What specifically are you trying to do?
I just created a new sandbox and restricted the CFObject tag using the
following code:
<!--- Connect to the Admin API and log in --->
<cfset adminObj =
createObject("component","cfide.adminapi.administrator").login("password") />
<!--- If logged in --->
<cfif adminObj>
<!--- Connect to the security CFC --->
<cfset myObj = createObject("component","cfide.adminapi.security") />
<!--- Create Sandbox --->
<cfset myObj.setSecuritySandbox("c:/andy")>
<!--- Disable CFObject --->
<cfset myObj.setDisabledCFTag("c:/andy","cfobject") />
<!--- Return my new sandbox, which shows CFObject disabled --->
<cfdump var="#myObj.getSecuritySandboxes("c:/andy")#">
Is this the sort of information you were after? The key to it is
putting the security.cfc through getMetaData()
Andy
On 20/09/05, zhou yu <[EMAIL PROTECTED]> wrote:
> hi
>
> I am working on the setSecuritySandbox method of security.cfc in CFAdmin
> API. It takes an array of stucture which define the sandbox security
> rules. An complete example as following (by dump a sandbox)
>
> 1
> struct
> ACTION [empty string]
> CLASS java.io.SerializablePermission
> TARGET *
> 2
> struct
> ACTION read,write
> CLASS java.util.PropertyPermission
> TARGET *
> 3
> struct
> ACTION [empty string]
> CLASS java.net.NetPermission
> TARGET *
> 4
> struct
> ACTION [empty string]
> CLASS java.sql.SQLPermission
> TARGET *
> 5
> struct
> ACTION [empty string]
> CLASS java.security.SecurityPermission
> TARGET *
> 6
> struct
> ACTION connect,resolve
> CLASS java.net.SocketPermission
> TARGET *
> 7
> struct
> ACTION [empty string]
> CLASS java.lang.RuntimePermission
> TARGET *
> 8
> struct
> ACTION [empty string]
> CLASS java.lang.reflect.ReflectPermission
> TARGET *
> 9
> struct
> ACTION [empty string]
> CLASS coldfusion.sql.DataSourcePermission
> TARGET *
> 10
> struct
> ACTION [empty string]
> CLASS coldfusion.tagext.GenericTagPermission
> TARGET *-cfexecute,cfftp,cfpop,cfregistry,cfdirectory
> 11
> struct
> ACTION [empty string]
> CLASS coldfusion.runtime.FunctionPermission
> TARGET *
> 12
> struct
> ACTION read,write,execute,delete
> CLASS java.io.FilePermission
> TARGET e:\wwwroot\
> 13
> struct
> ACTION [empty string]
> CLASS coldfusion.tagext.lang.ModulePermission
> TARGET *
> 14
> struct
> ACTION read,write,execute,delete
> CLASS java.io.FilePermission
> TARGET e:\wwwroot\-
> 15
> struct
> ACTION read,write,execute,delete
> CLASS java.io.FilePermission
> TARGET e:\wwwroot\
> 16
> struct
> ACTION read,write,execute,delete
> CLASS java.io.FilePermission
> TARGET e:\wwwroot\-
>
> I am searching for information on what class is avaliable in the sandbox
> security and what they do,what action and target they take, what is their
> use. So I would know to define my sandbox security rules.
>
> However, I have no luck so far by finding it on the Macromedia
> documentation. Any guru can point me a direction? Thanks
>
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
Logware (www.logware.us): a new and convenient web-based time tracking
application. Start tracking and documenting hours spent on a project or with a
client with Logware today. Try it for free with a 15 day trial account.
http://www.houseoffusion.com/banners/view.cfm?bannerid=67
Message: http://www.houseoffusion.com/lists.cfm/link=i:4:218675
Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4
Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4
Unsubscribe:
http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
