IsAuthorized(resourcetype, resourcename [, action ])
Returns TRUE if the user is authorized to perform the specified action on the specified ColdFusion resource.
See also IsAuthenticated.
String specifying the type of resource:
String specifying the name of the resource. The value specified varies depending on the resource type:
resourcetype specification | resourcename specification |
---|---|
APPLICATION | Application name |
CFML | CFML tag name |
FILE | File name |
DSN | Data source name |
COMPONENT | Component name |
COLLECTION | Verity collection name |
CUSTOMTAG | Custom tag name |
USEROBJECT | Object name |
Resourcename is the actual resource that is protected, not to be confused with the rule name, which you specify in the ColdFusion Administrator.
String specifying the action for which authorization is requested. Do not specify this parameter for COMPONENT and CUSTOMTAG. For all other resource types, this parameter is required.
resourcetype specification | Possible ACTIONs |
---|---|
APPLICATION | ALL, USECLIENTVARIABLES |
CFML | Valid actions for the tag specified by resourcename |
FILE | READ, WRITE |
DSN | ALL, CONNECT, SELECT, INSERT, UPDATE, DELETE, SP (stored procedure) |
COMPONENT | No actions for this resource type |
COLLECTION | DELETE, OPTIMIZE, PURGE, SEARCH, UPDATE |
CUSTOMTAG | No actions for this resource type |
USEROBJECT | Action specified via the ColdFusion Administrator |
If you specify THROWONFAILURE=Yes in the CFAUTHENTICATE tag, you can enclose IsAuthorized in a CFTRY/CFCATCH block to handle possible exceptions programmatically.