[Coldbox 3.8.1] Bypass Security Interceptor

Christopher_Keeler · October 3, 2014, 9:40pm

I have a quick question on how one would bypass a security interceptor when running a scheduled task since there would not be a user associated with said task?

My interceptor function looks like this:

`
function preProcess(event, interceptData){

var prc = event.getCollection(private=true);
var rc = event.getCollection();

//adds the user to every request
prc.oUser = securityService.getUserSession();
if(not StructIsEmpty(prc.oUser)){
prc.oNav = navigation.getNavCounts(prc.oUser.MROEntityID);
}
//add OUR htmlHelper to every request
prc.html = htmlHelper;
}
`

Any help is appreciated.

Thank you.

-CK

Exist_Dissolve · October 3, 2014, 9:48pm

Have you looked at the eventPattern annotation?

http://wiki.coldbox.org/wiki/Interceptors.cfm#eventpattern_annotation

It allows you to specify a regex that will match against incoming events and either run the interception function (for a match) or skip it (for no match)

andrews · October 3, 2014, 11:45pm

Easy, add the scheduled route to the whitelist.

[Coldbox 3.8.1] Bypass Security Interceptor

Latest Ortus News

GIVING BACK

HARVESTING IN SPANISH

WOODSEDGE