Security :: Implementing Read And Write Permissions On A Web Application Page?

Feb 8, 2011

I am developing a web application using asp.net 4.0, vb.net 4.0 and Sql-Server 2005 as backend. I want to implement read only or read/write permissions for a particular logged in user. Ex : I have a Purchase order page, now I want to assign only view permissions to a particular user and read/write permissions to another user. what would be the best way to do it ? Use authentication and authorization provided by .Net or implement custom authentication and authorization ?

View 2 Replies


Similar Messages:

Configuration :: How To A Give Remote Server Account Read / Write Permissions On Local Machine

Oct 25, 2010

I'm using VS2010 and need to give my remote server asp .net account (IUSR_istereos) access to my local intpub folder

how do I do that?

View 5 Replies

Implementing Application Security - App & DB Level (SQL Server 08)

Feb 19, 2010

I am about to deploy an ASP .NET application (developed with LINQ-to-SQL). I have taken following precautions: Database access via user with limited access, however, since application is to access the sensitive data, I can't deprive this limited access user from it Database server is not exposed to external network - is hiding behind DMZ and all external ports are blocked I have done thorough security testing of the web-application; SQL Injections, rights management, illegal data access (via post/get data tempering) Application is operating on SSL

1 - I am using ASP .NET authorization API; any recommendation for avoiding session hijacking (in case someone some-how gets to know the session key). Is there are way to change the authentication cookie less prone to threats? Say like, changing it after every request? (I know I am get very conscious about this particular item)

2 - Data in the database is not encrypted. To make things ultra-secure, I am thinking about implementing transparent data encryption. Can someone share his/her experience or a link about implementing data level encryption with SQL Server 2008 along with pros-and-cons?

3 - Recommendation for storing connection string in web.config. Is using integrated security better then using encrypted database connection string?

View 3 Replies

C# - Grant Access To Write And Read From A Folder To Application?

Apr 22, 2010

I need to allow my asp.net application to read and write from and to a folder.

View 2 Replies

Security :: Read And Write Image To Profile?

Feb 8, 2010

I would like to use a file upload control and write the uploaded image to the user's asp.net profile property, and then read and display that image somewhere in my application.

View 1 Replies

Security :: Giving Folder Read / Write Permission In Server?

Jun 14, 2010

I need to set folder permission programmaticcaly which is in my GoDaddy server. I have nearly 150 folders in my server so I cant change through server settings or IIS settings. I am using web application. My folder may go on increase in future.I have googled a lot of things.

1. Like Access Control List in System.SEcurity namespace

2.System.principl.security...

I cant able to change the file permission but not a directory.

I must allow all the users to write or move a file to the folder which is in read only mode. That should be done programmatically and should be dynamic.

View 2 Replies

Databases :: Read Write Excel File In Application Without Installing The Office On Server

Jan 8, 2010

I want to read write excel file in my application without installing the office on my server. Means my server don't have any excel (MS office) installation. Is it necessory to install the office on server to excute the program of read or write the excel file.

View 5 Replies

Security :: Write Custom MemberShip Provider Only To Read Connection String From Other File

Sep 16, 2010

In asp.net mvc project I am using MYSQlMemberShipProvider. Now I want that instead of reading the connection string from web.config file, it will read the connection string from external file every time. So that I am implementing the cutsom mebership provider class, this class inherits the MemberShipProvider class. But the problem is that if I inherits the MemberShipProvider class then I have to impelment all of its method in my cutsom membership provider class, But I want to use all other inbuilt methods of MemeberShip. What can i do. I only want to add the code like below:

public class CustomSqlMembershipProvider :MembershipProvider
{
public override void Initialize(string name, NameValueCollection configs)
{
base.Initialize(name, configs);
Connectionstring objProducts = // redaing the connection string.
}
}

But on compiltaion it is giving me the error does not implement inherit abstract member.

View 2 Replies

Databases :: Read / Write Excel Page Using Vb

Aug 6, 2010

i have been searching a lot but i didn't find my specefic result, my question is: how can i read excel sheet from asp.net using vb and how can i insert values into a worksheet from my web page

View 4 Replies

Configuration :: Server Trust Level And Twitter Application Interface - Error "System.Security.Permissions.SecurityPermission, Mscorlib"

Oct 14, 2010

There seems to be an issue with the "Trust" level when executing within a "Cloud" environment. In order for the following app to work it needs a trust level of at least "Medium." This web app is developed using VB.NET 3.5, and Visual Studio 2008. The app works perfectly on my local sever but when deployed/published to the "Cloud" it returns the error: System.Security.Permissions.SecurityPermission, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed. I have added all 4 required values, ConsumerKey, ConsumerSecret, OAuthToken, and OAuthTokenSecret to the web.config file in the "appSettings" section of the "configuration"

[Code]....

