Web Forms :: How To Prevent Web.config From Showing In Browser When Error
Oct 28, 2010
Whenever there is a configuration error inside the web.config, the server sends a yellow screen of death to the browser with a few lines around it. My problem is I am using impersonation and I don't want the users to see the impersonating username/password. So how can I prevent the server from showing the web.config code??
I have a custom config file in my application say my.config. Suddenly I ecnountered with some error regarding one of the settings inside the config file and the strange thing happens- my content of the config file get's rendered in the browser in the form of error. This is a big security issue for me. My question is how to prevent the content of my config files from rendering in the browser. Note I have already this setting in my web config:
I am using VWD 2010 beta 2 and Ajax toolkit 3.031106, the problem is mainly the calendar extender.I have the controls in my new tab but cant drag the calendar extender (just get the crossed black circle cursor). Some control I can drag down other not and none of them shows when I look at the page in my browser.there are no errors displayed at all.
I want to add mime type in web.config to make downloading files for users.but after adding mime tag, website starts showing internal error 500 and removing this, it runs fine but when user click on files to download then it show error that file not found. So I need to add proper mimetype for my uploaded files. So pls tell me the proper way to add it to web.config file.
The web app in question provides a UI for editing a client (in the business sense, not the browser sense), identified by a ClientID. I store the ClientID in Session, which gets passed from page to page, along with a number of other pieces of data in Session. Works great.
The problem is that if the user opens a new browser window using Ctrl N or File->New Window (in IE), the new window comes up with the same page as the current page, with the same session info. Then if the user navigates to a different client in the 2nd window, the ClientID in session refers to the new client. If they go back to the original browser window and save, the original client gets saved using the 2nd ClientID, and all hell breaks loose, because now the data from the two jobs are intertwined.
I have enabled trace and verified that the new browser window uses the same SessionID as the original. If an entirely new instance of IE is opened, it has a different SessionID, so is not a problem. I have not yet investigated other browsers, such as Chrome or Firefox.
Is there any way to determine if a browser instance is opened for a web app which is already open in another window or tab? Or to prevent that from happening?
My problem is am filling a form in a webpage, and click on save for instance, take the URL of mu webpage and paste it in a new window and it loads all the information I subscribed, how can I prevent that knowing that I used the Below code and it does nothing
I need to know how to add a randomly generated token as an additional parameter in my request.
how to prevent the two session on a single browser ie: first i opening a site on mozilla then login after logged in . I am opening a new table with the same url login using different user after that suppose there is one link called view my profile on user home page if if click the link on first tab browser, it showing the user details on second tab browser user details ie: previous session.how to prevent or avoid this ?
i have a template field which shows a picture of a paper clip. Upon click it will open a file from a shared directory. It is a basic application for Expense Reimbursements in which users are allowed to upload scanned expense receipts. After the receipts are uploaded they can also be viewed by clicking on the paperclip icon. hile I want them to be able to save and open the files from the shared directory, I do not want them to know what the directory name is. I want to prevent them from viewing other user's expense receipts. Share name: \serverAExpenseReceipt$
i want to redirect from one web page to another web page in same server with some query string values, but i don't want to change my URL string and i don't want to display any query string parameters in URL.
When I load the login page & enter user name the textbox of the password is showing the password I want each time I enter the user name, the textbox of the password being empty and I should enter the password myself...
I am running one application where one gridview is there when i am deleting any data there it shows one message for deleting.
for message i used this code:
ClientScript.RegisterStartupScript(this.GetType(), "ShowMessage", string.Format("<script type='text/javascript'>alert('{0}')</script>", "this row is deleted"));
after that i am going to some other page ,after going other page when i click on back button in browser it is coming in the previous page but the message which poped up before again getting popup.
I am build Web site using asp.net 4.0 c# ... There are a forum on my website where user can save his personal details. my problem is that when user submit his detail in database and again refresh URL (f5), event again arise and request go to server, double entry saved in database. How I can handle it.
i want a pop up to be displayed when user tries to close the browser and if user click on "no" [i.e. he don't want browser to be closed] then it prevent browser to get closed.
I have set up the Auto complete control and the web service to populate it, this web service resides within the project that uses it, it works fine on my machine (if I had a nickel for every time I heard that from a developer...) , but when I install it on Dev, the site asks for authentication, then when I select the tab with the textbox that has the Auto Complete control, it asks me for authentication again. If I remove the Auto Complete control, it no longer asks me. The funny thing is, I can enter authentication info OR just click cancel and the web service works fine.
In the IIS site on Dev and in the Web config, I have turned off authentication (in IIS I use anonymous and in the Web.config, I set it to "none") My development machine is in a domain, for some reason beyond my control, both Dev and Prod are not in a domain; both Dev and Prod machines are Server 2008. how to prevent this authentication form from showing???
i just like to ask if you have any idea of preventing the Back button of the browser to navigate back to the previous page after a user log in.Ex:After a user successfully logged in to my website and he/she hit the Back button of the browser.I want this to not redirected to the previous page instead redirected to the same page which is my Main page.Also after a user logged out to my website and again he/she hit the Back button of the browser.I also want this to not redirected to the previous page instead redirected to my login page.
I have an ASP.NET/C# application that exports some data into an Excel spreadsheet using COM interop at the click of a Button control. When I click the button, Excel is opened with the generated spreadsheet. For what it's worth, here is the button code:
<asp:Button ID="export" Text="Export to spreadsheet" runat="server" OnClick="Export_Workbook" />
This works fine, except when I click the button, close the subsequent spreadsheet, and refresh the page. When the page is refreshed after clicking the button, the call to Export_Workbook() is made again and so the spreadsheet opens again. Firefox, for example, says this when you refresh: "To display this page, Firefox must send information that will repeat any action (such as a search or order confirmation) that was performed earlier." This is something I want to avoid.
I'm sure there's a better way to accomplish what I'm trying to do, I'm just not sure what the best approach is.
i want to protect webpage from saving from browser file->save as. i found some sites did it(facebook,orkut). when i try to save pages on that sites only home page saved. how to do this in c#
I have use fckeditor in asp.net. When user open the page containing fckeditor in Chrome. User can resize the text area of fckeditor. I want to prevent this.i.e.user should un-enable to resize the text area.
I am using custom user membership in asp.NET so user is an object that contains members. One of the user's members is "IsCompanyAdmin".I have a few aspx pages for company administrators only.Is there any way to prevent those pages from non-administrator users using the web.config?