Implementing Security  
 
 

As you plan and build a ColdFusion application, you'll need to consider security in several ways -- securing both your development environment and your application's resources.

ColdFusion Server now supports several levels of Advanced Security:

  • Remote Development Services Security (RDS) -- Developers accessing server resources through ColdFusion Studio can be authenticated before receiving access to protected resources.
  • User security -- Implemented in ColdFusion application pages by the ColdFusion developer, User Security offers runtime user authentication and authorization.
  • Server sandbox security -- Controlled by the ColdFusion administrator of a hosted site, offers runtime security based on directory access at hosted sites (ColdFusion Enterprise only).
  • Administrator security -- Individual administrative operations can be secured against unauthorized access.

See Administering ColdFusion Server for information on using the Administrator to set up security rules and policies, as well as RDS security for developers working in ColdFusion Studio.

In the User Security chapter of the Advanced ColdFusion Development book, you'll find information and examples on how developers can implement user runtime security using CFML tags and functions.

 
 
  Note  
 

Advanced security is not currently supported in ColdFusion Server for Solaris.



 
 
BackUp LevelNext
 
 

allaire     AllaireDoc@allaire.com
    Copyright © 1998, Allaire Corporation. All rights reserved.