If found that by going to [URL] and signing into the account that is using the application, then go to the "Settings" page, go to the bottom of the page and click on the "API" menu option. Once the API page appears you will clik on the button "2", Register An App. On the right side on the new page, you will see a button "View Your Applications." If you have previously registered your app, click this button, If not fill out the appliction for a new app. Now at the View your Applications page, select the app you want to get the authorization keys for where is says "Edit Details". Now click on the button to the right that says, "Application Detail." Here you will find your Consumer Key and your Consumer Secret Key. On the right side of this page you will see the menu option "My Access Token", click it and you will find your oauth_token and your oauth_token_secret keys! Not that you have all the keys, put them in the "appSettings" section of the web.config file. Add "Dim twConn As New TwitterVB2.TwitterAPI" at the top of the page.

I then created a subroutine where I pass in the Tweet:

[Code]....

This code works great in an enviornment that allows at least a "Medium" trust level. However it appears that many of the "new" hosting envrionments such as "Cloud Hosting" and others do not allow this trust level automatically!However if the trust level is less than "Medium" on your host you will likely receive the error message: "Twitter Returned: Request for the permission of type 'System.Security.Permissions.SecurityPermission, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed." If anyone has found a fix for this "Trust Level"

View 9 Replies

Web Forms :: Master Page To An Entire Website As A Method Of Implementing Site Security Consider?

Feb 21, 2010

I have a site with about 4 pages or so. I was asked to implement a very simple security (check if user in database, if not kick out) using active directory and validating against a table of users. I was simply thinking of createing a master page and making all pages inherit that master page. I would then authenticate the users from the master page.

View 4 Replies

Get Error When Try To Access Website - Server Error In '/' Application. Attempted To Read Or Write Protected Memory

May 5, 2010

Server Error in '/' Application. Attempted to read or write protected memory. This is often an indication that other memory is corrupt.Description: An unhandled exception occurred during the execution of the current web request. review the stack trace for more information about the error and where it originated in the code.

Exception Details: System.AccessViolationException: Attempted to read or write protected memory. This is often an indication that other memory is corrupt.

Source Error:

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.

Stack Trace:

[code]....

View 1 Replies

Security :: Getting Error / Request For The Permission Of Type 'System.Security.Permissions.FileIOPermission, Mscorlib

Jun 3, 2010

I am using Itext sharp to create a pdf. I am adding an image and I keep getting this error

Request for the permission of type 'System.Security.Permissions.FileIOPermission, mscorlib, ersion=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed.

it is this bit of code that is causing this

[Code]....

If i comment this out, the PDF builds and no errors are thrown (there is just no image)

I don't understand cause I am am trying to do is read a file.

View 2 Replies

IIS7 Folder Permissions For Web Application?

Mar 28, 2010

I am using windows authentication without impersonation on my company's intranet website with IIS7.

Under IIS7, what account is used to access the folder which contains my web app using these settings?

Would it be IIS_IUSRS? Or NETWORK SERVICE? Or another I don't know about?

View 1 Replies

Security :: IIS Permissions For New AppPool ID?

Feb 11, 2010

I am doing some testing and want to find out best practice for creating a new user to assign to an appPool. I know that the default ASPNET account, on IIS 6.0, is very low permissions. For experienced folks, what are the bare permissions required to grant this new user? Yes, I am aware that various NTFS rights are required for different operations, such as reading outside of the application path, writing to the NTFS share, etc. I am just looking at a base install.

Dino Esposito wrote in Chapter 15 of Programming Microsoft ASP.NET 2.0 - Core Reference that the following directories would need the respective permissions:

.NET framework root - read/list Temporary ASP.NET folders - full GAC - read Windows System32 - access/read App root - access/read Web site root - scanWhat else would I need to set up beyond this base configuration as far as rights are concerned? If anyone does this regularly, do you have a script to do this automatically?

View 2 Replies

Installation :: Required Permissions Cannot Be Acquired When Run The Application

Jan 19, 2010

I found the problem "Required permissions cannot be acquired." when run ASP.NET application on Windows 7.After I search from the web, somebody reccommend me to add following<trust level="Full" / >nto Web.confitack Trace:

[Code]....

