Hi,
my website and shared ssl use different servers (my site is hosted). Can
someone tell me for sure if ajax can work with shared ssl. When I try to use
ajax with shared ssl I get a security type error. I could have sworn that this
had been working fine, but now I get an error. I am wondering
Are you saying your HTML is NOT on the Shared SSL and your Ajax resource
is? If so, you're going to run into the cross domain security issue. You
can use JSON/P or CORS to get around it.
Hi,
my html Ajax resource is not on the same server as the shared ssl server.
This is what I got back
OK,
I got it to work using a widget called AjaxRequest that I read about in the
book Ajax Design Patterns. Thanks for the assistance.
~|
Order the Adobe Coldfusion Anthology now!
Just tried your suggestion, but cfid cftoken gets set with an expires time
based on the Session Cookie Settings in the CF10 Administrator (minimum
setting is 2 minutes) that setting cannot be disabled it cannot be
overridden. However, that setting can be overridden by other cookies, such as
OK, thanks, I will have to read up on this. What a pain it is to upgrade. Heres
another link:
http://help.adobe.com/en_US/ColdFusion/10.0/Developing/WSe61e35da8d3185183e145c0d1353e31f559-7ffc.html
I'm not sure why Adobe is still using Application.cfm in there examples, aren't
they aware
OK, finally figured it out through trial and error. Did not find (complete)
documentation that explained how to do this. Set this in the Application.cfc
(beneath the cfcomponent tag) cfset THIS.sessioncookie.timeout = -1 and
this will cause the cfid cftoken cookies Expires attribute to be
you also need to remember that most people who decide to learn CF do not
know OOP, and CFML was never originally intended for that audience, it
was supposed to be an easy to learn tag based language.
Not everyone wants to use CFC's
On Thu, Jul 5, 2012 at 7:00 PM, Dave Watts dwa...@figleaf.com
Anyone know how to force the session to end when the browser is closed when
using CF 10? In the CF Administrator, go to Server Settings --Memory
Variables scroll down to Session Cookie Settings. The Cookie Timeout setting
seems to have complete control over the expires attribute for cfid,
In CF 10 Administrator, go to Server Settings --Memory Variables scroll
down to Session Cookie Settings. The Session Cookie Settings have complete
control over the expires attribute for cookie.CFID cookie.CFToken. When you
set them like this: cfset Cookie.cfid = SESSION.CFID cfset
Can't use j2ee session management, Hostek doesn't enable on my shared server.
You can still do this, but you have to tell CF not to set the cookies
itself in the first place
I assume you mean to set setClientCookies to no, which I'm already doing as it
is part of the procedure for what I have
What you can do is make sure the browser discards the cookie that is
used to associate requests to the session
Are you saying that you have a different way to do this than the way I've
described above?
Yes, the session remains on the server until it times out, but CF 10 does not
allow you to
Hello, recently, when I try to view localhost/index.cfm in Google Chrome, the
Save As dialogue box pops up, but if I rename it indexx.cfm it displays
properly. Index.cfm files in the WWW display properly in Chrome. I have
uninstalled/reinstalled Chrome, which did not fix it. If anyone has had
Are subdirectories considered part of the parent directory package? Or (in the
case of one parent and one child directory) be considered two separate
packages? The reason I ask is because I came across a statement, A package is
a group of components in the same directory (and its
Is there a limit to the number of simultaneous AJAX requests that will run? For
example, in my Coldfusion Administrator in the âRequest Tuningâ section,
the setting âMaximum number of simultaneous Template requestsâ is set to
20. So if more than 20 Template requests come in at one
OK, I think I found the answer. First off there is no such thing a an
XMLHttpRequest, that's just the name of the object, and from what I've read in
one of my books (Ajax, Your visual blueprint for creating rich Internet
applications) an Ajax request is an http request, so if that is the case
Is the term Global Include Paths as used here:
http://www.houseoffusion.com/cfdocs1/cfmx/Developing_ColdFusion_MX_Applications_with_CFML/CFXTags7.html,
actually referring to the Environment Varibles?
