.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Register
 
Win Surprise Gifts!!!
Congratulations!!!


Post New Web Links

System.Security.SecurityException while accessing Sharepoint Webservices

Posted By:      Posted Date: December 04, 2010    Points: 0   Category :SharePoint
 

Hi ,

We are consuming WSS3.0 webservices in our web application which is deployed in the same Sharepoint - 80 Front end web server.

--Sharepoint - 80 --> TestWebApp (using same shrepoint application pool, which uses farm administrator credentials)

-- IIS7 settings, Windows authentication and Asp.Net impersonation enabled for both sharepoint-80 and TestWebApp

When we try to access _vti_bin/Lists.asmx webservice from TestWebApp, we are getting the following message:

[SecurityException: Request for the permission of type 'System.Net.WebPermission, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed.]
   System.Security.CodeAccessSecurityEngine.Check(Object demand, StackCrawlMark& stackMark, Boolean isPermSet) +0
   System.Security.CodeAccessPermission.Demand() +54
   System.Net.HttpWebRequest..ctor(Uri uri, ServicePoint servicePoint) +204
   System.Net.HttpRequestCreator.Create(Uri Uri) +38
   System.Net.WebRequest.Create(Uri requestUri, Boolean useUriBase) +256
   System.Web.Services.Protocols.WebClientProtocol.GetWebRequest(Uri uri) +43
   System.Web.Services.Protocols.HttpWebClientProtocol.GetWebRequest(Uri uri) +20
   System.Web.Services.Protocol


View Complete Post


More Related Resource Links

System.Security.SecurityException:

  

hello i have the following problem

i have upload my content to hosting server but i get the following error

Security Exception

Description: The application attempted to perform an operation not allowed by the security policy.  To grant this application the required permission please contact your system administrator or change the application's trust level in the configuration file.

Exception Details: System.Security.SecurityException: Request for the permission of type 'System.Web.AspNetHostingPermission, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed.

Source Error:

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.

Stack Trace:

[SecurityException: Request for the permission of typ

System.Security.SecurityException: Request for the permission of type 'System.Web.AspNetHostingPerm

  

Good Day all,

Having an issue with an outside user accessing my IIS7 box. I do not have this problem when running the website from my host machine. I found this post: Http://forums.asp.net/t/1371394.aspx. I assure you that this is not a solution because I am not storing any of my files on a network share. 

What do you think my approach should be. 


I already have read rights to IIS user to my BIN folder. 


Thanks for the help. 


System.Security.SecurityException: Request for the permission of type 'System.Data.SqlClient.SqlCli

  
I have created a windows library control that accesses a local sql database I tried the following strings for connecting Dim connectionString As String = "Data Source=localhost\SQLEXPRESS;Initial Catalog=TimeSheet;Trusted_Connection = true" Dim connectionString As String = "Data Source=localhost\SQLEXPRESS;Initial Catalog=TimeSheet;Integrated Security=SSPI"   I am not running the webpage in a virtual directory but in C:\Inetpub\wwwroot\usercontrol and I have a simple index.html that tries to read from an sql db but throws the error System.Security.SecurityException: Request for the permission of type 'System.Data.SqlClient.SqlClientPermission, System.Data, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed.   at System.Security.CodeAccessSecurityEngine.Check(Object demand, StackCrawlMark& stackMark, Boolean isPermSet)   at System.Security.PermissionSet.Demand()   at System.Data.Common.DbConnectionOptions.DemandPermission()   at System.Data.SqlClient.SqlConnection.PermissionDemand()   at System.Data.SqlClient.SqlConnectionFactory.PermissionDemand(DbConnection outerConnection)   at System.Data.ProviderBase.DbConnectionClosed.OpenConnection(DbConnection outerConnection, etc etc  The action that failed was:DemandThe type of the first permission that failed was:System.Data.SqlClient.SqlClientPermissionThe Zone of the assembly that fa

