Ernst has just posted his code for an ssl interceptor he just created. It looks awesome so take a look for yourself.
Blog
Recent Entries
![BoxLang 1.0.0 Beta 7 Launched](/__media/contentbox:2024/boxlang/boxlang-1.0.0-beta7.png)
BoxLang 1.0.0 Beta 7 Launched
We are pleased to announce the release of BoxLang 1.0.0-Beta 7! This latest beta version includes improvements and essential bug fixes, but more importantly it certifies the execution of ColdBox HMVC and TestBox.
What is BoxLang?
BoxLang is a modern dynamic JVM language that can be deployed on multiple runtimes: operating system (Windows/Mac/*nix/Embedded), web server, lambda, iOS, android, web assembly, and more. BoxLang combines many features from different progr
![New BoxLang Feature: Java Method References and Higher-Order Functions](/__media/contentbox:2024/banners/Java-Method-References-New-Feature.png)
New BoxLang Feature: Java Method References and Higher-Order Functions
We’ve added more goodies to our BoxLang Java interop: method references and higher-order functions. CFML has never let you do these things, making Java Interop feel like a second-class citizen. But with BoxLang, we’re elevating Java integration to a new level.
![Level Up Your ColdFusion Skills with our Virtual Live Training: ColdBox from Zero to Hero](/__media/contentbox:2024/blog/Banners/Blog-banner-ColdBox-Zeroto-Hero.png)
Level Up Your ColdFusion Skills with our Virtual Live Training: ColdBox from Zero to Hero
Level Up Your ColdFusion Skills with our Virtual Live Training: ColdBox from Zero to Hero
Are you a CFML developer looking to take your skills to the next level? Look no further than the ColdBox from Zero to Hero Virtual Live Training! This intensive two-day course will equip you with the knowledge and expertise to build robust and scalable applications using ColdBox 7, the latest version of the most popular CFML MVC framework.
What You'll Learn:
- Master the Fun...
Add Your Comment
(4)
Jan 19, 2008 23:50:35 UTC
by Rob Gonda
It's missing some functionality ... how does it know which event has to be secured? It should secure only specific events, and force unsecured requests for the rest. something like if not isSsl and requireSll then cflocate to https if isSsl and not requireSll then cflocate to http
Jan 19, 2008 23:54:53 UTC
by Luis Majano
That is up to Ernst, but I think its a good start.
Jan 21, 2008 16:01:48 UTC
by Ernst van der Linden
Rob you're right. We could implement that. Just make a list of allowed events without SSL as a property in interceptor xml definition and then check with event.getCurrentEvent() if we need SSL. I will take a look and keep you informed.
Jan 21, 2008 17:47:57 UTC
by Ernst van der Linden
Rob, I made in new blog entry. The SSL interceptor now supports SSL for specific events. Comments are welcome!