View 1 Replies

Security :: "Request For The Permission Of Type 'System.Security.Permissions.FileIOPermission" Error?

Feb 22, 2011

Here is my code

[Code]....

"fileUpload" is the FileUpload ASP.NET control. The SaveAs method writes the user uploaded file to a specified location on the server. IT WORKS. That tells me that the ASP.NET process has the proper write permission to write to the file.The next line uses an assembly called PdfSharp which you can use to open PDF files and manipulate them. In this case, the line simply opens up the user uploaded file. That is where the error occurs. WTH?

It works on my production machine. It does not work on my local machine. It USED TO. It was never a problem before.So why would it be fine to WRITE to the server, but trying to open a file give an error? Makes no sense. Googling yields a suggestion to put <trust level="Full" originUrl="" /> under <system.web> in web.config. It does not work.

View 3 Replies

Resetting A File's Security Permissions?

Sep 13, 2010

I've got a routine that tries to import files from an import directory, spitting them out to an Error directory if the import fails. The Error directory is shared and users have access permissions to delete files in there, so they can try to fix the problems and then move the files off to the import directory again. I use File.Move to move the files to the Error directory and this is working fine, apart from the permissions - it seems to revert to a default set of permissions, rather than the directory's one, and so the users can't remove the files - how can I reset the permissions on the file to those of their containing directory? I've tried poking around with SetAccessControl and SetAccessRuleProtection but I don't seem to be having any luck?

View 1 Replies

Security :: Permissions Error Running 2.0 App In IIS

Mar 4, 2010

I am having trouble running a commercial ASP.NET application on a client machine. On most client machines this runs as intended, but for one machine I am getting a security exception as follows: Server Error in '/ElasSelfService' Application. Required permissions cannot be acquired. Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

Exception Details: System.Security.Policy.PolicyException: Required permissions cannot be acquired. Source Error: An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.
Stack Trace:

[PolicyException: Required permissions cannot be acquired.]
System.Security.SecurityManager.ResolvePolicy(Evidence evidence, PermissionSet reqdPset, PermissionSet optPset, PermissionSet denyPset, PermissionSet& denied, Boolean checkExecutionPermission) +7602199
System.Security.SecurityManager.ResolvePolicy(Evidence evidence, PermissionSet reqdPset, PermissionSet optPset, PermissionSet denyPset, PermissionSet& denied, Int32& securitySpecialFlags, Boolean checkExecutionPermission) +57
[FileLoadException: Could not load file or assembly 'Infragistics2.WebUI.UltraWebListbar.v8.3, Version=8.3.20083.1009, Culture=neutral, PublicKeyToken=7dd5c3163f2cd0cb' or one of its dependencies. Failed to grant minimum permission requests. (Exception from
HRESULT: 0x80131417)]
System.Reflection.Assembly._nLoad(AssemblyName fileName, String codeBase, Evidence assemblySecurity, Assembly locationHint, StackCrawlMark& stackMark, Boolean throwOnFileNotFound, Boolean forIntrospection) +0
System.Reflection.Assembly.nLoad(AssemblyName fileName, String codeBase, Evidence assemblySecurity, Assembly locationHint, StackCrawlMark& stackMark, Boolean throwOnFileNotFound, Boolean forIntrospection) +43
System.Reflection.Assembly.InternalLoad(AssemblyName assemblyRef, Evidence assemblySecurity, StackCrawlMark& stackMark, Boolean forIntrospection) +127
System.Reflection.Assembly.InternalLoad(String assemblyString, Evidence assemblySecurity, StackCrawlMark& stackMark, Boolean forIntrospection) +142
System.Reflection.Assembly.Load(String assemblyString) +28
System.Web.Configuration.CompilationSection.LoadAssemblyHelper(String assemblyName, Boolean starDirective) +46
[ConfigurationErrorsException: Could not load file or assembly 'Infragistics2.WebUI.UltraWebListbar.v8.3, Version=8.3.20083.1009, Culture=neutral, PublicKeyToken=7dd5c3163f2cd0cb' or one of its dependencies. Failed to grant minimum permission requests. (Exception
from HRESULT: 0x80131417)]
System.Web.Configuration.CompilationSection.LoadAssemblyHelper(String assemblyName, Boolean starDirective) +613
System.Web.Configuration.CompilationSection.LoadAllAssembliesFromAppDomainBinDirectory() +203
System.Web.Configuration.CompilationSection.LoadAssembly(AssemblyInfo ai) +105
System.Web.Compilation.BuildManager.GetReferencedAssemblies(CompilationSection compConfig) +178
System.Web.Compilation.BuildProvidersCompiler..ctor(VirtualPath configPath, Boolean supportLocalization, String outputAssemblyName) +54
System.Web.Compilation.BuildManager.CompileWebFile(VirtualPath virtualPath) +229
System.Web.Compilation.BuildManager.GetVPathBuildResultInternal(VirtualPath virtualPath, Boolean noBuild, Boolean allowCrossApp, Boolean allowBuildInPrecompile) +261
System.Web.Compilation.BuildManager.GetVPathBuildResultWithNoAssert(HttpContext context, VirtualPath virtualPath, Boolean noBuild, Boolean allowCrossApp, Boolean allowBuildInPrecompile) +101
System.Web.Compilation.BuildManager.GetVirtualPathObjectFactory(VirtualPath virtualPath, HttpContext context, Boolean allowCrossApp, Boolean noAssert) +126
System.Web.Compilation.BuildManager.CreateInstanceFromVirtualPath(VirtualPath virtualPath, Type requiredBaseType, HttpContext context, Boolean allowCrossApp, Boolean noAssert) +62
System.Web.UI.PageHandlerFactory.GetHandlerHelper(HttpContext context, String requestType, VirtualPath virtualPath, String physicalPath) +33
System.Web.UI.PageHandlerFactory.System.Web.IHttpHandlerFactory2.GetHandler(HttpContext context, String requestType, VirtualPath virtualPath, String physicalPath) +40
System.Web.HttpApplication.MapHttpHandler(HttpContext context, String requestType, VirtualPath path, String pathTranslated, Boolean useAppConfig) +160
System.Web.MapHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() +93
System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) +155

