<< February 2010 >>
Sun	Mon	Tue	Wed	Thu	Fri	Sat
	1	2	3	4	5	6
7	8	9	10	11	12	13
14	15	16	17	18	19	20
21	22	23	24	25	26	27
28

ColdFusion per vhosts mappings

One of the features of CF8 that I was most interested in and most let down on was per application mappings. The reason I was so keen was so that we could keep core library application files out of the webroot for additional security, but still have different versions of the same codebase. I.e. some sites running farcry3 some running farcry5 for example.

This didn't transpire and so now we use the following technique on apache to map the folder in and then lock it down with apache.

In the vhost section add the following:

Alias /farcry /path/to/non-webfolder/farcry
<Location /farcry/>
Order Deny,Allow
Deny from all
</Location>

Note: it is important that there is no /farcry mapping defined in the CF Administrator or it will override this setting.

What the above does, is to map in the non-web accessible folder, but then locking it down so it cannot be browsed from the web. This seems pointless but CF can still see the files and correctly resolves the paths even though they are secure from the outside world.

This then allows us to version our sites independently - i.e. if we want to upgrade from farcry 5 to 5.1 we can do it one site at a time, instead of having to test them all at once.

Note - Railo already has per vhost mappings which solve the same problem as this. But if you are on CF7 or CF8 then this works a treat.

Cheers, Mark

Posted At : May 6, 2009 3:32 AM | Posted By : Mark Lynch
Related Categories: ColdFusion, Open Source, Systems admin
Comments (2) | del.icio.us | Linking Blogs

Related Blog Entries

Upcoming book review - Tomcat 6 Developer's Guide (December 21, 2009)
CFMX Query Timeout Gotcha (May 19, 2009)
Flexible Friendly URLs for Farcry with Mod rewrite (update 2) (December 10, 2007)

Comments

[Add Comment]

Hi Mark, could you explain what you mean by "this didn't transpire"? I use the CF8 per application mappings extensively for this kind of thing and haven't run into any problems.

# Posted By Julian Halliwell | 5/8/09 8:27 AM

Hi Julian,

The reason I say 'this didn't transpire' is that application mappings don't do everything that real mappings do. I.e. they don't work with cfimports - which we use heavily.

Geoff from Daemon gives a good explanation of it: http://blog.daemon.com.au/go/blog-post/application...

So they do work - but not as well as I'd like them to.

Cheers,
Mark

# Posted By Mark Lynch | 5/8/09 2:07 PM

[Add Comment]

Calendar

Recent Entries

Subscribe

Archives By Subject

RSS

Listed on...

ColdFusion per vhosts mappings