Table of Contents
Advertisement
Implementing User Security
Implementing User Security
The user security feature allows ColdFusion developers to authenticate users and
match protected resources with authorized users. See "Securing applications with
User security" on page 84 to learn about user security concepts.
In order to implement user security you must use the ColdFusion Administrator to:
1
2
3
4
After the security framework is in place, developers use the CFAUTHENTICATE tag in
individual application pages (or the
IsAuthenticated and IsAuthorized functions enable developers to offer or deny
access based on the established security policies. Remember that nothing you
configured in the ColdFusion Administrator takes effect until developers enforce the
contexts in their applications. See the CFML Reference for more information on
IsAuthenticated and IsAuthorized.
Set up the security server. See "Setting Up a Security Server" on page 89 for more
information.
Set up user directories to authenticate against an NT domain, an LDAP directory,
or an ODBC data source. See "Defining User Directories" on page 92 for more
information.
Create a security context for the application. See "Defining a Security Context" on
page 95 for more information.
Specify individual resources to protect and set up policies that match secured
resources with authorized users and groups. See "Specifying Resources to
Protect" on page 96 for more information.
file) to authenticate users. The
Application.cfm
99
Advertisement
Chapters
Table of Contents
Troubleshooting
Need help?
Do you have a question about the COLDFUSION 5-ADVANCED ADMINISTRATION and is the answer not in the manual?