On Wed, 13 Oct 2004 02:41:58 -0500, Precia Carraway <[EMAIL PROTECTED]> wrote: > http://livedocs.macromedia.com/coldfusion/6/Developing_ColdFusion_MX_Applications_with_CFML/webservices5.htm > Controlling access to component CFC files > To browse the HTML description of a .cfc file, you request the file by > specifying a URL to the file in your browser. By default, ColdFusion secures > access to all URLs that directly reference a .cfc file, and prompts you to > enter a password upon the request. Use the ColdFusion RDS password to view > the file.
That only protects against users referencing the component browser. It doesn't stop them using the CFCs already instantiated into server scope. You could secure the methods with roles but that would require that all your apps were permanently "logged in"... -- Sean A Corfield -- http://www.corfield.org/ Team Fusebox -- http://www.fusebox.org/ Got Gmail? -- I have 2 invites "If you're not annoying somebody, you're not really alive." -- Margaret Atwood ---------------------------------------------------------- You are subscribed to cfcdev. To unsubscribe, send an email to [EMAIL PROTECTED] with the words 'unsubscribe cfcdev' in the message of the email. CFCDev is run by CFCZone (www.cfczone.org) and supported by Mindtool, Corporation (www.mindtool.com). An archive of the CFCDev list is available at www.mail-archive.com/[EMAIL PROTECTED]
