contentbox-boxlang-security-permissionslisted

# ContentBox Security & Permissions (BoxLang) Manage authentication, authorization, roles, permissions, and security rules in ContentBox CMS using BoxLang. ## Security Architecture ContentBox uses **cbSecurity** for its security layer with a database-driven RBAC (Role-Based Access Control) model. ### Security Entities | Entity | File | Description | |--------|------|-------------| | **Author** | `models/security/Author.cfc` | User entity with password, roles, preferences, 2FA | | **Role** | `models/security/Role.cfc` | RBAC roles with M2M to permissions | | **Permission** | `models/security/Permission.cfc` | Individual permissions | | **PermissionGroup** | `models/security/PermissionGroup.cfc` | Permission grouping | | **SecurityRule** | `models/security/SecurityRule.cfc` | Firewall rules (whitelist/securelist/roles/permissions) | | **LoginAttempt** | `models/security/LoginAttempt.cfc` | Login attempt tracking | ### Security Services | Service | File | Description | |---------|------|-------------| | **SecurityService** | `models/security/SecurityService.cfc` | Authentication, session, password reset, encryption | | **AuthorService** | `models/security/AuthorService.cfc` | Author CRUD, preferences, avatar | | **RoleService** | `models/security/RoleService.cfc` | Role management | | **PermissionService** | `models/security/PermissionService.cfc` | Permission management | | **SecurityRuleService** | `models/security/SecurityRuleService.cfc` | Security rules from DB | | *