Security ::User Authorisation / Access - Perform Function Via Button In Repeater?
Apr 28, 2010
I'm looking to write some script that checks that: The current user of whom is logged in has the correct authority credentials. NB: Script in C# before I continue. To give a bit more background. The SQL DB Table for AdminUsers has a field 'Authority' this is linked to another table (Authority) which has the values/different levels of authority in them. Thus, if aN admin user whose Authority level is just listed as 'user', for example, in the database and wants to edit information that requires 'Supeuser' authority level - it cannot be performed and is redirected to another page. In detail, my particular page, the operation is being done via a ASP Button within a ASP Repeater. Of each record that occurs there is the button that, once pressed, updates the field in the database (in this case for a Guestbook table which has a 'Moderated' field of 'bit/bool' data type, changing it from false to true (or 0/1)). To allow that entry to be displayed on the front-end for public viewing. All this can onyl happen on the basis of, as previously stated, their authority is of the appropriate level. Here is what my attempt was. The outcome of which simply redirects to the 'Unauthorised' page, despite the user logged in having the correct authority credentials.
ASP - GuestbookMod.aspx:
[Code]....
C# - GuestbookMod.aspx:
[Code]....
LINQ to SQL - Guestbook.cs 'Mod' Method:
[Code]....
View 8 Replies
Similar Messages:
Jun 26, 2010
i am working in asp.net and csharp, we have 10 user, but certain user only need to put dataentry. how to enable and disable based on the user to access certain form ,like add, modify view options.
View 1 Replies
Jun 4, 2010
I have written a user control that captures some user input and has a Save button to save it to the DB. I use a repeater to render a number of these controls on the page - imagine a list of multiple choice questions with a Save button by each question.
I am loading the user control inside the repeater's ItemDataBound event like this (code simplified):
[code]....
The problem is that when the Save button is clicked, the page posts back, but lbnUpdate_Click is not called. The Page_Load event of the page itself is called however.
I should mention that the repeater is part of a user control, and that user control is loaded inside another user control (this is a DotNetNuke site which makes heavy use of user controls). The Save button link looks like this:
javascript:__doPostBack('dnn$ctr498$AssignmentsList$rptAssignments$ctl04$ctl00$lbnUpdate','')
View 3 Replies
Jan 25, 2011
In a repeater control there is TextBox and corresponding to each TextBox there is Button control.On click of Button how can i pass TextBox's text that user has just entered ?
Below is the code:
[Code]....
Means on click of each Button how to pass there respective TextBox's data to a javascript function ?
View 17 Replies
Nov 26, 2010
Is there a way to select certain rows and for each row, perform a function? Specifically, I want to select specific rows and then send them an email.
Here's a breakdown:
1. Select * from STUDENTS where status = active
2. For each row that is returned, take the $email column and email the student message
3. Repeat until all qualifying rows have been completed.
View 3 Replies
Feb 24, 2011
Without giving away specifics: basically, I have a bunch of users adding content to my site. What happens now is ajax sends the text to a web service which does its thing, sends the info to the DB, Sends the user an e-mail, and then returns a response to the browser to do something.
What I would like to do is change that order. I want to return a response to the browser so the user is not waiting on the e-mail to send before they get their response. Basically, I'm trying to gain every milisecond I can to quicken the response, and there's no reason for the user to wait for the server to send their e-mail before it tells them that everything worked ok. If the info went to the DB, that's all the user needs to know, they'll know the e-mail sent when it shows up in their inbox. I notice this is an issue on my local machine which has no SMTP server and can actually hang the page response up for a few extra seconds because it's throwing errors trying to send something with no SMTP server.
So, I know in my function when I say
[Code]....
it WORKS, but I want to send the e-mail after the return. Is there ANY way to get this to happen?
View 5 Replies
Dec 29, 2010
I have a user control (this has a label to display question and a radio button list to show options).
I am using this user control inside a repeater to display all the questions with their options.
