You can use it for flash remoting web services, i believe, where you don'tThat is certainly a good point. However, I believe most people are building facades for their RIAs, so it would be simply enough to pass an authentication token as a parameter to the method. Again, my point is that is very few applications that will make use of the roles attribute effectively, which is why I wonder if it is worth being there considering the potential for problems it could cause e.g. not all securing all methods.
have the opportunity to secure at any other level. Put your CFLOGIN tag in
Application.cfm, and then use the roles attribute to control access. I've
never done it personally, but I believe you can set it up that way.
Matt Liotta President & CEO Montara Software, Inc. http://www.MontaraSoftware.com (888) 408-0900 x901
----------------------------------------------------------
You are subscribed to cfcdev. To unsubscribe, send an email
to [EMAIL PROTECTED] with the word 'unsubscribe cfcdev' in the message of the email.
CFCDev is run by CFCZone (www.cfczone.org) and supported by Mindtool, Corporation (www.mindtool.com).
An archive of the CFCDev list is available at www.mail-archive.com/[EMAIL PROTECTED]
