Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

CFX problem

Posted on 2002-05-03
4
Medium Priority
?
310 Views
Last Modified: 2013-12-24
Hi everybody,

System:
Coldfusion 5.0 (Linux)
Apache

I'm writing a CFX tag to securly retrieve passwords for our users. In order to confirm their identity i need the CFX to workout what directory the calling template is in (i have a UNIX library that uses the getUID() call) - but WITHOUT the user entering the template.

The only option i have come up with so far is using a CFML tag that uses getCurrentTemplatePath() (or whatever its called :) and then it calls the CFX. The down side of this is that you can decompile CFML tags very easily.

Points will go to the first viable solution other than the one above.

GR.
0
Comment
Question by:googlyralph
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 11

Accepted Solution

by:
jimmy282 earned 800 total points
ID: 6988736
GetDirectoryFromPath(GetTemplatePath())

You can pass the above as a parameter to the CFX from the calling page.

Or just set it as a variable in your application.cfm and you are done!

Jimmy
0
 
LVL 1

Author Comment

by:googlyralph
ID: 6993635
Jimmy,

trying to avoid passing in a parameter, as user could call the resulting CFX with a string and then retrieve another users password.

GR.
0
 
LVL 11

Expert Comment

by:jimmy282
ID: 6994502
Well thats avoidable.

1)Encrypt the parameter and Send, then decrypt in CFX.
2) Pass Another Parameter and if that is passes only then CFX will run. e.g. "Hideme=Yes"

Jimmy


0
 
LVL 1

Author Comment

by:googlyralph
ID: 7095347
Sorry for the delay, didnt realise i hadnt closed these questions.

GR.
0

Featured Post

Learn how to optimize MySQL for your business need

With the increasing importance of apps & networks in both business & personal interconnections, perfor. has become one of the key metrics of successful communication. This ebook is a hands-on business-case-driven guide to understanding MySQL query parameter tuning & database perf

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In our day to day coding, how many times have we come across a necessity to check whether a URL is a broken link or not? For those of you that answered countless and are using ColdFusion like myself, then this article is for you.  It will show yo…
If you don't have the right permissions set for your WordPress location in IIS, you won't be able to perform automatic updates. Here's how to fix the problem.
This course is ideal for IT System Administrators working with VMware vSphere and its associated products in their company infrastructure. This course teaches you how to install and maintain this virtualization technology to store data, prevent vuln…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question