In my repeater page I am not able to capture SelectedValue of radio button list.
protected void Repeater1_ItemDataBound(object sender, RepeaterItemEventArgs e)
View 4 Replies
Jan 7, 2011
I deployed a website where a logged user or an anonymous user can select data and download a XML file. The website generate the XML file in the server and then deliver it.
It works fine in my development environment, but after deployment, the anonymous user can download the file, but the logged user receive this error:
System.UnauthorizedAccessException: Access to the path 'd:HostsLocalUserheringerwebsiteUpload20110107094051.xml' is denied.
It is weird that as anonymous i can do it.
The website server help states this:
"Grant write, modify, delete access rights on website's folder
Your website executes under unique user account that by default has full control over the website's folder.
So your application can create, open, read, write and delete files and folders inside of your root folder.
There is no need and no way to change this permissions.
If, when running ASP.Net application, you still unable to create file or update it, you have to check your Web.Config file for "<Identity impersonate..." tag and remove it.
The only exception is when the application tries to modify a file or folder in "Application_Start" event of Global.asax file. This is by design that user authenticated only after the Application_Start even. Before the user is authenticated your website runs under an identity of Application Pool which is "Network services". That account doesn't have access to the folder of your website.
To make it work you eather have to move the code that tries to modify files or folders out of the "Application_Start" event of the Global.asax file or inside the event you'll need to impersonate your user by code."
But i am not using impersonate and the tag is not in my web.config.
View 2 Replies
Jun 14, 2010
I am writing a program to crawl the websites. The crawl function is a recursive one and may consume more time to complete, So I used Multi Threading to perform the crawl for multiple websites. What exactly I need is, after completion crawling one website it call next one (which should be in Queqe) instead multiple websites crawling at a time.I am using C# and ASP.NET.
View 4 Replies
Feb 22, 2014
How to ? Perform the search function in gridview ...
View 1 Replies
Dec 21, 2012
I am using Linkbutton inside the Repeater Control to display the paging ........and m calling Page change event on client click ....m attaching u code that m using it work fine in some webform but somewhere it didn't go the page change method on clicking page no. .....
I am writing ds code in source code of page......
<asp:Repeater ID="rptPager" runat="server">
<ItemTemplate>
asp:LinkButton ID="lnkPage" runat="server" Text='<%#Eval("Text") %>' CommandArgument='<%# Eval("Value") %>'
Enabled='<%# Eval("Enabled") %>' OnClick="Page_Changed" CssClass='<%# Convert.ToBoolean(
Eval("Enabled")) == true ? "LBR" : "Active" %>'>></asp:LinkButton></ItemTemplate>
</asp:Repeater>
View 1 Replies
Jun 27, 2010
Is it possible to perform an update command which performs addition using a value from a textbox? For example: User inputs a number into TextBox1 (I use regular expression validation to ensure this is an integer).
[Code]....
Basically if the user inputs 5 into TextBox1, I want the update command to subtract 5 from that user's ballance.
View 2 Replies
Feb 23, 2014
How to perform the search function for whole website in asp.net ....
View 1 Replies
Apr 2, 2013
Error:
Security Exception
Description: The application attempted to perform an operation not allowed by the security policy. To grant this application the required permission please contact your system administrator or change the application's trust level in the configuration file. Exception Details: System.Security.SecurityException: Request for the permission of type 'System.Web.AspNetHostingPermission, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed.Local its run fine. when i place in iis. it throw this exception.
View 1 Replies
Mar 19, 2010
I have an aspx page with two buttons, one of the buttons has an OnClick attribute to a function that should be run when clicked. When the other button is clicked there is an if statement checking if the page is a postback, if it is then I run some statements that need to be run when that button is clicked. That postback button works fine. However, the other button, when it's clicked the function it's supposed to call never executes, and the statements inside if (Page.IsPostBack) get executed instead. What can I do to fix this? Is there a way to make the button that calls a function not do a Post back?