The website has a separate application pool defined for it running under the Network Service account. I have checked the settings for the virtual directory for the application but nothing seems wrong. I have tried defining the trust level in web.config to full trust but this does not fix the issue. I have looked into defining the trust level for the application through the machine.config file but I am unsure of how to proceed with this.

View 4 Replies

Security :: Permissions On Subdirectory 401 Error?

Dec 27, 2010

We use a build tool, TeamCity to do our builds. I have a directory locally with javascript files that works fine, but when its built and pushed to our test server and I try to get to any files in the directory I get: 401 - Unauthorized: Access is denied due to invalid credentials.

I've changed permissions several time on the server (2008/IIS 7) and still the problem persists. I have other directories that have javascripts and when I put the path into the browser for them I get the source.

View 2 Replies

Required Permissions Cannot Be Acquired When Host .net 3.5 Application In Godaddy

Aug 19, 2010

ot the following error when click print report button.Application : asp.net 3.5Crystal report : 10.5Host: godadRequired permissions cannot be acquired.
Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

[Code]....

View 2 Replies

System.Security.Permissions.FileIOPermission When Using MEF To Load Dll's

Jul 16, 2010

I am trying to load some dll's into a MEF DirectoryCatalog within an ASP.NET MVC application:

var catalog = new DirectoryCatalog(HttpRuntime.BinDirectory, "Toptable.Mobile.*.dll");

When I run the app through the Cassini web server (i.e. F5) everything runs fine however when hosted in IIS(7) I get the following exception:

[code]....

The .NET trust levels for the application are set to "Full" both for the site and globally and I have set the trust level in web.config (system.web/trust) to Full.

View 2 Replies

Security :: Grant Assembly With Proper Permissions?

Oct 5, 2010

I'm developing a managed module for IIS7. Assembly with my code is placed in GAC and worked fine within 2.0 pipeline. But with .NET 4.0 pipeline (and Medium Trust Level chosen) there are no permissions to read registry and code is unable to read/write

"C:Program Files<Folder>MyAppConfig.file"

Is there any way to grant my assembly with proper permissions to do this?

View 3 Replies

Security :: How To Set Access Or Permissions To Folder By Programming C#

May 3, 2010

how can we set grant or dynie access or permissions to folder by programming c# in asp.net?

View 5 Replies

Security :: Change The Permissions Of A Disk File?

Mar 31, 2010

I have a file on the disk and I want to give Full Control Permission to all the users of that computer.

View 6 Replies







Copyrights 2005-15 www.BigResource.com, All rights reserved