-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
>All you have to do is incorporate a check against the request's template
> > directory in your app_globals.cfm or application.cfm to see if the
> request is coming from the /admin/ directory. If it is, you check to see
> if they are authenticated.
>
> <cfif GetDirectoryFromPath(GetBaseTemplatePath()) contains "admin">
> <cfinclude template="check_to_see_if_they_are_authenticated.cfm">
> </cfif>
Right. I guess I wasn't being clear in what I was asking. My question
wasn't about authenticating the users, but with what comes next. I'm
wondering how other people handle delivering different tools to different
levels of users... do they have a lot of conditional processing on each
page, which turns into spaghetting pretty quickly, or do they have four
different fuseactions, each dedicated to a different type of user (assuming
they have four levels of user), or do they just code a separate section of
the site for each kind of user (which wouldn't allow much code reuse).
The question is kind of philosophical, I guess. On the other list I wrote:
I was thinking more along the lines of what happens on the pages
themselves. For instance, let's say I have an application that lists jobs
waiting to be done. Normal users can list the jobs and edit/delete their
own, while admin users can edit/delete anyone's.
Would you optionally include a delete link if the current user is an admin
on that page? Or would the admin user be sent to a different job listing
page altogether?
Of course this is simplistic... when you have three or many levels of
access and a number of functions specific to various groups all on the same
page, the amount of conditional processing can become pretty large. But if
I split the application out so that admins go to an admin job listing, job
editors go to an editor listing and users go to their own listing, I have
an enormous amount of code duplication to contain...
c
-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.8ckt - http://irfaiad.virtualave.net/
Comment: PGP Signed for message verification and/or encryption
Comment: KeyID: 0xD68B61E851046CFD
iQA/AwUBOeAHqdaLYehRBGz9EQL8QwCfRtJVoZHa5rXb1eth4syYqTA7ywwAoInw
mpZI/eZxEH5K3QVHdJ3Ts6sY
=FAEP
-----END PGP SIGNATURE-----
------------------------------------------------------------------------------
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/fusebox or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
