Entries for month: “February 2012”
Best of Adobe ColdFusion 10 (Beta) Contest
I'm happy to announce that we are running another "Best of ColdFusion" contest to celebrate the public beta release of the next version of Adobe ColdFusion 10 (Beta).
The contest rules are simple: Design an application (and that can be a "real" app, a one page template, even a mobile application driven by ColdFusion on the back end) that highlights a new ColdFusion 10 feature. You can highlight any ColdFusion 10 feature (or features).
Unlike before, contest entries will be shared immediately with everyone via our Facebook page. (URL soon!) You will be able to play with the contest entries. There will still be a series of public blog posts talking about the entries and reviewing them, but you can see right away what other entrants are doing. Even better, you get a chance to help pick the winners.
We will be giving away 2 copies of Adobe ColdFusion 10 Enterprise and Adobe ColdFusion Builder 2.0.1. Two of the winners will be chosen by myself and Rakshith (ColdFusion Product Manager) based on a purely "This is cool!" rating system. The other two winners will be entirely driven by "Likes" on the Facebook page.
As before, this contest is open to anyone and everyone, and all entries must be licensed via an open source license. To submit your entry, please email a zip to raymondcamden@gmail.com.
Participating in the contest constitutes permission to Adobe Systems Incorporated to use the applications created and participants' pictures and/or name and/ or other particulars and /or likeness for the purposes of advertising, trade and promotion of Adobe ColdFusion or otherwise without further compensation and notification to the participant and authorization from the participant.
The contest runs from now until May 1st.
ColdFusion WebSocket: How to publish messages?
The most vital part of ColdFusion WebSocket feature is the ability to push live data. You can publish data either from server to mulitple clients or from one client to multiple clients. ColdFusion Websockets provides you different methods , that could be used to publish data. Lets try to find out how these different methods are used.
In most real world applications data may not be very simple text. It could be complex arrays and structs. In such cases how do I make use of Coldfusion WebSocket JavaScript methods?.
Here is my blogpost on different ways to publish data using ColdFusion WebSocket. Checkout the application provided which will help you get started with ColdFusion WebSocket implementation.
-Evelin Varghese
New & Improved CFLogin
With ColdFusion 10 CFlogin is improved and more secure. The Authorization associated with cflogin for loginstorage"cookie" is much secure. The Authorization cookie,
· Is set to have a short time to live.
· Now it expires by default on browser close and this can be configured using cookie settings discussed before.
· It is by-default set to be on HttpOnly for CF admin console. For other applications, there is provision to configure
There are however some behavioral changes. Read here for further information.
Learn WebSocket with ColdFusion Builder Extension
If you have downloaded ColdFusion Builder 2.0.1 beta and want to know how to use WebSocket feature in the ColdFusion 10, then this extension might help.
What this extension does
- Briefly describes what Websocket is
- Explains WebSocket support in ColdFusion 10
- Settings in application.cfc
- cfwebsocket tag
- JavaScript callback functions
- APIs to publish from JavaScript and CFML
- websocketObj.Invoke method from JavaScript to invoke a method on CFC
- Generates demo files with inputs provided by you
- Lets you lauch demo application from the extension.
Update : This extension did not work on Mac. Fixed the issues and updated it.
How to Secure ColdFusion Session Cookies with Adobe ColdFusion 10
With ColdFusion 10 a developers can have much stronger and sweeter relationship with security. There are a lot of features in ColdFusion 10 which will help developers and administrators create secure applications. These are very simple to use APIs and configurations. I will start this series today to discuss those from my perspective.
The first and most basic in this series is Handling Sessions Securely.
For ColdFusion sessions, there are two tokens CFID and CFTOKEN. CFTOKEN is randominzed in ColdFusion 10 by default. Remember the option "Use UUID for cftoken" on CF Administrator -> Settings. This is by default checked now.
Cookies are by default not so secure. They are vulnerable for various reasons. Like, cookies are stored in plain text, they can be modified by user, they can sit on your server for long time, they can be accessed by JavaScript etc. So if cookies are also insecure, what should we do?Fortunately there are configurations that can make cookies secure. To see how to enable/set them in ColdFusion 10 read further here.
