Url's Shows Non Secure When Moving Away From A Secured Link Without Hardcoded Url's In Html
Apr 25, 2010
I have an asp.net site. It has an order form which is accessible at https://secure.example.com/order.aspx. The links on the site do not include the domain name. So for example the home page is 'default.aspx'.The issue is that if I click on a link like the home page from the secure page, the url becomes https://secure.example.com/default.aspx instead of http://www.example.com/default.aspx.What's a good way to handle this? The scheme should automatically work using any domain name based on where it's launched from. So if the site is launched from 'localhost', moving away from the secured page, the url's should be http://localhost/...
I have a Mail class set up on my site that should be sending an email to the user after they make an account. It will include a link for them to click on that activates the account - I have success in sending the email, however my hyperlink shows text only and does not link to anything.
here is a section of my mail setup
[Code]....
Here is the section that inserts the link
[Code]....
I just put yahoo for testing purposes. So basically I see "Click on the link below to activate your account" and then "Click Here" with no link.
I am outputting the content of a page from a subroutine. The weird thing is, the code behind is writing this to my aspx page. <asp:Hyperlink ID="HyperLink1" runat="server" CssClass="HoverMenuText">more</asp:HyperLink> When the page is viewed live, the hyperlink is not a hyperlink because using the browser to "View Source", the html shows the exact same line! It wasn't converted to the format like "<a id="ctl00_ContentPlaceHolder1_HyperLinkHover">HoverMenuTest</a>" So for some reason, the server is not converting this asp control to an html control. Any ideas why it wouldn't do that?
I have a Sql string something like this.string sqlstring = "Select field1, field2 from table1 where field1 = 1 and field2 = 'xxx' group by field1, field2 order by field1 asc" Question: During runtime, based on the user selection, I have to replace 1 and xxx in the sql string.What is the best way to do this?
I have some static (pure html) pages in my MVC application that I need to authenticate, so that not just anybody can look at them. Is there an way to do this without moving all the code to asp files and adding a controller and from there use the Authorize attribute? I would really prefer to not need to do this!
on a server, I am trying to deploy a website. Originally, the page styles did not work and the some of the .gif and .jpg images didnt show up. I fixed the css problem by adding a http handler mapping through IIS. I tried the same thing to get the images to work but that didn't fix the problem. If the website was fully deployed im pretty sure the images would work so I dont want to change their paths (same with css). The handler mapping i added for css was for "*.css" of type system.web.staticfilehandler. This is the same type i tried for .jpg and .gif. I don't know specifically the purpose of system.web.staticfilehandler because msdn info is very short.
My web application will be launched through existing thick client applications. When launched, an HTTP POST request will be generated including information like the userID and additional context information (basically stuff like the target user's name, birthday, etc.).
My plan for authentication is for there to be a look-up table in the database. If the username is already there, automatically login the user, but if there is no entry in the database, redirect the user to an initial login page which will be used to create that database entry.
My question is how to secure this against MITM and other security holes. How can the request generated through the thick client be on an SSL connection? Doesn't an SSL connection have to be authenticated with the username (and password) first? And if so, will the additional context information be publicly exposed until the user is logged in?
I have a browser compatibilty problem with https? I have SSL installed and is in usage. Until today morning, my https part is working well. From then, Https is shown as https(with slashed in red color) saying the page has some insecure content. I have not changed any code and suddenly i see this problem in chrome. In IE 8, i see the same problem but on every page, it shows me a popup if i should allow to opne secure and non secure or just secure. Firefox has no issues . It shows correct https without any problem. I am fed up with it searching all over. Why is this happenening for me in Chrome and IE 8.
I have a custom mini login user control that I have embedded in the top of my website which shows on every page. These pages are non-secure HTTP://. I would like to avoid having to redirect the user to a HTTPS page to perform the login but I definitely don't want to send login credentials to the server in plain text.
I am trying find a method to send the user's login credentials encrypted via https from a non-secure (http) page.
I tried to set the postbackurl for the login button to itself but in https, but the user's input is not retained and the buttonLogin_click is not fired when I set the button postbackurl property. My ASP.net web application is VB.Net framework 4.0
I am assuming this can be done because I see lots of websites where login fields are on available on every page and they are running http and I can believe they are not encrypting the login credentials.
I have a GUI when i log in i create a cookie and it encrypt it. I am usin SSL.
I check in the Login.aspx page if the cookie is secure, which it is. but then before going to the default page it goes to the Global.ascx page.
Here in the Application_AuthenticateRequest it gets the cookie and decrypts it for the default page..
Now i know that it is getting the same cookie as all the other attributes match the one that was created in the Login.aspx page excet that the secure value is "False".
this is the case for all other pages after default. the value of the cookie.secure is false.
why is this happening as i want all the pages to be secure by SSL.
After logging to the mvc site using a secure connection (https), calling actions using https connection show up with the user logged in but calling actions using http it bahaves as if user didn't log on. Since I need to use a virtual directory for https connections(and can't use that directory for http connection) Https links start with: [URL]
I'm working on a legacy web application - frames and a mixture of html, asp and aspx. The entire site is https. For some strange reason when I hit a specific page I get the magic message that says the Page contains both secure and nonsecure items. (IE obviously doesn't want to tell me what those resources are) I have checked the page that's being loaded and there are absolutely no http://... links - everything is relative links.
I have fired up fiddler and checked what's being requested - everything looks fine. I am completely at wit's end here. I have absolutely no idea why I'm getting this message, but it's completely screwing with the site.
I have a route (the first one listed) which looks like this:
routes.MapRoute( "TopicRoute", // Route name "forums/{forumSlug}/{topicSlug}", // URL with parameters new { controller = "Forums", action = "Topic"} // Parameter defaults );
I can browse to: /forums/my-forum/my-topic and the page loads fine. Yet I have a Html.ActionLink that looks like: @Html.ActionLink(item.Title, "Topic", new { forumSlug ="my-forum", topicSlug = "my-topic" }) And it won't generate the correct link syntax for me? It generates: <a href="">My Topic</a>
I have created a new ASP.Net MVC 2.0 project.When I open the Site.Master and look at the navigation you have the following:
[Code]....
When clicking the link, it gives me a 404 file not found and my URL is the following: http://localhost:2053/Services.aspxHow can I create 4 simple html link that has the href property pointing to my 4 files inside my
I would like to ask how can i make an html anchor (a element) or even any object to do a postback or to execute an server side method?I want to create a custom button (a wrapped with some divs to do some custom them) and i want to implement OnClick to be look like the ASP.NET LinkButton?Like<a href="#" onclick="RunServerSideMethod()">Just a simple link button</a>
I have navigation and many link on my webproject from html action links. They are ugly with underline. I would like to insert some image with name or play with styles of action link.Is it possible? How to do that?
I'm look for a way to pre-populate Asp.net form from E-mail Link. I tried several method such as:[URL]Our vendor is saying this should work but I'm having no luck with it. If someone can tell me what might be wrong with this or if there is another solution. This is being used for an e-mail campaign so that the user receiving the e-mail does not have to fill the form link is navigating to.
I have a column in my database that stores images that are links, when i populate them in a gridview on my asp.net page I want it to display the image as a link but when i did it i just get the text below.
My goal is to have a list of the images and when a user clicks the image they will go to another page. This is a start of my page, and i was attempting to use a gridview but now I am not sure what to do
I have an html page which contains link to open pdf file. however this link opens in adobe reader when i click on it. I have set target property to blank. but it doesnt work either. I want to open this pdf file in new tab in the same window.