SMO System.Security.SecurityException

  
Hello everybody I wrote a backup procedure using smo. this procedure works great on my dev box, but once deployed to the hosting company's web server it throws above exception ("System.Security.SecurityException: That assembly does not allow partially trusted callers.") I did some research on the subject and it seems that hosting companies give you only medium trust in the config file and hence cannot access smo. My hosting admin is a great fellow (www.alsonetworks.com, recommended!) and is willing to help out, so he told me that he: A. installed smo 2008 in the GAC B. added them to the medium.config file Even so, I still receive the error. Now, I'm pretty sure he'd do anything possible to get it to work (sans giving full trust) but i'd got to tell him what to do. So can anybody advise any additional steps that can be done to get this to work? my site is built with vb asp.net 3.5 against mssql 2008, but the hosting site uses mssql 2005. I appreciate your help and advice PS. I've also read a lot about AllowPartiallyTrustedCallers, but I understand that it is irrelevant here as i have not written the assembly. it would be something ms could/should do. is that correct?   heres the code : Public Shared Sub Backup() Dim sqlCon = New SqlConnection(ConfigurationManager.ConnectionStrings("Main").ConnectionString) Dim conn As New Server

SharePoint app crashes due to System.Security.Policy.PolicyException.

  

We have a two W.F.E servers. The server is hosting our intranet we app. The app is crashing at 2 in the night. It does not happen frequently, but does happen twice a week. Below is the description of the error message.

Server Error in '/' Application. -------------------------------------------------------------------------------- Execution permission cannot be acquired. Description: An unhandled exception occurred during the execution of the current web request.

Please review the stack trace for more information about the error and where it originated in the code. Exception Details: System.Security.Policy.PolicyException: Execution permission cannot be acquired.

Source Error: An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.

Stack Trace: [PolicyException: Execution permission cannot be acquired.] System.Security.SecurityManager.ResolvePolicy(Evidence evidence, PermissionSet reqdPset, PermissionSet optPset, PermissionSet denyPset, PermissionSet& denied, Boolean checkExecutionPermission) +10239176 System.Security.SecurityManager.ResolvePolicy(Evidence evidence, PermissionSet reqdPset, PermissionSet optPset, PermissionSet denyPset, PermissionSet& d

Exception occured in ExecuteOnChannel: System.Security.SecurityException: That assembly does not all

  
I developed a Web Part solution package for SharePoint 2010 and got the following exception:

10/29/2010 04:02:42.37     w3wp.exe (0x16B8)                           0x19D8    SharePoint Portal Server          User Profiles                     et8h    High        Exception occured in ExecuteOnChannel: System.Security.SecurityException: That assembly does not allow partially trusted callers.     at System.Security.CodeAccessSecurityEngine.ThrowSecurityException(Assembly asm, PermissionSet granted, PermissionSet refused, RuntimeMethodHandle rmh, SecurityAction action, Object demand, IPermission permThatFailed)     at System.RuntimeTypeHandle.CreateInstance(RuntimeType type, Boolean publicOnly, Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle& ctor, Boolean& bNeedSecurityCheck)     at System.RuntimeType.CreateInstanceSlow(Boolean publicOnly, Boolean fillCache)     at System.RuntimeType.CreateInstanceImpl(Boolean publicOnly, Boolean skipVisibi

System.Security.SecurityException:

  
 I am having a class file that i am registering as dll in the assembly of the sql server stored procedure.

In these class i am accessing a table to get a set of records.

The class file is as follows:

using System;
using System.Data.SqlClient;
using Microsoft.SqlServer.Server;
using System.Security.Principal;
using System.Security.Permissions;
using System.IO;

public class CLRStoredProceduresExample 
{
  [Microsoft.SqlServer.Server.SqlProcedure]
  public override static void HelloWorld()
  {
    // Use current user's context to access external resource - unless
    // logged in using SQL authentication where WindowsIdentity will
    // be null and will use SQL Server service account
    WindowsImpersonationContext newContext = null;
    WindowsIdentity newIdentity = SqlContext.WindowsIdentity;
    try
    {

      if (newIdentity != null) newContext = newIdentity.Impersonate();
      // do external access here
      SqlContext.Pipe.Send("Hello world! It's now " + System.DateTime.Now.ToString() + "\n");
      using (SqlConnection connection = new SqlConnection(@"Data Source=wikypages\wikypages;initial catalog=PMPAxonPUBMED; Persist Security Info=True;User ID=sa;Password=sa@123456"))
      {
        connection.Open();
        SqlCommand command = ne

SharePoint Tutorial - Security

  
Security in SharePoint is comprised of users, groups and roles.



