someone over there doing something similar.
[EMAIL PROTECTED]
<mailto:[EMAIL PROTECTED]>
-----Original Message-----
From: Rick Root [mailto:[EMAIL PROTECTED]
Sent: Tuesday, December 23, 2003 2:18 PM
To: CF-Talk
Subject: Web services and cookies/session vars/etc
I'm buildiing a flash application with cold fusion web services.
I have two components for this... one handles authentication to our DB2
mainframe, and the other handles all the data.
In my flash app I have a number of list boxes that are populated with data.
I don't want my web service to expose this data to unauthorized users,
so I'm passing the username and password to the service each time, and
each method re-authenticates the user.
Unfortunately, this authentication process takes anywhere from 3-7
seconds ... each method invokes the authorization component, which in
turn CFHTTPs a perl script which handles the authorization and returns
success/failure and failure reason if applicable.
This is not particularly desirable =)
I know that accessing a CFC as a web service causes the application.cfm
to run, but I don't think sessions or cookies are available.
What I'd really like is for the user to be authenticated ONCE... I was
thinking of having the authentication component create a unique key
(like a UUID) and pass it back to the application, then have the
application pass it back to the methods to retrieve the data.. the
methods would then make sure the key was valid and current.
It looks to me like the only way to do this would be to store it in a
database (key, datecreated)... if I did this I would store the keys in a
local database rather than the DB2 mainframe for speed...
But... is there a better way?
Thanks
- Rick
_____
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
