I am making AJAX calls to my Coldbox app that need to be secured. I am using XML-base security rules with a custom validator and security interceptor. When authentication fails, I re-direct to an event based on the redirect definition in the security rules. Everything works, but I would like to add some additional information regarding the nature of the authentication failure to the re-direct event. I see in coldbox.system.interceptors.Security that the re-direct is using setNextEvent, which I understand has a way to pass additional information, but that parameter is not exposed in a way that I can use from inside my interceptor.
Has this feature changed recently (I am using Coldbox 3.7), or can I do what I need to do some other way? I have a string message I would like to pass back to my client app, e.g. message: “Authentication failed”, or “Subscription expired”, etc. so I can route the response appropriately. I have a work-around, but I would like a more permanent solution.
Thoughts?