Looking for code feedback

[Denard Springle]

Hey Gang,

   As some of you may already know I will be presenting on ColdFusion security best practices at the upcoming NCDevCon 2015 at the end of September. As part of my presentation I have put together a couple of example applications in fw/1 that represent a secure authentication mechanism and a two-factor authentication mechanism. I am seeking feedback from anyone who has a moment to look through the code and make any suggestions for improvements over the next week that I can implement before the conference. Any/all input is welcomed, but bear in mind these are meant to be examples and not complete solutions - giving enough of a base application that someone else could grab and modify to their purpose.

   The code has been posted to GitHub and can be found:

https://github.com/ddspringle/framework-one-two-factor-auth - Two Factor Auth Example

https://github.com/ddspringle/framework-one-secure-auth - Secure Auth Example

   Thanks in advance to anyone who has time to check them out and provide any feedback. Issues and feature requests should be added on GitHub, if possible, Otherwise a response to this post or an email to me directly (denard....@gmail.com) would also work.

-- Denny