Lucid Outsourcing Solutions

  Your ColdFusion form accepts user input. It saves a name, a comment, or a search term. Later, your application displays that input on a page. If you display it without encoding, you may have just executed an attacker’s script. Read More

  Your ColdFusion application authenticates users against Active Directory. Most of the time, it works perfectly. Then, without warning, logins start failing. Minutes later, they work again, as if nothing happened. Read More

  You configure a secure cookie in ColdFusion. Your site runs entirely over HTTPS. Yet the browser never receives the Secure flag. Worse, the cookie sometimes disappears entirely after a login redirect. Read More

  ColdFusion modal popups power contact forms, login dialogs, data entry panels, and confirmation screens. Therefore, reliable form submission from inside a modal is a core enterprise requirement. Yet developers consistently hit a wall. The button clicks, nothing posts, and the user stares at a frozen popup. Read More

  ColdFusion generates PDFs for invoices, reports, statements, and contracts. Therefore, reliable PDF delivery sits at the core of many enterprise apps. Yet developers often watch a cfdocument output fail in the browser. The page shows a blank frame, a download prompt, or corrupted bytes. Read More

  Introduction The integration works perfectly in staging. The mobile app calls the payment API through ColdFusion. Tokens authenticate. Transactions process. Then deployment to production fails with a cryptic message: “I/O Exception: sun.security.validator.ValidatorException: PKIX path building failed: java.security.cert.CertPathBuilderException: Could not build a validated path.” The API is up. Browsers connect to it without errors. Curl from the production server works fine. But ColdFusion refuses to talk to it. The error message points at Java security internals that most CFML developers have never read. Read More