How To Protect Resources (files) From Unexpected Web Application Termination
Jun 27, 2011
If a user clicked on a button, which runs a one minute process that MUST stay connected to the file (through the use of FileStream) for writing purpose, and he/she accidentally closed the browser. Currently, when that happens, if the user clicks on the button again, it will return an exception saying that the file is still being used. The part where I write to the file, the code for that is in a class library, which has a destructor (or finalizer, whichever), which calls a Dispose() method. It would usually take about 20 seconds before the file is free again to be used, but is there a way to make it quicker?
I'm thinking the way I'm designing my web app is not the conventional way. How do most people avoid this situation (ie. accidentally closing browser) where a file/resources are not freed up? Do they write into a SQL server instead of a flat file?
View 4 Replies
Similar Messages:
Nov 19, 2010
The reason this question came up, is because if I run my website application with a SQL Server data store, and I terminate the browser (terminating the session), I try to open up SSMS to edit the DB. But I can't access the database because I believe there is still an open connection, even after application termination.
Is it recommended to close the database connection upon session/application closing? Or am I way off on what I'm thinking could be the problem?
View 15 Replies
May 22, 2010
I am new at asp sites, and just started to use visual studio...
So every page i make, there is another one (source file) linked to it.
Example...default.aspx and with that the default.aspx.vb or default.aspv.cs. I know what those files are for, but how do i protect them from being downloaded from users... Anyone can just type the url, and get my hard work :-/
View 3 Replies
Dec 17, 2010
I'm working on a website that streams audio files for the user from a directory on the server machine. How do I protect the audio files from users being able to navigate to the folder and just downloading them locally, but still provide them access to stream them? If I set permissions on the folder via IIS, is there a level that I can set so that the server can stream but not allow anonymous access?I'm sure there is a tutorial or other thread about this out there, it's just hard to search for this specific issue. Any help or a simple link to another thread/tutorial
View 3 Replies
May 25, 2010
I have a website running on a IIS 7.5 server with ASP.NET 4.0 on a shared host, but in full trust.
The site is a basic "file browser" that allows the visitors to login and have a list of files available to them displayed, and, obviously, download the files. The static files (mostly pdf files) are located in a sub folder on the site called data, e.g. http://example.com/data/...
The site uses ASP.NET form authentication.
My question is: How do I get the ASP.NET engine to handle the requests for the static files in the data folder, so that request for files are authenticated by ASP.NET, and users are not able to deep link to a file and grab files they are not allowed to have?
View 1 Replies
Jul 28, 2013
I have a webpage where by user can upload jpg file through browse control on my server. Functionality working fine.
I have concern that if any one create virus and assemble it in a form of jpg and upload it on my server which can crash the hard disk or any other disaster.
View 1 Replies
Mar 14, 2014
In my application i uploaded PDF files and it is stored in particular path in application folder.
but the requirement is that files should not be delete or modify by any user like user privileges in windows.How to do this in asp.net ?
View 1 Replies
Mar 9, 2011
I'm going to publish an asp.net pre-compiled web site on shared hosting account but I don't want my code to be copied and able to run on another domain. I need to check domain and if not example.com or www.example.com redirect to error page or show error as response.
EDIT: Here is my solution based on given answers
void Application_BeginRequest(object sender, EventArgs e)
{
string[] safeDomains = new string[] { "localhost",
"example.com", "www.example.com" };
if (!((IList)safeDomains).Contains(Request.ServerVariables["SERVER_NAME"]))
{
Response.Write("Domain not allowed!");
Response.End();
}
}
View 3 Replies
Sep 18, 2010
I have built an ASP.NET application that needs to be password protected. This application will be installed on multiple offline computers, and we need to make sure that when being installed it requires a password. But even if it requires a password, someone can easily copy the database and the published folder and duplicate the application on their system right?
I need a way to prevent this. It should only work on laptops that we have installed it on.
View 1 Replies
Sep 13, 2010
i have a problem in my asp application . Im trying to protect the path for my application using this code :
Uri t = Request.UrlReferrer;
View 5 Replies
Apr 29, 2010
while i am watching what is file loaded in my page at runtime, i found that multiple files with the same name "ScripResource.axd" have been loaded but with different "d" querystring, how to know the control related to that resource ?
View 4 Replies
Dec 8, 2010
I have made resources files for different lauguages, e.g. Resources.Fr.resx, Resources.US.resx...
How to coding to make which resources files for default resources files so that when in the coding as below can be achieved with minimal coding change?
this.lblcustomer.text=properties.resources.lblCustomer.toString();
Then the label for customer text can be in US if we have chosen Resources.US.resx as default.
View 9 Replies
Jun 21, 2010
We're using an Out-of-Process Session Provider (ScaleOut) for an ASP.NET application and we've noticed that when an object that's not correctly setup for de-serialization inadvertently makes its way into session it will eventually cause the entire process to terminate.
Reproducing and handling this scenario is where it gets even more interesting.
The exception that terminates the process is raised in AnyStaObjectsInSessionState whose implementation is pretty straightforward:
[code]....
View 2 Replies
Apr 20, 2010
I was just wondering guys, how did you manage to update website's content with resx(resources) files.Did you manage user's database with connection, accessing to this page. I need to make a poll as well, should I use sharepoint or c# with a database?
