From: "Conan Saunders" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Tuesday, February 10, 2004 3:02 PM
Subject: RE: serving non-CFM files w/ Cold Fusion
> That seems closer to what I want but is not quite ideal (ideal being all
> requests within a particular directory are handled by the CF server,
> regardless of the file type or whether the file exists).
>
> If I understand everything correctly, the main drawback I see with that
> idea is that if you are not already logged in and attempt to access any
> file (CFM or otherwise) in the protected directory, you would get the IIS
> login box rather than a redirect to your CF login page, and you could not
> authenticate on the IIS login because the only account would be the
> internal cfsessionuser account.
There are also third-party ISAPI filters you can add to your application that
will authenticate against, for instance, an ODBC database. Then I think
you'd want to scrap the CF authentication altogether so that you don't force
users to login to two different authentication systems. And you won't have
to worry about using CF to serve up the text, pdf, graphic files.
For example:
http://www.iismods.com/iis-authentication/
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
