User Guide
278 Chapter 2: ColdFusion Tags
cflogin
Description
A container for user login and authentication code. ColdFusion runs the code in this tag if a user
is not already logged in. You put code in the tag that authenticates the user and identifies the user
with a set of roles. Used with
cfloginuser tag.
Category
Security tags
Syntax
<cflogin
idletimeout = "value"
applicationToken = "token"
cookieDomain = "domain"
...
<cfloginuser
name = "name"
password = "password-string"
roles = "roles">
...>
</cflogin>
See also
cfloginuser, cflogout, GetAuthUser, IsUserInRole,
Chapter 16, “Securing
Applications” in ColdFusion MX Developer’s Guide
History
ColdFusion MX 6.1: Changed behavior: the cflogin variable exists when ColdFusion receives a
request with NTLM or Digest (CFHTTP Negotiated header) authentication information.
ColdFusion MX: Added this tag.
Attributes
Attribute Req/Opt Default Description
idletimeout Optional 1800 Time interval, in seconds, after which ColdFusion logs
off the user.
applicationtoken Optional The current
application
name
Unique application identifier. Limits the login validity
to one application, as specified by the
cfapplication
tag or the Application.cfc file.
cookiedomain Optional Domain of the cookie that is used to mark a user as
logged in. Use this attribute to enable a user login
cookie to work with multiple clustered servers in the
same domain.