Three comments: 1. Frames suck! 2. <cflogin> is great! 3. Make sure your login page is outside the Application.cfm's directory. If it is inside, you will get a continuous loop. You could also put your login page inside your Appication.cfm. I learned this on my first security implementation!
See you at the meeting tonight! Thanks, Joe Kelly -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Tuesday, January 11, 2005 12:30 PM To: [email protected] Subject: RE: Application.cfm... Would have to see more of your structure. If the sesssion times out are you simply re-directing to a log in page? Is your actual index.cfm page a frame? Robert ---- Original Message ---- From: [EMAIL PROTECTED] To: [email protected], Subject: RE: Application.cfm... Date: Tue, 11 Jan 2005 10:52:58 -0600 >I am having a problem with this code. If I plug this code into my >Application.cfm file, I run in to a continuous loop. The index page >that I >have got relies on frames. With this code, the header and body >frames load >fine. However, the navigation frame tries to load the entire page >within >itself, then, again within itself, and within itself, etc. > > > _____ > >Gary L. Alford >Manufacturing Operations Project Specialist >Bell Helicopter XWorx >Phone: (817) 280-6233 Fax: (817) 278-6233 >[EMAIL PROTECTED] ><mailto:[EMAIL PROTECTED]> > >I have not failed. I've found 10,000 ways that won't work. > Thomas A. Edison > _____ > > >-----Original Message----- >From: Robert Shaw [mailto:[EMAIL PROTECTED] >Sent: Tuesday, January 11, 2005 9:51 AM >To: [email protected] >Subject: Re: Application.cfm... > > >We use the application page to check log ins for a session variable. >We >place code in the application page to actually look at the page. >If the page name is login.cfm, then we don't run the security check, >otherwise it runs. > ><cfset varMyPage=#getfilefrompath(GetBaseTemplatePath())#> > ><cfif varMypage neq "login.cfm"> >''''''''Check your security here'''''''''''''' ></cfif> > > >We also have some nice javascript that pops up a security page after >a >predetremined lenght of time. The use can log back in and they never >lose >their place in the website. If the log in fails, it shuts down the >broser. > > >Robert > >----- Original Message ----- >From: Alford, Gary L <mailto:[EMAIL PROTECTED]> >To: DFW ColdFusion Users Group (E-mail) <mailto:[email protected]> >Sent: Tuesday, January 11, 2005 8:02 AM >Subject: Application.cfm... > >Is there a way to set up my Application.cfm file that will check to >see if a >user is logged in and, if not, redirect the URL to the main log in >page for >users who try to "back door" into the system? Currently, I am >performing a >check on the definition of a valid security level on each and every >page. >But I thought there might be an easier way. > >Any suggestions would be greatly appreciated. > > _____ > >Gary L. Alford >Manufacturing Operations Project Specialist >Bell Helicopter XWorx >Phone: (817) 280-6233 Fax: (817) 278-6233 >[EMAIL PROTECTED] ><mailto:[EMAIL PROTECTED]> > >I have not failed. I've found 10,000 ways that won't work. > Thomas A. Edison > _____ > > > > > ---------------------------------------------------------- To post, send email to [email protected] To unsubscribe: http://www.dfwcfug.org/form_MemberUnsubscribe.cfm To subscribe: http://www.dfwcfug.org/form_MemberRegistration.cfm ---------------------------------------------------------- To post, send email to [email protected] To unsubscribe: http://www.dfwcfug.org/form_MemberUnsubscribe.cfm To subscribe: http://www.dfwcfug.org/form_MemberRegistration.cfm
