Defining a Security Context  
 
 

The Security Context is a logical set of resources grouped together from an administrative perspective. It does not necessarily correspond to a ColdFusion application or resource name. As its name suggests, the security context is used to establish a context in which authentication and authorization actions are carried out.

For example, you might create a security context for a particular application development effort. Within this context, you define users, groups, and rules that apply to the developers who are working on the project. Another example: You define a context for intranet users of the application you want to deploy. According to their group affiliation, different rules apply, enabling or preventing various actions based on their login.

The context helps establish which resources you want to protect.

 
 
  To define the resources to be protected:  
 
  1. Open the Advanced Server Security page and click the Security Contexts button.
  2. Enter a security context name and click Add.

    This is a logical name that defines the scope of the security domain. Later, in your application pages, you use this name in the CFAUTHENTICATE tag.

  3. In the New Security Context page, add a description of the security context.
  4. Choose the Resource Type this context governs. For these types, you also provide a corresponding name:
    • Application -- Use the application name.
    • CFML -- Provide a CFML tag name.
    • Collection -- Provide the collection name.
    • Component -- This can be a CFApplet source name, CFX name, or CFOBJECT Class name.
    • CustomTag -- Specify a fully qualified file name (using forward slashes).
    • DataSource -- Use ODBC or Native Driver Source Name.
    • File -- Use `/' forward slashes.
    • UserObject -- A logical entity you can define to use as a kind of security flag. For example, you could define TopSecret, Secret, and Confidential user objects and authenticate users based on their association with these flags.

    Avoid selecting ColdFusion resources that you do not intend to secure, since doing so can needlessly affect performance.

    The Add Existing User Directories box is checked by default to let you add users to this context automatically.

  5. Click Add.

    The security context is registered. Now you define the policies and rules for this context.



 
 
BackUp LevelNext
 
 

allaire     AllaireDoc@allaire.com
    Copyright © 1998, Allaire Corporation. All rights reserved.