View 1 Replies
Jun 16, 2010
I am interested in finding out how I would go about displaying a website wiithout forms authentication but to utilise forms authentication when the user makes a request by clicking in the signin button, and then the user will view other pages that are private and secure,
View 2 Replies
Aug 27, 2010
I have added .CSS file in Resources folder of the project.In the same way i can add Images or any other files.But i am unable to use those files in Server Control Project.How to apply CssClass property to any predefined server control to the css file that is stored in the Resources folder ?
how to use those Resource files .
View 6 Replies
Dec 21, 2010
1. I need to protect DLL
2. Applying time limit (trial period ) to entire application usage.
View 3 Replies
Jun 10, 2010
We have a website on IIS7 using ASP.NET Routing that seems as though it might be running out of resources.It just hangs after a few days, there is no error message or apparent crash.
We are making sure every .Open command is matched by a .Close command on the database connection.
We are doing the same with file Open/Close but there are very few of those.
View 2 Replies
Feb 15, 2010
THE CODE:
Session["foo"] = "bar";
Response.Redirect("foo.aspx");
THE PROBLEM:
When foo.aspx reads "foo" from the session, it's not there. The session is there, but there's no value for "foo".
I've observed this intermittently in our production environment. But I don't mean here to ask a question about Response.Redirect().
THE EXPLANATION:
Bertrand Le Roy explains (the bolding is mine): Now, what Redirect does is to send a special header to the client so that it asks the server for a different page than the one it was waiting for. Server-side, after sending this header, Redirect ends the response. This is a very violent thing to do. Response.End actually stops the execution of the page wherever it is using a ThreadAbortException. What
happens really here is that the session token gets lost in the battle. My takeaway there is that Response.Redirect() can be heavy-handed
with ending threads. And that can threaten my session writes if they occur too near that heavy-handedness.
THE QUESTION:
What about ASP.NET session management makes it so vulnerable to this? The Response.Redirect() line of code doesn't begin its execution until the session write line is "finished" -- how can it be such a threat to my session write? What about the session write doesn't "finish" before the next line of code executes? Are there other scenarios in which session writes are similarly (as though they never occurred) lost?
View 3 Replies
Aug 13, 2010
I am planning to convert desktop application which has to deal with lots of client resources like printer, Id scanner(driver license,passport & business card etc.), webcam etc.Now accessing client resources like files, scanners and webcam everything has to be done through client side scripting which is really pain. Due to nature of this product, I have to create image on client PC and extract information from it. (This is also pain in Vista and Windows 7 due to security permissions and all that stuff).
My ideal design would be making managed dll which takes care of dealing with images, printers, webcam (I have to apply pan, tilt and zoom), id-scanners. This is kind of component. And GUI would be web based Asp.net which simply calls the functions of managed dll. If the end-user is opening application on new computer, then it will ask just like flash or silverlight that you have to install component locally for the first time.Points which I worry: 1. If it logically correct or sounds stupid? 2. How to install managed dll at end-user's PC (C:/program files) and use it from asp.net code behind page.
My application is intranet application.so avoid stupid assumptions about privacy and ohhooo you want to access files from my PC and all those stuff. (end-user would never mind in giving credit card to restaurnt waiter who could do anything with it behind counter but allowing web application to access file which is created by application is privacy issue)
View 1 Replies
Jul 12, 2010
if there's any documentation/resources the describes the complete process flow of an ASP.Net application? Looking for something that describes IIS handing off the HttpRequest and the usage of the PageParserFilters and such.
View 1 Replies
Feb 3, 2011
I have recently upgraded to VS 2010 and converted my web site into a web application. Now, when I attempt to build, I receive the error:
Resource name '<name>.Resources.resources' cannot be used more than once.
There is no page name or anything, and I have completely exhausted all that Google has to offer.
View 2 Replies
Sep 17, 2010
I am getting below error while running my application
Exception in MS Oracle DAAB Method - GetDataSet : Could not find any resources appropriate for the specified culture or the neutral culture. Make sure "DABResource.resources" was correctly embedded or linked into assembly "DBServices" at compile time, or that all the satellite assemblies required are loadable and fully signed.
Description:An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.
Exception Details: System.Exception: Exception in MS Oracle DAAB Method - GetDataSet : Could not find any resources appropriate for the specified culture or the neutral culture. Make sure "DABResource.resources" was correctly embedded or linked into assembly "DBServices" at compile time, or that all the satellite assemblies required are loadable and fully signed.
Source Error: [Code]....
I am Having DBServices .dll which is registered in my assembley
Recently i installed VS 2008 in my system.this application is working fine in VS 2005 priviously.Now i am getting above error while running this application in VS2005
View 4 Replies
May 12, 2010
We have an ASP.NET 3.5 Web application in which we have faced the below issue:
The application is working fine but suddently at one point application URL prompts for the authentication. When we (the support team) checked the server, we were able to identify that the access was denied for some of the main files (like web.config, default page). When we enabled the access the application started working fine.
View 2 Replies
Mar 30, 2011
My ASP.NET application will have to handle HTTP GET requests that will have the following URL format: [URL] currently the requirement is to validate that there're no parameters in the query string except id and indicate an error like "unknown parameter P passed". Is such requirement a good idea? Will it interfere with some obviously valid cases of using the application I haven't thought of?
View 4 Replies