~|
Order the Adobe
Thanks for the info, but is that a yes or a no to my question? If no, then
how do I set the Global Include Paths.
~|
Order the Adobe Coldfusion Anthology now!
On average, how often should a CF server be rebooted, assuming the server is
not being rebooted to fix a problem. I have an app that runs once, each time
function OnApplicationStart runs, and I'm trying to get an idea of how often
the app may run. Any info from any CF Admins would be
Thanks for the info. So do you think it would be out of the ordinary for most
CF Admins to set createTimeSpan for 14 or more days?
~|
Want to reach the ColdFusion community with something they want? Let them know
on the House
How about when you create the thread, you add it's name to an
application-scoped variable. Then you can attempt to join each one later ?
Thanks for the input, I went ahead and tried it, but CF only joins threads that
are created in the same template. Ideally, a listener needs to be set up that
Does anyone know how to get a list of Coldfusion Threads (created with the
cfthread tag), programatically. I don't have access to the Server Monitor. If a
thread is aborted, I need to know it was aborted, I have a thread that runs
once every 24 hours. I know you can access thread data with the
Anyone know the pros and cons of setting up a db connection as described below?
I could not find the info with Google.
I am setting up a website that will have three separate MySql databases. Db1 is
used in the public area, db2 is used in the value added area (a visitor is
required to obtain
Fixed some syntax errors.
Anyone know the pros and cons of setting up a db connection as
described below? I could not find the info with Google.
I am setting up a website that will have three separate MySql
databases. Db1 is used in the public area, db2 is used in the value
added area
Does anyone know if there is a way to get metadata about form fields in a
cfform? I want to be able to identify which fields are text fields when I pass
the FORM struct into a cfc.
thanks
~|
Want to reach the ColdFusion
Thanks for the information. Are you saying to use javascript to get the type,
and then initialize a hidden field with that info?
~|
Want to reach the ColdFusion community with something they want? Let them know
on the House
What about using a java object. I would prefer not to have any type of code,
that is accessible to the user that could be altered. Since the cfinput tag
describes what the field type is (and is already on the server), is there a
java metadata object that could access this info on the server?
I guess keeping track of the field types at the time the form is created is
better than what I'm doing now. My field names are coded, so I loop through
FORM.fieldNames looking for a keyword which triggers the correct type of
validation. I could save the field name and field type in a session
Since the form submit won't inherently send the 'type' of the field
that was sent, you could use a method of naming your fields according
to the type of form field that was used. eg. lt;select
name=sel_statelt;option...
or lt;input type=text name=txt_Name_First
or lt;textarea
Is there a rule of thumb on how many times a query should be retried?
Thank you for the info everyone. I'm using Mysql and I'm not getting any
errors, I'm just trying to use good programming practices so the end user will
not see any error messages, in the event that a recoverable error is
Is there a rule of thumb on how many times a query should be retried? I'm using
nested cftry/catch and will retry a maximum of 4 times. Each retry is delayed
by a random number of milliseconds. Thanks for any insight.
~|
To change format:
1. Click Report
2. Click Report Properties
3. Select output type from Default Output Format drop-down menu.
~|
Download the latest ColdFusion 8 utilities including Report Builder,
plug-ins for Eclipse and
I think I get it, but I stand by what I said, it appears to
me there is a disconnect when it comes to security and the
internet. I did a search on Google with data integrity and
hash and there are over half a million hits, touting using a
hash for data integrity.
I'm not sure what this
I think I get it, but I stand by what I said, it appears to
me there is a disconnect when it comes to security and the
internet. I did a search on Google with data integrity and
hash and there are over half a million hits, touting using a
hash for data integrity.
I'm not sure what this
Yes, the files will be transferred in Ascii mode.
While ancient, this is still relevant:
http://kb.adobe.com/selfservice/viewContent.do?externalId=tn_13546sliceId=1
Edit FTPExtensionMap.txt to force .cfm files to be transferred as Binary.
