when implememnting a new application on Railo it would be good to have a command line tool that allows us to take advabtage of the compilation features within Railo so we can pre-compile the applications.

https://jira.jboss.org/jira/browse/RAILO-197

Have the ability to implement closures or anonymous functions

Sometimes sites or web services have quite restrictive security, especially internal applications with sensitive data. We need support for SSLv3 (Client Certificates) for CFHTTP, CFInvoke and CreateObject.

Some of it works, but cfformgroup isn't. Neither are the options for formatting: format="xml" and format="flash".
The xml version is perhaps the more important one of the two since it works so well together with css.

When you have multiple CFINPUTs that fail a validation and display a message, they are shown one at a time in succession. This is not very user-friendly at all. All the messages should be grouped together and put into a single alert box.

Rackspace Cloud now has APIs available for integrating. Any chance we can get this built in like Railo did for S3?

http://www.rackspacecloud.com/cloud_hosting_products/files

I would like to have a onServerStart() event, similar to onApplicationStart() but for server wide functions. There I could set global fucntions, variables and also start vital applications in a controlled fashion.

https://jira.jboss.org/jira/browse/RAILO-215

Railo should provide cfide.adminapi.* CFCs to be compatible with Adobe.

I think that the default password should be set by default. I've used railo for 3-4 years and never even knew about this feature, yet its a gaping security hole if you don't visit the web administrator for each site you create and set a password.

https://jira.jboss.org/jira/browse/RAILO-216

Particularly useful for init() or if you want to chain setters. Then you can use a simple snippet and it will work in any component regardless of type.

Access either via Java classes or prehaps GetMetricData() to all active sessions and applications. This would be similar to Adobe ColdFusions undocumented coldfusion.runtime.SessionTracker and ApplicationScopeTracker, which allow access to other sessions, application scopes and information like time alive, idle timeout, idle time and expired state (before collection).

This could be the basis for an admin section for monitoring applications and sessions. Developers could also use this information when creating their applications (user sessions for an app, who's online, inactive sessions etc...).

Let us query GMAIL or other services which only allow encrypted access.

This request came in from the Railo blog. A "long time supporter" is disappointed that we're not supporting CFPrint.

... to connect to snmp enabled devices.
Example of syntax:
<cfsnmp
host="generic.host.com"
community="public"
oid="1.3.6.1.2.1.2.2.1.2"
method="GET" (walk,set,...)
qResponse="response">

host= can accept a list of hosts
qResponse= specifies the name of the query to return data and can be accessed as any other CF query, using Query-of-Query, CFOUTPUT, or CFLOOP.

Example project:
http://code.google.com/p/owaspantisamy/

Additional Information on what the above does:
http://blog.pengoworks.com/index.cfm/2008/1/3/Using-AntiSamy-to-protect-your-CFM-pages-from-XSS-hacks