• Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint
Share this Page URL
Help

Chapter 6.  Implementing Security in ... >  Using Server Sandbox Security

Using Server Sandbox Security

ColdFusion Server Enterprise edition supports server Sandbox security for host-ed sites. A security Sandbox enables you to limit access to resources at runtime. It provides the security mechanism based on the access to directories, and it enforces the same level of access for all the users of a group. If both application security and server Sandbox security are enabled, the latter takes precedence.

Sandbox works by associating specific security contexts with specific directories. The Sandbox mechanism can be used by ISPs to partition application pages into separate secure areas. An ISP provides a facility to its vendors to create their own Web sites on its Web server. Suppose the ISP hosts two different domains on the same ColdFusion Web server. The users of each domain submit their applications and data sources. They have exclusive access to tags and data sources of that domain. Other vendors cannot access them. Sandbox achieves this differentiation by associating specific security contexts with specific directories. Therefore, it creates various security contexts on the same Web server with different sets of policies.


PREVIEW

                                                                          

Not a subscriber?

Start A Free Trial


  
  • Creative Edge
  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint