Hello and welcome to our community! Is this your first visit?
Register
Enjoy an ad free experience by logging in. Not a member yet? Register.
Results 1 to 4 of 4
  1. #1
    New to the CF scene
    Join Date
    Jan 2010
    Posts
    8
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Restricting access to URL of the flex application

    Hi,

    I want to restrict access to the URL of the intranet flex application. We do not want a login page to be used. Just give access to specific users may be based on windows authentication. Users who are allowed should automatically view the application once the URL is typed and remaining should get a error message when the URL is typed. Any ideas of how i can achieve this?

    Thanks,
    Saha

  • #2
    Super Moderator Inigoesdr's Avatar
    Join Date
    Mar 2007
    Location
    Florida, USA
    Posts
    3,638
    Thanks
    2
    Thanked 404 Times in 396 Posts
    Flex is not the best application to handle this. You should use the webserver to restrict access to your flex application. For example, use an .htaccess file to only allow the intranet IPs to access it so everyone else gets a 403 error.

  • #3
    New to the CF scene
    Join Date
    Jan 2010
    Posts
    8
    Thanks
    0
    Thanked 0 Times in 0 Posts
    I do not want to restrict based on IP address because the user who is permitted can log from any system, it should be restricted by the user logged in to the system. How do i get which user has logged in to the system using flex?

  • #4
    Super Moderator Inigoesdr's Avatar
    Join Date
    Mar 2007
    Location
    Florida, USA
    Posts
    3,638
    Thanks
    2
    Thanked 404 Times in 396 Posts
    I don't think that is possible using Flex because the user logged into the system shouldn't be exposed to the flash plugin... I would see that as a security issue. The only way I can think of where this might be possible is with the use of a third-party plugin like ActiveX that could hook into the OS's functionality. Even if it could see the user, that isn't sufficient to authenticate someone as it could be easily faked.


  •  

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •