The user security feature allows ColdFusion developers to authenticate users and match protected resources with authorized users. See "Securing applications with User security" to learn about user security concepts.
In order to implement user security you must use the ColdFusion Administrator to:
After the security framework is in place, developers use the CFAUTHENTICATE tag in individual application pages (or the Application.cfm
file) to authenticate users. The IsAuthenticated and IsAuthorized functions enable developers to offer or deny access based on the established security policies. Remember that nothing you configured in the ColdFusion Administrator takes effect until developers enforce the contexts in their applications. See the CFML Reference for more information on IsAuthenticated and IsAuthorized.