dears,
am developing web application that use Tablet PC which created in windows application as Windows Control,and use the windows control through html by <object classid=......>,
after that i have many errors
1)when i do save image or upload image it appear SecurityException (the save,upload image from windows control).
that is the Error:
System.Security.SecurityException: Request for the permission of type System.Security.Permissions.FileIOPermission, mscorlib, Version=1.0.5000.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 failed.
2)mabey the clients not install Microsoft Tablet PC files, ineed to register a Microsoft.Ink.Dll in client,to make client work at this application easly without any problems.
please if any have idea reply to me.
Security Problems
DBizFoShiz
In addition to those steps, you need to make sure that your code is granted FileIOPermission to start with. (Since allowing arbitrary code over the Internet to just Assert for whatever permissions they want would be a pretty serious security issue
).
The easiest way to do that is to strongly name your assembly, and have an administrator on each machine you want your code to run on use caspol to trust it. (for Internet apps: caspol -ag 1.3 -strong -file <assembly> FullTrust)
smileabc
i do this line in client, but it not work,
what am need to add FullTrust of both Intranet and Trusted sites,
note: it is a web page has a windows user control(dll file), that dll file will Save , Load iMages,
when am do full trusted for intranet and trusted site zones, it work successfully, other wise not work,
ineed to do fulltrust via coding in the client who request the page.
please provide me a clear answer ,
thanks
Gumbatman
Dear Shawn,
this is what am doing in my project:
1) am add AllowPartiallyTrustedCallersAttribute in my Assembly file.
2) am add new FileIOPermission(PermissionState.Unrestricted).Assert(); in my code, but the problem still.
3) i register my Dll file in GAC.
please provide me with any information to solve this problem.
idont have a good knowledge in .NET security, and also am read the site but there is many thing am not understand it well.
can you help in details what i must to do, please.
EricMc
Dear Shawn,
i need to know how can i make full trust in client machine ,
my application work successfully, but when the trusted level is not full tust, it will not work,
can i know how to fix this problem
smooth3006
Sh&#226;D
i do a strong name for the dll file, and i register it in GAC as i told you, but about caspol where add the code.
the problem still appear.
i have inkArea.dll file where called from HTML page,
at my computer the project work successfully and also in the client but when save or load an image security error will appear.
i need to provide me about caspol where to add it exactly in inkArea.dll load function or where,
am new in a dll files and security , idont have any idea about these things.
note: am make the dll file in the client as trusted by Framework wizard, and its work, but i need to make it trusted by code.
thank you.
baron5038
If you're hosting your control in a web page, then by default it will run with the Internet permission set, which will not grant you FileIOPermission. Your best bet is to strongly name your assembly and have users grant trust to that strong name. You then have to Assert at the entry points to your control. More details can be found here: http://blogs.msdn.com/shawnfa/archive/2003/06/26/57026.aspx
-Shawn