Ray, As you probably already know, we pretty much never used siteminder-based security. We've been using a homegrown security alternative. There are some architectural issues with it, but it has worked pretty reliably.
I got curious, though, and updated a spectra machine to MX over the weekend and played with it. I spent about 4 or 5 hours tweaking things as they came up and basically got the app to work. It seems to be a bit faster than on CF 5. Off the top of my head, the areas that needed to be handled were: 1) We weren't actively using any of the out-of-the-box security, but the code was set up to be able to switch back to it if we wanted to so some of the templates still had old security functions in them. I needed to comment them out. 2) The tags or functions to read info about ODBC datasources was broken. I didn't take the time to see if there was a replacement for these in MX, so for the test just hardcoded what they would have returned (thinks like whether the DB was Oracle or SQLServer). 3) We had used iif() in some places and that was breaking. Really shouldn't have had iif() in there anyway because of performance but converting the iif() to <cfif) handled it. 4) Perhaps the oddest one was that deserializing data from the content object DB broke. Putting a trim() around the input value solved it. Not sure what was happening there, but it worked. :-) 5) I left off when I ran into a problem with cfa_tabarea. It was looking for thisTag.assocAttribs which doesn't seem to exist in MX. I changed this over to use "attributes" instead, but this is still broken and I didn't have time to hunt it down. 6) cfusion_settings_refresh() didn't work. 7) One oddity (which I'll post somewhere else too) is that CF 5.x worked fine with URLs like: http://mydomain.com/index.cfm/614 where the "614" is an objectID or something we're parsing out. In CF5, this works fine which has the advantage of apparently appearing to look like a page to spiders even though it is dynamic. MX handles these kinds of addresses fine with the built-in server, but chokes when using IIS. It throws an odd "server can't be found or DSN error." Actually, this seems to happen if you just add a trailing slash to an address. In other words, I get the same error with something like: http://mydomain.com/index.cfm/ whereas http://mydomain.com/index.cfm works just fine. I think that's about it. With the above handled, the app just worked. d -----Original Message----- From: Raymond Camden [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 17, 2002 5:04 PM To: Spectra-Talk Subject: Idea - need feedback, re: Security Folks, I need some feedback in regards to security in Spectra. How many people are using features like type/object protection? How many people basically rolled their own security because of the ... issues w/ Advanced Security? If Spectra 1.5.2 were to completely rip out security (by essentially making security tags return 1), would this be a hardship? If I had to guess, I would think not. I know in the last project I worked on the security was completely 'roll your own'. Anyway, I need honest feedback folks. ======================================================================= Raymond Camden, ColdFusion Jedi Master for Macromedia Email : [EMAIL PROTECTED] Yahoo IM : morpheus "My ally is the Force, and a powerful ally it is." - Yoda ______________________________________________________________________ Get the mailserver that powers this list at http://www.coolfusion.com ------------------------------------------------------------------------------ To Unsubscribe visit http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/spectra_talk or send a message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
