- Allow for sub-modules to load AFTER cbsecurity loads.

lmajano · lmajano · commit 91091ca158a9 · 2025-12-09T10:41:10.000+01:00
diff --git a/ModuleConfig.cfc b/ModuleConfig.cfc
@@ -18,14 +18,14 @@ component {
 	this.entryPoint        = "cbsecurity";
 	// Helpers
 	this.applicationHelper = [ "helpers/mixins.cfm" ];
-	// Dependencies
-	this.dependencies      = [ "cbauth", "jwtcfml", "cbcsrf" ];
+	// Dependencies that must be loaded first.
+	this.dependencies      = [];
 
 	/**
 	 * Module Config
 	 */
 	function configure(){
-		settings = {
+		variables.settings = {
 			/**
 			 * --------------------------------------------------------------------------
 			 * Authentication Services
@@ -114,7 +114,7 @@ component {
 		};
 
 		// Security Interceptions
-		interceptorSettings = {
+		variables.interceptorSettings = {
 			customInterceptionPoints : [
 				// Validator Events
 				"cbSecurity_onInvalidAuthentication",
diff --git a/changelog.md b/changelog.md
@@ -9,6 +9,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+### Fixed
+
+- Allow for sub-modules to load AFTER cbsecurity loads.
+
 ## [3.6.0] - 2025-12-08
 
 ### Security
diff --git a/models/CBSecurity.cfc b/models/CBSecurity.cfc
@@ -164,7 +164,7 @@ component threadsafe singleton accessors="true" {
 		}
 
 		// cbcsrf settings incorporation
-		variables.moduleSettings.cbcsrf.settings.append( variables.settings.csrf, false );
+		variables.moduleSettings.cbcsrf.settings.append( variables.settings.csrf, true );
 		// DBLogger Configuration
 		variables.dbLogger.configure();
 		// Log it
@@ -443,7 +443,7 @@ component threadsafe singleton accessors="true" {
 	 * @message The error message to throw in the exception
 	 *
 	 * @throws NoUserLoggedIn
-	 * @throws NotAuthorized 
+	 * @throws NotAuthorized
 	 */
 	CBSecurity function secureSameUser( required user, message = variables.DEFAULT_ERROR_MESSAGE ){
 		if ( !sameUser( arguments.user ) ) {
diff --git a/test-harness/box.json b/test-harness/box.json
@@ -13,5 +13,9 @@
         "route-visualizer":"*"
     },
     "installPaths":{
+        "coldbox":"coldbox/",
+        "BCrypt":"modules/BCrypt/",
+        "testbox":"testbox/",
+        "route-visualizer":"modules/route-visualizer/"
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -13,5 +13,9 @@`
`13`	`13`	`"route-visualizer":"*"`
`14`	`14`	`},`
`15`	`15`	`"installPaths":{`
	`16`	`+ "coldbox":"coldbox/",`
	`17`	`+ "BCrypt":"modules/BCrypt/",`
	`18`	`+ "testbox":"testbox/",`
	`19`	`+ "route-visualizer":"modules/route-visualizer/"`
`16`	`20`	`}`
`17`	`21`	`}`