Hi All Sorry for the slightly off topic post.
I am setting up a login system for my Flex administration tool. I'm using a ColdFusion 8 backend. I've looked into CFlogin but I'm not very keen on it really so I've decided to just use session variables instead. When a user logs in a userVo object is stored in the session variable (and is returned to flex). This object has a roles parameter. My CFCs are all organised into 3 folders - user, admin, superuser. The applciation.cfm in each folder checks the userVO and if it has the correct role allows the call to go ahead. If it has the incorrect role I want to send a meaningful error to the front end. I've got this working with CFabort but I can't send an error message. Is there anything wrong with authenticating people in this way? How do I return an error code and message from application.cfm? Thanks
