you wrote: >Something else to mention as well - the new security framework can be >set to use another application token - this means you can share a login >between multiple apps - but have unique session data for each app as >well. > >======================================================================= >Raymond Camden, ColdFusion Jedi Master for Hire > >Email : [EMAIL PROTECTED] >Yahoo IM : cfjedimaster > >"My ally is the Force, and a powerful ally it is." - Yoda > > > -----Original Message----- > > From: Sean A Corfield [mailto:[EMAIL PROTECTED]] > > Sent: Friday, August 16, 2002 11:07 PM > > To: CF-Talk > > Subject: Re: Single Login - Multiple Apps > > > > > > On Friday, August 16, 2002, at 04:35 , Gyrus wrote: > > > - Once you've authorised the user's login details, set their session > > > variables. > > > > Don't forget the wonderful new CFMX authentication framework: > > cflogin > > cfloginuser > > cflogout > > getAuthUser() > > > > > - Call a tag from inside Application.cfm that checks for > > the existence of > > > a > > > specific session variable that you set for each login - if > > it doesn't > > > exist, > > > use CFLOCATION to redirect them to the login page. > > > > See above - cflogin saves you having to do this! (i.e., you > > don't need to > > mess about with your own session variable checking) The new > > CFMX framework > > also supports 'roles' so you can control which users have > > access to which > > parts of your site... > > > > "If you're not annoying somebody, you're not really alive." > > -- Margaret Atwood Todd Rafferty ([EMAIL PROTECTED]) http://www.web-rat.com/ Team Macromedia Volunteer for ColdFusion http://www.macromedia.com/support/forums/team_macromedia/ Moderator @ FlashCFM.com - http://www.flashCFM.com/ Back-end Moderator @ Ultrashock.com - http://www.ultrashock.com/ ______________________________________________________________________ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
