Security :: What's The Best Method To Control Access To Documents And Jpgs At Runtime
Oct 28, 2010
I want to be able to control access to photos and PDF documents at run time.
I want users to be able to download the photos and documents as soon as they pay for them instead of having to wait for me to email the items to them.
What's the best way to do this? I am using VB.net, SQL Server, and ASP.net.
I am entry level to lower-middle in my programming skills, but can usually follow along.
View 3 Replies
Similar Messages:
Apr 8, 2010
I am using NeatUpload file upload control: but issue can be generic i am thinking .. that's why posting on asp.net site...
Code works fine on my DEV machine (both file system and localhost) but when i deploy the code on Staging or Prod (on web server)... upload feature works fine but when I try to access the uploaded documents from staging server or Prod server, it says Access denied and cannot open the PDF document??
tried all the options but could not solve this issue... is this related to control or settings on my IIS...
before using NeatUpload(single upload) we were using microsoft upload control and it works fine in accessing the documents....
again upload works perfectly fine... the issue is accessing the documents..
I am using :
try
{
saveLocation = <paht name> + fileName;
FileUpload1.MoveTo(saveLocation, MoveToOptions.Overwrite);
}catch{<some return value>}
finally
{
FileUpload1.FileContent.Position = 0;
FileUpload1.FileContent.Flush();
FileUpload1.FileContent.Close();
FileUpload1.FileContent.Dispose();
FileUpload1.Dispose();
GC.Collect();
}
View 7 Replies
Mar 3, 2010
provide secure online access to documents and reports for their customers which entails creating a secure login for clients to access PDF documents to view and print. Aslo to display all reports available on web server.ould this be as simple as making sure username & password match an entry in a username table using select parameters(of course) theninstituting a Session("loginokay") = True along with something like Session.Timeout = ?
View 5 Replies
Sep 23, 2010
I have a Web Form that uses Master Pages. I only tell you this part so you understand the layers.
On the page, I have a web user control. I can see public methods on that user control by simply calling userControlName.PublicMethod();
However, there is a button on this page which generates additional content. This content is based on a placeholder control and adding additional web user controls :
[Code]....
Now, on the main form, I want a submit button that will call a public method of each "subForm" that was added at runtime.
I have tried various forms of Control C = This.Page.Master.FindControl("cpBody").Findcontrol("ctl01")... etc, but can never seen to get the right combination.
Below is a listing of the web form
[Code]....
View 4 Replies
Jun 5, 2010
I have usercontrols which are loading at runtime in my aspx... (This part is working fine).
Now i need to invoke the methods of the user control which has been loaded..
How to invoke those methods??
like if i have 3 methods in usercontrol which is loaded at runtime:
[Code]....
Now how to invoke these methods at runtime?
View 11 Replies
Jul 12, 2010
I have a WCF service and there are four methods in it. I want to allow 2 methods to client 1 and the other 2 methods to client 2.
View 2 Replies
Sep 9, 2010
I'm working on a website where it should be possible for registered users to upload word documents. The administration of users is done through Membership and Profiles. When the documents have been uploaded, the following needs to be achieved:Non-registered users should not be allowed to download documents I should be able to control which users that has access to which documents I should be able to register which user downloads which documents I should be able to track how many times a document has been downloaded
Can this be achieved be using Membership and Profiles?
View 1 Replies
Jun 23, 2010
I have a parent control and a child control. On parent control load I am setting a cookie value. On child control I am checking if this cookie is not null then call parent control's CalculateDeliveryAndTax() method. How should I go about accessing from child control, parent control's CalculateDeliveryAndTax() method.
View 2 Replies
Apr 1, 2010
How to add a form and a loginview control at runtime? and how can i set loginview LogedInTemplate and AnonymouseTemplate at runtime?
View 4 Replies
Jul 19, 2010
I have a Solution in which i m using Gridview which stores image inside it. Every time when user uploads images and clicked on button, image get inserted into Gridview.
But every time user hits on button page get postback,so to avoid this i used web method which is get called when user hits on button (html button). But when i m trying to bind gridview in this method.It is not get accessed .
how i access this gridview inside web method? Why Web methods are always static?Is there any other way to do this?
View 2 Replies
Jun 30, 2010
I have a static method and need to get the Textbox text in it. But I get "An object reference is required for the non-static field, method, or property 'Members_ETC_Tab5.TextBox1' " when I use TextBox1.text in the static method so I modified my Method as below
[Code]....
but I see that txtBegin is null. How can this be fxed?
View 12 Replies
Apr 19, 2014
How can access html control from webmethod
View 1 Replies
Mar 29, 2011
I have a shared folder with directories on a remote server that I am trying to access with the method System.IO.Directory.GetDirectories(). This folder is based off of the credentials gotten from windows authentication. My problem is that everything works fun when I debug the Web Application in the built in IIS in VS, but when I set it up in IIS V5.1, it tells me that I have an invalid username and password. I am using Visual Studio 2005 on a Microsoft XP SP2 machine.
View 5 Replies
Aug 28, 2010
There is an ASP.NET application www.example.com/APP. From within the application several documents - for example office documents DOCX, PDF, etc. - can be opend. They are accessed via some virtual directory as in
www.example.com/APP/VIRTUAL/letter.pdf.