--
mxAjax / CFAjax docs and other useful articles:
Yes, that is a problem with Dreamweaver. We always need to upload
encrypted source files with Ipswitch or other FTP.Do the same and
things will be fine.
We didn't find a way to make it work in Dreamweaver, but then again,
we
didn't expend much time on it. :)
First off, I am not a security expert, but I will launce a web site
(eventually) and I have started looking into how to secure my web site and
data; I canât afford to be sued because a thief got someoneâs personal
information from my databaseâ¦.I have comments and questions. In searching
First off, I am not a security expert ... For example, the info
I read may have been about how encrypting your data is a good
thing, but there was no follow through, encrypting it where, on
the server or on the client (to me, this is a flag that there is
a lack of understanding).
I
I will use an SSL certificate, but I also want to further
encrypt the data and make a hash ! of it, before sending
it to the server.
Why?
Damn that's a good question. Couldn't have asked it better myself.
Rick
Does the SSL certificate generate a hash of the data on the client, then
Does the SSL certificate generate a hash of the data on the client, then
generate another hash on the server and notify me if the data was tampered
with?
Noit encrypts it so if someone catches it mid-transmission they would
still
have to decrypt it...which would take a bloody long time
Its not a failure of the industry experts to understand the problem. Its
the failure to have a problem in the first place, honestly. I think that,
while you are clearly working hard to wrap your arms around the subject...
you aren't there yet.
What you want to do is inherently insecure... use
Ok
So I've been getting into jQuery a lot lately. And being able to
do some of the user enhancements has been great.
I've also begun, as one of those user enhancements, to use
client-side validation. Not for login's, but for mortgage calculators,
property search request forms, etc. Not
Ok
So I've been getting into jQuery a lot lately. And being able to
do some of the user enhancements has been great.
I've also begun, as one of those user enhancements, to use
client-side validation. Not for login's, but for mortgage calculators,
property search request forms, etc. Not
First, I want to reiterate an AJAX solution is probably best. However,
if AJAX is out of the question a secure has WILL work. Let me clarify
that...
1. CFC generates a CAPTCHA (EX: ABC123)
2. CFC hashes the CAPTCHA (EX: A6B7D8991A)
3. CF sends the HTTP response with the hash and a
First, I want to reiterate an AJAX solution is probably best. However,
if AJAX is out of the question a secure has WILL work. Let me clarify
that...
1. CFC generates a CAPTCHA (EX: ABC123)
2. CFC hashes the CAPTCHA (EX: A6B7D8991A)
3. CF sends the HTTP response with the hash and a
First, I want to reiterate an AJAX solution is probably best.
However,
if AJAX is out of the question a secure has WILL work. Let me
clarify
that...
1. CFC generates a CAPTCHA (EX: ABC123)
2. CFC hashes the CAPTCHA (EX: A6B7D8991A)
3. CF sends the HTTP response with the hash
A secure hash might be what the doctor ordered. CF could send
a hashed version of the answer then you could run js code
to hash the users input before the compare.
I haven't read the whole thread, but if you send the hash to the browser,
anybody could just see the hash and ensure that gets
is not specific enough to help you.
On 4/13/07, Byte Me [EMAIL PROTECTED] wrote:
Does anyone know how to call a Coldfusion variable from a .js
file,
without converting the variable in a .cfm file?
Hi Andrew,
I have a form that has a CAPTCHA on it, the answer to the CAPTCHA
Does anyone know how to call a Coldfusion variable from a .js file, without
converting the variable in a .cfm file?
~|
Create robust enterprise, web RIAs.
Upgrade integrate Adobe Coldfusion MX7 with Flex 2
for
information to be returned back to the client to then do what you want to
do.
but your question is not specific enough to help you.
On 4/13/07, Byte Me [EMAIL PROTECTED] wrote:
Does anyone know how to call a Coldfusion variable from a .js file,
without converting the variable in a .cfm file
49 matches
Mail list logo