locked
asp:HyperLink NavigateUrl now throws UnauthorizedAccessException after addition of ajaxcontroltoolkit RRS feed

  • Question

  • User-1980232368 posted

    With Target="_blank" it does not work, with Target="_top", it works.

    Server Error in '/ContactManagement' Application.


    Attempted to perform an unauthorized operation.

    Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.           
    Exception Details: System.UnauthorizedAccessException: Attempted to perform an unauthorized operation.
    ASP.NET is not authorized to access the requested resource. Consider granting access rights to the resource to the ASP.NET request identity. ASP.NET has a base process identity (typically {MACHINE}\ASPNET on IIS 5 or Network Service on IIS 6 and IIS 7, and the configured application pool identity on IIS 7.5) that is used if the application is not impersonating.  If the application is impersonating via <identity impersonate="true"/>, the identity will be the anonymous user (typically IUSR_MACHINENAME) or the authenticated request user.
    To grant ASP.NET access to a file, right-click the file in File Explorer, choose "Properties" and select the Security tab. Click "Add" to add the appropriate user or group. Highlight the ASP.NET account, and check the boxes for the desired access.
    Source Error:

    An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.

    Stack Trace:

    [UnauthorizedAccessException: Attempted to perform an unauthorized operation.]
       System.Security.Principal.WindowsIdentity.get_AuthenticationType() +275
       System.Web.HttpRequest.CalcDynamicServerVariable(DynamicServerVariable var) +9676203
       System.Web.HttpServerVarsCollectionEntry.GetValue(HttpRequest request) +33
       System.Web.HttpServerVarsCollection.GetServerVar(Object e) +42
       System.Web.HttpServerVarsCollection.Get(Int32 index) +33
       System.Web.HttpServerVarsCollection.GetValues(Int32 index) +12
       System.Collections.Specialized.NameValueCollection.Add(NameValueCollection c) +84
       System.Web.HttpRequest.FillInParamsCollection() +90
       System.Web.HttpRequest.GetParams() +80
       System.Web.HttpRequest.get_Params() +30
       AjaxControlToolkit.ToolkitScriptManager.OutputCombinedScriptFile(HttpContext context) +48
       AjaxControlToolkit.ToolkitScriptManager.OnInit(EventArgs e) +51
       System.Web.UI.Control.InitRecursive(Control namingContainer) +134
       System.Web.UI.Control.InitRecursive(Control namingContainer) +290
       System.Web.UI.Control.InitRecursive(Control namingContainer) +290
       System.Web.UI.Control.InitRecursive(Control namingContainer) +290
       System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +489
    

    Version Information: Microsoft .NET Framework Version:4.0.30319; ASP.NET Version:4.0.30319.18067           

    Friday, February 28, 2014 5:16 PM

Answers

  • User-933407369 posted

    hi datahook,

    you aslo need to add the user account you are using to login to the server to local Administrators windows group on the server. It is happening because you don't have appropriate permissions to do the modification to your web.config file from your current login account.

    By default, since ASP.NET runs under the IIS-related IUSR_machinename account, I guess it will by default have limited access to operate your Directory. So please try to impersonate a more powerful user like this:

    <identity impersonate="true"  userName="username" password="password"/>

    please refer to the links for details:

    ASP.NET Required Access Control Lists (ACLs)

    http://msdn.microsoft.com/en-us/library/kwzs111e.aspx

    ASP.NET Impersonation

    http://msdn.microsoft.com/en-us/library/xh507fc5(VS.71).aspx

    Hope it helps you.

    • Marked as answer by Anonymous Thursday, October 7, 2021 12:00 AM
    Monday, March 3, 2014 4:05 AM

All replies

  • User398825048 posted

    It certainly seems to be related to IIS permission issue for the user under which your applicaiton is running. You can add/edit the user on the folders and give them required permissions

    Sunday, March 2, 2014 11:41 AM
  • User-933407369 posted

    hi datahook,

    you aslo need to add the user account you are using to login to the server to local Administrators windows group on the server. It is happening because you don't have appropriate permissions to do the modification to your web.config file from your current login account.

    By default, since ASP.NET runs under the IIS-related IUSR_machinename account, I guess it will by default have limited access to operate your Directory. So please try to impersonate a more powerful user like this:

    <identity impersonate="true"  userName="username" password="password"/>

    please refer to the links for details:

    ASP.NET Required Access Control Lists (ACLs)

    http://msdn.microsoft.com/en-us/library/kwzs111e.aspx

    ASP.NET Impersonation

    http://msdn.microsoft.com/en-us/library/xh507fc5(VS.71).aspx

    Hope it helps you.

    • Marked as answer by Anonymous Thursday, October 7, 2021 12:00 AM
    Monday, March 3, 2014 4:05 AM
  • User-1980232368 posted

    Here is another insatnce with issues:  http://www.techques.com/question/1-9094652/AjaxControlToolkit-causing-error-when-used-via-Apache-Proxy

    Mine is an app thats worked for some time.  The conversion on IIS to integrated pipeline mode for the AjaxControlToolkit, and / or inclusion of the AjaxControlToolkit library has seems to be at the root of this issue.  

    In my web.config:

    <system.webServer>
    <handlers>
    <add name="ScriptResource" preCondition="integratedMode" verb="GET,HEAD" path="ScriptResource.axd" type="System.Web.Handlers.ScriptResourceHandler, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/>
    </handlers>
    </system.webServer>

    In my master page:

    <asp:ToolkitScriptManager ID="ToolkitScriptManager1" runat="server" EnablePartialRendering="True" CombineScripts="false" >
       <Scripts>
          <asp:ScriptReference Path="~/Scripts/jquery-1.5.min.js" />
       </Scripts>
    </asp:ToolkitScriptManager>

    Has anyone any ideas?  I see various attributes on the on the asp:ToolkitScriptManager, like "AuthenticationService-Path" and evetns as well, wondering if there are any other confiuration items on the kit that can be tried.  Thanks.

    Thursday, March 27, 2014 6:07 PM