Configuring file uploading on ColdFusion

To check if file upload is functional under ColdFusion you must verify that no Security Sandbox exists that restricts the use of the <cffile> tags, or that imposes restrictions on file and folders. Follow the next steps to check:

  1. Open the ColdFusion administrator.

  2. Select the Security item in the left pane, then the Sandbox Security category.

  3. Check if any of the existing Sandboxes apply to the folder which includes (directly or from a higher level) the folder where the files are to be stored. The list of defined sandboxes and the directory they apply onto is displayed on the bottom of the page, as you can see in the example below:


     

  4. If such a sandbox exists, click its name to see the settings. File upload can be restricted in two ways: by disabling the cffile tag, or by setting read/write/execute permissions on the folder.

  5. Click the CF Tags tab to see what tags cannot be used. If the CFFile tag is in the disabled tags area, select it and press the  << button to remove it. Then click Finish to apply the changes.


     

  6. One way to grant the web server the rights it need within the Sandbox is to configure them in the Files/Dirs tab. Select this tab, then add the folder with the Read, Write and Execute options.


     

  7. Click Finish to complete defining the new settings for the security sandbox. The file upload must work as expected.