View 1 Replies
Oct 27, 2010
I am currently using the built in ASP login function... the destinationpageurl of that login function locates to "loginhome.aspx" for all users... but for one specific user ("Admin") it needs to link to "adminhome.aspx"... just wondering whats the best way to do this? Can I change the destinationpageurl of the login function depending on the user or creating an admin role so "If membershiprole = 'Admin' redirect to 'adminhome.aspx' End If" or can I just add some code behind the login function so "If User.login.Name = 'Admin' Then destinationpageurl = 'adminhome.aspx' End If" think I have already tried this on the login1_authenticate event but it didn't work
View 3 Replies
Dec 17, 2010
I am using my aspnet membership for storing user profile related information in the database and I am looking for a way to access that information out of database from a function like Member.GetProfile. I am just wondering of any of the membership classes give thet functionality that I can actually access the information out of Membership database.
Somebody suggested me follwowing thread:
[Code]....
I am "Profile" object is not recognized in my code I think they are trying to refer to some some instance of a class here by the word Profile but I am not sure what instance is that.
View 2 Replies
Dec 1, 2010
Is it possible to perform user management (store user info, login , logout etc) without using session or cookie?
View 3 Replies
May 14, 2010
i am developing webservices.In that i want to maintain state information so that all WebMethods could be access only after Login.I have tried but getting problem.I am attaching my code.Any other alternative will also be welcomed.
[
WebService(Namespace = "http://amSubfah.org/")]
[
[code]...
View 1 Replies
Feb 6, 2011
I would like to access current authorized user from a cs file (class) in app_code. Is this possible?
I tried Membership function and HttpContect.Current.User but both return null.
View 2 Replies
Feb 2, 2011
I am using a repater whose item template is having a dropdownlist. Now i want to access that dropdownlist from a button click event. Here is the code iam using :
protected void btn1_Click(object sender, EventArgs e)
{
foreach (RepeaterItem item in rptWord.Items)
{
DropDownList ddl1 = (System.Web.UI.WebControls.DropDownList)rptWord.FindControl("ddlWord");
}
}
But m getting ddl1 as null. For this i created a function which is as follows:
public void myFunction(object sender, RepeaterItemEventArgs e)
{
foreach (RepeaterItem item in rptWord.Items)
{
DropDownList la = (System.Web.UI.WebControls.DropDownList)e.Item.FindControl("ddlWord");
}
}
using this function iam able to access the repeater but i guess its not possible to call this function on button click event .
View 3 Replies
Oct 15, 2010
lets say I want to make a label of repeater1 visible in repater2's ItemCommand() method..
e.Item.FindControl("rpt1Label").Visible=True;
is not working..how else do you do it ?
[EDIT]
changed that to repeater1.FindControl("rpt1Label").Visible=True;
This is throwing object reference null exception
View 1 Replies
Nov 17, 2010
I am using passwordrecovery control.
After entering username and keying enter key(from keyboard) it was not firing submitbutton_click event. So i have added defaultbutton property in the panel control, and it is working fine. And my problem here is..
Clicking on submit button it is showing security question. After answering the security question, i have to click on the submit button either by mouse click or tab enter.
What i need to do is.. after answering the security question, I should be able to hit enter key instead of mouse clicking on submit button.
View 3 Replies
Mar 9, 2010
Im working on an application that has a login section that accepts a username and password. On successful login a userid is returned and encrypted with TripleDesKey. The user details are then stored in a session object. We already have a class library that performs encryption and decryption using a key in the web.config file. I basically want to be able to access the user details of the currently logged in user in a page accessed from the main site that may be in a different domain, but is effectively part of the same site, so I wont have access to the session object from the main site. so basically a user logs in, I have the user details stored in a session object, I also have access to the encrypted userid also in a session object. If a user then clicks a link to another page that is in a different domain, how do I persist the userID?
I suppose I could I tag the encrypted userid to the querystring, but security could be an issue here (even though the id is encrypted, someone could still modify it)
View 2 Replies
Oct 31, 2010
i want to know the number of users wich access to my site and show it
View 4 Replies
