CFX problem
Hi everybody,
System:
Coldfusion 5.0 (Linux)
Apache
I'm writing a CFX tag to securly retrieve passwords for our users. In order to confirm their identity i need the CFX to workout what directory the calling template is in (i have a UNIX library that uses the getUID() call) - but WITHOUT the user entering the template.
The only option i have come up with so far is using a CFML tag that uses getCurrentTemplatePath() (or whatever its called :) and then it calls the CFX. The down side of this is that you can decompile CFML tags very easily.
Points will go to the first viable solution other than the one above.
GR.
System:
Coldfusion 5.0 (Linux)
Apache
I'm writing a CFX tag to securly retrieve passwords for our users. In order to confirm their identity i need the CFX to workout what directory the calling template is in (i have a UNIX library that uses the getUID() call) - but WITHOUT the user entering the template.
The only option i have come up with so far is using a CFML tag that uses getCurrentTemplatePath() (or whatever its called :) and then it calls the CFX. The down side of this is that you can decompile CFML tags very easily.
Points will go to the first viable solution other than the one above.
GR.
Asked:
Who is Participating?
Jimmy,
trying to avoid passing in a parameter, as user could call the resulting CFX with a string and then retrieve another users password.
GR.
trying to avoid passing in a parameter, as user could call the resulting CFX with a string and then retrieve another users password.
GR.
Well thats avoidable.
1)Encrypt the parameter and Send, then decrypt in CFX.
2) Pass Another Parameter and if that is passes only then CFX will run. e.g. "Hideme=Yes"
Jimmy
1)Encrypt the parameter and Send, then decrypt in CFX.
2) Pass Another Parameter and if that is passes only then CFX will run. e.g. "Hideme=Yes"
Jimmy
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
All Courses
From novice to tech pro — start learning today.
-
Course of the Month5 days, 23 hours left to enrollMonitoring and Operating a Private Cloud with System Center 2012 R2 273 lessons
You can pass the above as a parameter to the CFX from the calling page.
Or just set it as a variable in your application.cfm and you are done!
Jimmy