Security
From ADF Docs
Revision as of 03:10, 22 November 2009 by Renee.mckechnie (talk | contribs) (Created page with '== Overview == ADF security framework contains measures to restrict direct access and remote component access. Security Measures include: # As a rule of thumb none of the compon…')
Overview
ADF security framework contains measures to restrict direct access and remote component access.
Security Measures include:
- As a rule of thumb none of the component methods within the ADF library have functions with methods with "remote" access
- Direct access to the ADF files are restricted to only valid logged in CommonSpot users. This is controlled through the ADF root Application.cfc. In the onRequestStart function, logic is run to verify that the user accessing the file directly is a logged in CommonSpot user.
- Remote access to component methods are requested through an Ajax Proxy that essentially allows access to methods in the ADF via a Proxy White List.