Setting validateRequest="false" for an indivual Web User Control - ng.asp-net-forum.windows-hosting_open_forum

CodeVerge.Net ^Beta

Explore

Item Entry

Members

NEWSGROUP

.NET

Algorithms-Data Structures

XML

Zone:

> NEWSGROUP > Asp.Net Forum > windows_hosting.hosting_open_forum

Tags:

Item Type:

NewsGroup

Date Entered:

11/6/2003 3:13:16 AM

Date Modified:

Subscribers:

Subscribe Alert

Rate It:

(NR, 0)

XPoints:

N/A

Replies:

Views:

Favorited:

Favorite

Can Reply: No

Members Can Edit: No

Online: Yes

ng.adobe-macromedia-forums.macromedia-captivate-elearning

3 Items, 1 Pages 1 |< << Go >> >|

	Soderberg
	Asp.Net User

Setting validateRequest="false" for an indivual Web User Control

11/6/2003 3:13:16 AM

0/0

I have created a Web User Control for use in DotNetNuke. It has a couple text boxes that capture HTML from the user. However, when the user submits the form I get the "A potentially dangerous Request.Form value was detected from the client...." error.

This can be resolved by adding the page directive validateRequest="false" on a given page or it can be handled in Web.Config for a whole application. Neither of these work for me, as they both expose too much of my app to potential scripting attacks.

Does anyone know of a way I can allow the HTML in the text boxes to be passed through without triggering the error?

	Andy Smith
	Asp.Net User

Re: Setting validateRequest="false" for an indivual Web User Control

11/6/2003 8:45:38 PM

0/0

request validation can't be turned off at the control level.
However, I was just thinking that if you can require script support, you could probably hook the form's submit event and htmlencode the value to be sent. then the serverside code could htmldecode it before using it.

	hlaford
	Asp.Net User

Re: Setting validateRequest="false" for an indivual Web User Control

11/10/2003 9:32:36 PM

0/0

maybe asp.net 2.0 could provide the capability to disable request validation per registered postback control. then a single control could inform the server that it is built to validate and handle such data.

3 Items, 1 Pages 1 |< << Go >> >|

Search This Site:

Meet Our Sponsors:

Other Resources:

Advertise Here

Invite

History

Resources

SiteMap

3.0.6 issue - file manager - could not find a part of the path

loginstatus control and return url

source control for .net and integrated with visual studio 2005

site maps

masterpage problem

updating references... how do you?

implementing security with custom database

free - popular page module

accessing roles in code behind

need some advice with user roles

file manager problem - subfolder upload (3.0.12)?

"server is unable to prossess page site.master because it is being used by another process"

creating namespace to customize menu control

dnn 3 skin similar to sharepoint

does asp.net security replace the anonymous checkbox?

All Times Are GMT