I'm using a masterpage on my website and the images appear correctly on all pages except the secure pages. The login page is formatted correctly, its just the page that is held in the secure folder. Both the header and footer images are either not appearing or are formatted incorrectly.
Code from the masterpage is below:
[Code]....
my background image is not appearing in other pages. in master page it appear and if the webforms is in the same level with masterpage it also will appear but if is different it will not.
View 8 RepliesIn my master page, I'm using a javascript dropshadow. Obviously, I want it to appear in all of my content pages, but at the moment it's only showing in my home page. I've not done anything to override my master page (that I know of!), so I'm quite confused. Has this happened to anyone else? What other info do you need?
View 4 RepliesI have installed iis5.1,6,7 version on my computer. When ever i am exicuting my asp website i am not able to get the images in intenet explorer.
View 3 Repliesmay be i m asking a very vague question, but how to remove the dots that appear for spaces in the design and code view of the page. Dont know how it came and how to remove it and it looks very confusing.
I m new to this forum. Co-operation required
If I have users upload images to my web server, and they are simply stored in a folder, how secure are they? This of course is assuming that IIS is configured not to serve image files directly from a browser request, or mods are made in the web.config file to prevent direct access, etc, ex:[URL]
View 5 RepliesI have read that the best way to secure images from being access would be to place them into a database rather than into a file system or virtual directory. Is this correct? I am creating a site that needs to have the images the user upload be secure as possible. I initially programmed the images to be uploaded to a database then I reprogram the site to have them store in to a file system/virtual directory. I'm still up in the air in terms of which one to use. Again, security is my primary concern.
View 4 RepliesI am building a ASP.NET website that has members pages. I have created a folder where I keep the members pages in and that can only be accessed by logging in or creating a new account. The problem is how do I make the url of these members pages secure, so that someone cant simply give the url to another user for them to copy into a browser or bookmark.
View 2 RepliesI want to understand the concept of relative paths as I have been tired of trying out my luck with adding JS files in the master pages and making them to work consistently.The scenario I have studied is as follows.1. Master page is present in subfolder under root, script file is present under a separate subfolder under root.
+Root
+MasterPageFolder
+ContentPageFolder
[code]...
any code or control used to allow clients to manage their own articles/news (text + images) on their asp.net websites? I mean only text and images with exact structure, not modifying the whole layout.
View 4 RepliesI read that with IIS 7, ASP.NET has become an intrinsic part of IIS instead of an external ISAPI DLL. They say that the main reason for this change is that it's now possible to secure files that previously have not been handled by ASP.NET.
I want to check this out, so I have created a Forms authentication web site and added the following files to it:
Default.aspxLogin.aspxHtmlPage.html
Moreover, I have set the web.config to deny anonymous users and I have enabled Forms authentication in IIS.
Here's my problem:
While the ASPX page perfectly requires me to log in, the HTML page does not. It just yields error 401.2.
So my question is:
What did I do wrong? What is necessary to have HTML files (or images) secured using Forms authentication?
I am developinga site whichI want to contacin 2 'sub sites' - one for business clients and one for Home clients.
I therefore want to base each 'sub site' on a slightly different master page.
I have a base master calleed master1.master:
[Code]....
I then created a home.master using master1.master as its master:
[Code]....
BUT... on the web page all the contentplace holders are flagged as in error eg 'Could not fine "head" in the current master page or pages' where head is replaced by each placeholderIf I change the MasterPageFile= to point at master1.master the errors go away - but of course I dont have the differences in the page (at the moment just the menu)
I have tried the suggestions in http://forums.asp.net/t/1218788.aspx/2/10 but although the errors go away, the images in the Master1 left column don't get displayed and some of the css seems to disappear
I created a .master page having images,.css file. If i created I .aspx page then it displays normally (with master pages content) but if I create .aspx page inside some folder then design is not applying to the sub pages (Only for pages which are inside the folders)
View 7 RepliesMy web application will be launched through existing thick client applications. When launched, an HTTP POST request will be generated including information like the userID and additional context information (basically stuff like the target user's name, birthday, etc.).
My plan for authentication is for there to be a look-up table in the database. If the username is already there, automatically login the user, but if there is no entry in the database, redirect the user to an initial login page which will be used to create that database entry.
My question is how to secure this against MITM and other security holes. How can the request generated through the thick client be on an SSL connection? Doesn't an SSL connection have to be authenticated with the username (and password) first? And if so, will the additional context information be publicly exposed until the user is logged in?
