Re: Application.cfm...

[Robert Shaw]

We use the application page to check log ins for a session variable. We place code in the application page to actually look at the page. If the page name is login.cfm, then we don't run the security check, otherwise it runs.   <cfset varMyPage=#getfilefrompath(GetBaseTemplatePath())#>   <cfif varMypage neq "login.cfm"> ''''''''Check your security here'''''''''''''' </cfif>     We also have some nice _javascript_ that pops up a security page after a predetremined lenght of time. The use can log back in and they never lose their place in the website. If the log in fails, it shuts down the broser.     Robert ----- Original Message ----- From: Alford, Gary L To: DFW ColdFusion Users Group (E-mail) Sent: Tuesday, January 11, 2005 8:02 AM Subject: Application.cfm... Is there a way to set up my Application.cfm file that will check to see if a user is logged in and, if not, redirect the URL to the main log in page for users who try to "back door" into the system?  Currently, I am performing a check on the definition of a valid security level on each and every page.  But I thought there might be an easier way.   Any suggestions would be greatly appreciated. Gary L. Alford Manufacturing Operations Project Specialist Bell Helicopter XWorx Phone: (817) 280-6233     Fax: (817) 278-6233 [EMAIL PROTECTED] I have not failed.  I've found 10,000 ways that won't work.           Thomas A. Edison