home *** CD-ROM | disk | FTP | other *** search
/ Computer Shopper 139 / dpcs0999.iso / Web / CFserver / data1.cab / Administrator / Application.cfm (.txt) < prev    next >
Encoding:
ColdFusion Encrypted Template  |  1999-04-12  |  4.5 KB  |  129 lines
  1. <CFAPPLICATION Name="ColdFusion Administrator" ClientManagement="YES">
  2.  
  3. <!--- Reset debugging information settings so the admin won't have debugging information leaking out over the frames. --->
  4. <CFSETTING SHOWDEBUGOUTPUT="NO">
  5.  
  6. <!--- Pseudo-constants. --->
  7. <CFSET DEFAULTADMINPAGE = "server/index.cfm">
  8. <CFSET FONTFACE = "Helvetica">
  9. <CFSET FONTSIZE = "2">
  10. <CFSET SESSIONTIMEOUT = 30> <!--- timeout in minutes. --->
  11. <CFSET PASSWORD_KEY = "4p0L@r1$"> <!--- used to store the password in encrypted form.  do not change without updating string in query.cpp --->
  12. <CFSET CFADMIN_SECURITYCONTEXT = "ColdFusion Admin"> <!--- admin security context name --->
  13. <CFSET CFRootKey = "HKEY_LOCAL_MACHINE\SOFTWARE\Allaire\ColdFusion\CurrentVersion">
  14.  
  15. <CFIF #Server.OS.Name# IS NOT "UNIX">
  16.   <CFSET PATH_SEPARATOR="\">
  17. <CFELSE>
  18.   <CFSET PATH_SEPARATOR="/">
  19. </CFIF>
  20.  
  21. <!--- Should we password-protect the administrator? --->
  22. <CFPARAM NAME="UseSecurityServer" DEFAULT="0">
  23. <CFNewInternalRegistry ACTION=GET Branch="HKEY_LOCAL_MACHINE\SOFTWARE\Allaire\ColdFusion\CurrentVersion\Server" 
  24.     VARIABLE="UseSecurityServer" 
  25.     Entry="UseSecurityServer" 
  26.     Type="STRING" >
  27.  
  28. <CFPARAM Name="UseAdminAuth" Default="0">
  29. <CFNewInternalRegistry ACTION=GET
  30.     Branch="HKEY_LOCAL_MACHINE\SOFTWARE\Allaire\ColdFusion\CurrentVersion\Server"
  31.     Entry="UseAdminAuth"
  32.     Variable="UseAdminAuth"
  33.     TYPE="STRING">
  34.  
  35. <!--- Should we password-protect the administrator? --->
  36. <CFNewInternalRegistry ACTION=GET
  37.     Branch="HKEY_LOCAL_MACHINE\SOFTWARE\Allaire\ColdFusion\CurrentVersion\Server"
  38.     Entry="UseAdminPassword"
  39.     Variable="UseAdminPassword">
  40. <CFPARAM Name="UseAdminPassword" Default="YES">
  41.  
  42. <CFIF UseSecurityServer AND UseAdminAuth>
  43.     <CFSET enforceAdminSecurity="YES">
  44.     <CFSET notAuthenticated = "YES">
  45.     <!--- check if we are already authenticated --->
  46.     <CFIF NOT ParameterExists( FORM.PasswordProvided )>
  47.         <CFIF isAuthenticated()>
  48.             <CFIF isAuthorized("Security","#CFADMIN_SECURITYCONTEXT#")>
  49.                 <CFSET notAuthenticated = "YES">
  50.             <CFELSE>
  51.                 <CFIF isAuthorized("UserObject","CFRestricted")>
  52.                     <CFSET notAuthenticated = "NO">
  53.                 <CFELSE>
  54.                     <CFSET notAuthenticated = "YES">
  55.                 </CFIF>        
  56.             </CFIF>
  57.         <CFELSE>
  58.             <CFSET notAuthenticated = "YES">
  59.         </CFIF>    
  60.     </CFIF>
  61.     <CFIF notAuthenticated>
  62.         <!--- If the form is sending a password  use it --->
  63.         <CFIF ParameterExists( FORM.PasswordProvided ) AND ParameterExists( FORM.UsernameProvided )>
  64.             <CFAuthenticate
  65.                 USERNAME="#FORM.UsernameProvided#"
  66.                 PASSWORD="#FORM.PasswordProvided#"
  67.                 SECURITYCONTEXT="#CFADMIN_SECURITYCONTEXT#"
  68.                 SETCOOKIE=YES
  69.                 THROWONFAILURE=NO>
  70.                 
  71.             <!--- check if we are already authenticated --->
  72.             <CFIF isAuthenticated()>
  73.                 <CFIF isAuthorized("Security","#CFADMIN_SECURITYCONTEXT#")>
  74.                     <CFSET notAuthenticated = "YES">
  75.                 <CFELSE>
  76.                 <CFIF isAuthorized("UserObject","CFRestricted")>
  77.                     <CFSET notAuthenticated = "NO">
  78.                 <CFELSE>
  79.                     <CFSET InvalidPasswordEntered = "Yes">    
  80.                     <CFSET notAuthenticated = "YES">
  81.                 </CFIF>        
  82.             </CFIF>
  83.             <CFELSE>
  84.                 <CFSET InvalidPasswordEntered = "Yes">    
  85.                 <CFSET notAuthenticated = "YES">
  86.             </CFIF>            
  87.         </CFIF>
  88.         
  89.         <CFIF notAuthenticated>    
  90.             <CFINCLUDE Template="authentication.cfm">
  91.             <CFABORT>
  92.         </CFIF>    
  93.     </CFIF>                        
  94. <CFELSE>
  95.     <CFSET enforceAdminSecurity="NO">
  96.     <CFIF UseAdminPassword>
  97.  
  98.         <!--- Is a valid admin password provided? --->
  99.         <CFNewInternalRegistry ACTION=GET
  100.             Branch="HKEY_LOCAL_MACHINE\SOFTWARE\Allaire\ColdFusion\CurrentVersion\Server"
  101.             Entry="AdminPassword"
  102.             Variable="AdminPassword">
  103.         <CFPARAM Name="AdminPassword" Default="NoPasswordRegistered">
  104.  
  105.         <!--- If we have a cookie password use it --->
  106.         <CFIF ParameterExists( Cookie.cPasswordProvided )>
  107.             <CFSET EcryptedPassword = Cookie.cPasswordProvided >
  108.         </CFIF>
  109.  
  110.         <!--- If the form is sending a password  use it --->
  111.         <CFIF ParameterExists( FORM.PasswordProvided )>
  112.             <CFSET EcryptedPassword = cfusion_Encrypt( FORM.PasswordProvided, PASSWORD_KEY )>
  113.             <CFCOOKIE NAME="cPasswordProvided" VALUE="#EcryptedPassword#">
  114.         </CFIF>
  115.  
  116.         <CFPARAM Name="EcryptedPassword" Default="NoPasswordProvided">
  117.  
  118.         <CFIF CompareNoCase( EcryptedPassword, AdminPassword) IS NOT 0>
  119.         <!--- The password is missing or invalid. --->
  120.             <CFIF ParameterExists( FORM.PasswordProvided )>
  121.                 <CFSET InvalidPasswordEntered = "Yes">    
  122.             </CFIF>
  123.             <CFINCLUDE Template="login.cfm">
  124.             <CFABORT>
  125.         </CFIF>
  126. </CFIF>
  127.  
  128. </CFIF>
  129.