Of course, the documents may only be accessed from within the application, after the user has been identified succssfully. Some documents may only be opened by some privileged users. It should be impossible to open letter.pdf by simply entering the above url into a browser
I am thinking about the following...
The name of the virtual directory is kept secret. After the user has successfully logged into the application, some secret is created. The secret contains the user's ID and some time information (valid from / until). Then, if a document is to be referenced from within the application, the url www.example.com/APP/<secret>/letter.pdf is referenced. In IIS the secret is checked. For this, some of my code is called, when serving a request. If successfull, the url is rewritten as www.example.com/APP/VIRTUAL/letter.pdf. I tried several components, such as the IIS URL Rewrite, IHttpModule, IHttpHandler. Unfortunately, I did not yet succeed.
View 2 Replies
Mar 18, 2010
I'm working on an application that has moderately complex security requirements. Each user can have several permissions like "Load," "Save," etc. Is there a way I can use custom attributes (or perhaps even an ASP.NET built-in security protocol) that will let me hard code a permission requirement above the corresponding method? Then ASP would have to make a call to a security method which I made which can see if the user has that permission in their permission set. For example:
[Code]....
And if the user logged in does not have the permission, fire off some other method that can display an error. I've looked at the role based security that asp.net offers and it doesn't suit our needs because we have many roles and they differ by organization.
View 1 Replies
Jul 14, 2010
This could be very straight forward for some of you, but I got caught up. I am doing very simple test - browsing from IIS Manager to see the default page or "under Construction", however I am being challenged to provide my login credential . When I provide my login credential, I am able to see the default page. I wanted to see the default page without providing my credential since Enable anoymous access + basic authentication I am simply wanted to see the default page asit is working on other servers except this one. I have included screen print to make sure may question is clear.
View 3 Replies
Apr 29, 2010
I've read about how I can create a custom viewengine however is it possible to load an assembly which has a method decorated by my own custom attribute say..[RenderWithView], then I dynamically invoke that method and apply a view engine to it, finally returning the html?
View 3 Replies
May 9, 2010
i want to upload images,documents in my application tempfloder using AsyncFileUpload control of ajax
View 3 Replies
Oct 25, 2010
I am to access a method on my master page. I have an error label which I want to update based on error messages I get from my site.
public string ErrorText
{
get { return this.infoLabel.Text; }
set { this.infoLabel.Text = value; }
}
How can I access this from my user control or classes that I set up?
View 3 Replies
Jan 14, 2010
I have been investigating the best way that I can secure my MVC application and restrict specific functionality from users. My first approach was using role management. I thought of expanding the membership database by writing an interface that would allow me to create groups of functionality i.e. 'manage customer' and then another table would hold 'activity' information for that group i.e. 'create', 'edit', 'transfer', etc. I would then create another table to link groups of functionality to specific roles and then assign my users to the roles. At first this seemed ok but I soon realised that I was a level of granularity missing. Not every user who is assigned to a specific role should have access to all of the functionality for a given group attached to a role, damn! I then thought that I could create another linking table that would hold 'access exceptions' i.e. this table would contain entries of a userid and activity id that a specific user was excluded from.
Does this approach make any sense? Is the creation of databases tables and an interface the best approach to this?
View 1 Replies
Nov 17, 2010
I am using passwordrecovery control.
After entering username and keying enter key(from keyboard) it was not firing submitbutton_click event. So i have added defaultbutton property in the panel control, and it is working fine. And my problem here is..
Clicking on submit button it is showing security question. After answering the security question, i have to click on the submit button either by mouse click or tab enter.
What i need to do is.. after answering the security question, I should be able to hit enter key instead of mouse clicking on submit button.
View 3 Replies
Jun 21, 2010
I am interesting in using a Discretionary Access Control List with Membership provided by .Net Security.
Are there any implementations of this that exist in .Net or open source?
Is there a way to use .Net security as a DACL?
View 1 Replies
Aug 8, 2010
I am working on an application that resides on a development server on our internal network. The application was originally written to use Membership and Roles. We got busy almost a year ago before the app was finished, and now we are trying to get it ready to use internally.
The login page works just fine, but I have lost the ability to controls users and roles. I am running Visual Studio 2010 Professional now on a Windows 7 VM. I can open the application fine but there is no Web Administration Tool available for me to manage users or roles. If I go to Website -> in Visual Studio, there is no option for ASP.NET Configuration in the drop down menu. It simply isn't there.
How can I regain access to manage users and roles for this application? We are using Forms authentication and the database resides on a SQL Server 2005 instance on a separate box from the web server and my local VM.
View 6 Replies
Oct 15, 2010
lets say I want to make a label of repeater1 visible in repater2's ItemCommand() method..
e.Item.FindControl("rpt1Label").Visible=True;
is not working..how else do you do it ?
[EDIT]
changed that to repeater1.FindControl("rpt1Label").Visible=True;
This is throwing object reference null exception
View 1 Replies
Jan 28, 2011
I am trying to use jGrowl in ASP.NET, but am getting a Microsoft JScript runtime error: Object doesn't support this property or method error when trying to run the page in IE.
<link rel="stylesheet" href="css/jquery.jgrowl.css" type="text/css" />
<style type="text/css">
div.jGrowl div.smoke {
background: url(images/smoke.png) no-repeat;
[Code]....
View 1 Replies