I have a browser compatibilty problem with https? I have SSL installed and is in usage. Until today morning, my https part is working well. From then, Https is shown as https(with slashed in red color) saying the page has some insecure content. I have not changed any code and suddenly i see this problem in chrome. In IE 8, i see the same problem but on every page, it shows me a popup if i should allow to opne secure and non secure or just secure. Firefox has no issues . It shows correct https without any problem. I am fed up with it searching all over. Why is this happenening for me in Chrome and IE 8.
View 3 RepliesI have a custom mini login user control that I have embedded in the top of my website which shows on every page. These pages are non-secure HTTP://. I would like to avoid having to redirect the user to a HTTPS page to perform the login but I definitely don't want to send login credentials to the server in plain text.
I am trying find a method to send the user's login credentials encrypted via https from a non-secure (http) page.
I tried to set the postbackurl for the login button to itself but in https, but the user's input is not retained and the buttonLogin_click is not fired when I set the button postbackurl property. My ASP.net web application is VB.Net framework 4.0
I am assuming this can be done because I see lots of websites where login fields are on available on every page and they are running http and I can believe they are not encrypting the login credentials.
1.store them in the file system of web server and put the url in the table?
2.store them as type "image"?
3.store them as varbinary(max) BLOB?
4.store them as filestream data?
I had an ASP.NET 1.1 application that I converted to 2.0. I deployed the application under IIS 7 on Windows 2008 Server. I can browse images and static html pages but I can't browse .aspx pages. When I try to run any .aspx page, my browser says "Internet Explorer cannot display the webpage". My application pool is set to .NET framework 2.0 with Integraded in Managed Pipeline mode.
View 1 RepliesI only want my web images to be visibleSimpliied, a digital media page pulls html content from a database using SQL security and renders that HTML. That digital media page is secured in that only a returing Paypal transaction user with a matching transaction can access it. But today that HTML content makes references to images on my site, those images can be freely directly over the web.The backend is asp.net 2.0. Would it be possible for me to secure the web folder with my images to some generic user and impersonate access from my pages so that attempts to access images directly fails?f not, any way to solve all that html content on serverside somehow and turn it into something else I can secure?
View 1 RepliesI have on web application and I wand to split pdf pages to corresponding images with open source or free dll.
View 1 Repliesthis is probably something really simple but I cant see what! Any images I have in a masterpage aint showing in child pages, all i get is the box with the red cross in it. Dont think Ive done anything different from usual and its not something thats happened in other sites so im kinda scratchin my head with it.
View 5 RepliesI am not sure this is the right place to ask.I am using Visual Web Developer 2010 Express, and have loaded an existing project.I have an image folder, and in the folder I have some images (.png)I need to find all of the ASP.NET pages which uses one of this image,but had no luck. There are hundreds of ASPX, ASPX.vb pages to search...IS THERE A WAY TO SEARCH WHICH ASPX or ASPX.VB pages are using a image file?For example,If I have C:TESTIMAGESTEST.PNG file,I want every file in the project pages which includes:
[Code]....
I have a GUI when i log in i create a cookie and it encrypt it. I am usin SSL.
I check in the Login.aspx page if the cookie is secure, which it is. but then before going to the default page it goes to the Global.ascx page.
Here in the Application_AuthenticateRequest it gets the cookie and decrypts it for the default page..
Now i know that it is getting the same cookie as all the other attributes match the one that was created in the Login.aspx page excet that the secure value is "False".
this is the case for all other pages after default. the value of the cookie.secure is false.
why is this happening as i want all the pages to be secure by SSL.
Also the pages are opening as https not http.
here is my web.config
[code]....
After logging to the mvc site using a secure connection (https), calling actions using https connection show up with the user logged in but calling actions using http it bahaves as if user didn't log on. Since I need to use a virtual directory for https connections(and can't use that directory for http connection) Https links start with: [URL]
View 1 RepliesI'm working on a legacy web application - frames and a mixture of html, asp and aspx. The entire site is https. For some strange reason when I hit a specific page I get the magic message that says the Page contains both secure and nonsecure items. (IE obviously doesn't want to tell me what those resources are) I have checked the page that's being loaded and there are absolutely no http://... links - everything is relative links.
I have fired up fiddler and checked what's being requested - everything looks fine. I am completely at wit's end here. I have absolutely no idea why I'm getting this message, but it's completely screwing with the site.