Users, Groups and Roles

Users
A user account comes from the authentication system. For example, if Active Directory is used to authenticate then the user accounts will come from it.

Groups
There are two types of groups SharePoint uses: domain groups and SharePoint groups.

Accessing SharePoint 2010 Data with Server-Side APIs

  
Accessing SharePoint data in server-side solutions is one of the most common tasks that you will perform as a SharePoint developer. SharePoint 2010 provides powerful server-side APIs that enable you to retrieve, add, edit, and delete SharePoint data programmatically. SharePoint 2010 also includes the new LINQ to SharePoint technology that enables you to work with SharePoint data efficiently and easily.

Office Add-Ins: 3 Solutions for Accessing SharePoint Data in Office 2010

  

SharePoint 2010 introduces a number of new ways to access business data and present it to the user. We'll show you several options that range from no-code solutions to fully integrated Office add-ins.

Donovan Follette , Paul Stubbs

MSDN Magazine July 2010


SharePoint Security: Trim SharePoint Search Results for Better Security

  

SharePoint search may return too much information, causing data security problems. Learn how to use the custom security trimmer to ensure users see only the documents they have permission to view.

Ashley Elenjickal, Pooja Harjani

MSDN Magazine July 2010


Office Space: Security Programming in SharePoint 2007

  

This month Ted Pattison presents an overview of programming security and permissions for Windows SharePoint Services 3.0.

Ted Pattison

MSDN Magazine February 2008


Windows Server 2003: Discover Improved System Info, New Kernel, Debugging, Security, and UI APIs

  

There's a lot to say about Windows Server 2003. First of all, it's the first operating system with built-in .NET Framework support, and it's the first 64-bit OS from Microsoft. But wait, there's more! There are lots of new features and APIs in this version as well. For instance, Windows Server 2003 features Hot Add Memory and a number of other arcane new tidbits. There are new APIs for handling threads, directories, and files, and new features like the low fragmentation heap for managing memory and system information. There's vectored exception handling and new UI APIs as well.OS internals expert Matt Pietrek takes a look at the additions he finds most interesting and useful so you'll have a good place to start when you dive into Windows Server 2003.

Matt Pietrek

MSDN Magazine June 2003


Problem accessing Sharepoint 2007 MySite

  

My users are having an issue accessing their mysites.  When they go to the main portal page or any other site and click the link at the top right of the page to go to their Mysite they are thrown into an endless authentication loop.  If they cancel out of the loop the URL in the address bar is for http://mossserver/_layouts/MySites.aspx

For a user to successfully get to their myself they need to enter the full url like http://mossserver/personal/username/default.aspx

Now, I know somewhat how this happened.  It resulted from me trying to delete a user's mysite and I apparently did it wrong but I'm not sure what I did.  It almost seems like I deleted a redirect page or something...

Looking for any ideas.

Thanks,

Casey


Quick Note: Accessing Data in a SharePoint 2010 Web Part by using LINQ

  
In this exercise, you develop and deploy a visual Web Part that reads data from two lists by using a LINQ query and displays it in a DataGrid control.

Quick Note: Accessing Multiple SharePoint 2010 Lists by Using LINQ

  
In this exercise, you develop and deploy a visual Web Part that reads data from three lists by using LINQ queries and displays the results in a grid view control.

SharePoint 2010: Security Resource Center (Developers)

  
Are you new to SharePoint security, or do you want to learn the latest about claims-based identity? Find information about areas of security, including authentication, role providers, and claims.
Categories: 
ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend