> > It sounds like you are saying, I want to protect a > subfolder, but not > > a root folder. It also sounds like you will have multiple > sub folders > > to protect, each folder protected by roles. So, yes, your ROOT > > application.cfm should contain a cfapplication tag and > cflogin block, > > this will enable all subfolders to share the same cflogin > and session > > scope. > > > > Exactly. And I can pass session information to the > application.cfm below, and use THAT one to maintain security > on the directory I'm looking to "protect". (/lower)
You don't have to 'pass' anything. If your application.cfm in the lower dir cfincludes the one above, you automatically are part of the same application. > If that's the case, and I write code that 1. Checks for a > session, and 2. if one doesn't exist, reroute to the upper, > index page, I can place that code in the application.cfm file > of the lower, protected directory, and each subdirectory > UNDER that directory will look up until it gets to an > application.cfm (which in this case will reside in my > "protected" /lower > directory) thereby making that protected directory and all > subdirectories secure. Correct? Err, yes, if I read you right. :) ======================================================================= Raymond Camden, ColdFusion Jedi Master for Mindseye, Inc Member of Team Macromedia (http://www.macromedia.com/go/teammacromedia) Email : [EMAIL PROTECTED] Blog : www.camdenfamily.com/morpheus/blog Yahoo IM : morpheus "My ally is the Force, and a powerful ally it is." - Yoda ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/cf_lists/index.cfm?method=subscribe&forumid=4 FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Get the mailserver that powers this list at http://www.coolfusion.com Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
