1 / 39

What’s Next in ColdFusion

What’s Next in ColdFusion. Raymond Camden. This Guy. Developer Evangelist for Adobe Blog: www.coldfusionjedi.com Email: cfjedimaster@adobe.com Twitter: cfjedimaster. ZEUS!. So what’s next in Zeus?. ColdFusion Zeus. Is a code name For the "next" version Not necessarily ColdFusion 10

tasha-adams
Download Presentation

What’s Next in ColdFusion

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. What’s Next in ColdFusion Raymond Camden

  2. This Guy • Developer Evangelist for Adobe • Blog: www.coldfusionjedi.com • Email: cfjedimaster@adobe.com • Twitter: cfjedimaster

  3. ZEUS! So what’s next in Zeus?

  4. ColdFusion Zeus • Is a code name • For the "next" version • Not necessarily ColdFusion 10 • NOT TALKING ABOUT: • Release Dates • Prices • Editions • Politics or Religion

  5. Zeus Features (Some of…) • Admin Improvements • Security out the Ying Yang • Language Improvements • Solr Improvements • Java Integration • REST • HTML5/Mobile • Web Sockets • Charting

  6. More Zeus features… • No more Verity (yes, that's a feature) • No more JRun (ditto!) • Microsoft Exchange 2010 support • Web Service: Axis 2 + Document Literal • Scheduled Tasks are Epic

  7. ALL FEATURES NOT FINAL!

  8. Admin Improvements • Hot Fix Installer • Template Cache – By Folder • Clear Query Cache • File Browser • IP Addresses for Admin

  9. Demos

  10. Security Enhancements • XSS/CSRF Protection • Session Improvements • Hash/HMAC • File Type Mime Checks • And more… • Mail CRLF protection, cflogin strengthened, other services improved

  11. XSS Protection • Cross-site Scripting • New functions: • encodeForHTML • encodeForHTMLAttribute • encodeForJavaScript • encodeForCSS • encodeForURL

  12. Demos • /demos/security/xss

  13. CSRF Protection • Cross-Site Request Forgery • New functions: • CSRFGenerateToken • CSRFVerifyToken

  14. Demos • /demos/security/csrf

  15. Session Improvements • httpOnly on by default • Secure (default is false) • Domain • Timeout (days, -1 for killing session when browser closes) • sessionInvalidate and sessionRotate

  16. Example this.sessioncookie.httponly="true"; this.sessioncookie.secure="true"; this.sessioncookie.domain="value"; this.sessioncookie.timeout="value";

  17. Hash/HMAC • Hash can now be told to iterate N times: hash(input, "sha", 4) • HMAC – Hash-based Message Authentication Code

  18. Demo • /demos/security/hash.cfm

  19. Mime Type Checking • cffile upload • getFileMimeType

  20. Demos • /demos/security/fileupload.cfm and filemimetype.cfm

  21. Language Improvements

  22. In no particular order… • Cookie via Script • For-in for Queries • Append to file with content • Call Stack • Application Metadata • Disk Space • App-specific VFS • CFC implicit constructors, method chaining, implicit notation • XPath2 • Oh, and….

  23. CLOSURES!

  24. Demos • /demos/lang • /demos/cfcs

  25. Solr • Dynamic custom fields (as many as you want, even up to 11!) • ORM based search • Data Import Handler (no more cfquery) • Other misc things… (more languages for example)

  26. Demos • Custom Fields demo • ORM Search demo

  27. Java Integration • Ability to load Java libraries • JavaLoader RIP • Java access to CFC files: • CFCProxymyCFC = new CFCProxy(cfcPath, true);

  28. Demo • /demos/java

  29. REST RESTful web services are built to work best on the Web. Representational State Transfer (REST) is an architectural style that specifies constraints, such as the uniform interface, that if applied to a web service induce desirable properties, such as performance, scalability, and modifiability, that enable services to work best on the Web. In the REST architectural style, data and functionality are considered resources and are accessed using Uniform Resource Identifiers (URIs), typically links on the Web. The resources are acted upon by using a set of simple, well-defined operations. The REST architectural style constrains an architecture to a client/server architecture and is designed to use a stateless communication protocol, typically HTTP. In the REST architecture style, clients and servers exchange representations of resources by using a standardized interface and protocol. From: http://download.oracle.com/javaee/6/tutorial/doc/gijqy.html

  30. REST • Who cares what it is – we make it easy! • (Btw – I'm kidding. Mostly.) • Extensions to component, function, argument, application.cfc, and the Admin

  31. Demos • /demos/rest

  32. HTML5/Mobile • CFMAP • CFMEDIAPLAYER • cfinput won't barf on new items (like type=range) • Detection of browser capabilities

  33. Device info (VERY IN FLUX) • this.deviceInfo=true; or getDeviceInfo() • device_nameajax_support_javascriptcookie_supportdevice_osdevice_os_versionfull_flash_supporthttps_supportis_tabletis_wireless_devicemobile_browsermobile_browser_versionmodel_extra_infomodel_namephysical_screen_heightphysical_screen_widthpointing_methodstreaming_preferred_protocol

  34. Demos • /demos/cfmap • /demos/testinput.cfm

  35. Web Sockets • Bidirectional communication • One client to all the rest • Server to all clients • Front end support via <cfwebsocket> • Back end support for defining listeners

  36. Demo

  37. Charting • All new charting engine • Styles are JSON objects • Deeper configuration via JSON • Lots of new features

  38. Demo

  39. And more to come…

More Related