I have used the "Microsoft.XMLHTTP" object to successfully download web pages from other sites. However, I need to download a page from a secure page. point me to sample code for that? I need to "post" data to a form on that page.
View RepliesI have used the "Microsoft.XMLHTTP" object to successfully download web
pages from other sites.
However, I need to download a page from a secure page. Can anyone point
me to sample code for that? I need to "post" data to a form on that
page, so any sample code for that would also be helpful.
I have a directory on my site where the users do not have direct access so I need to stream the files throuh an asp file for them to download these files. Like this:
download.asp?File=myfile.mdb
or
download.asp?File=myfile.xsl
or whatever.
The problem is that I dont know the type of file (.mdb, .xsl, .wks, .doc, ...) so I dont know what to put in the header for this to go smoothly. This is some code (that does not work :-))....
Just ignore my code completely if you feel like it... I only need asp code to download any type of file.. Code:
I was wondering if anyone has ever successfully used SA-FileUp's download feature. I am being forced to change from "ASPSmartUpload" as the server I am moving everything to is using SAFileUp version 3.2.
I ran through their documentation and found a section called "secure download", unfortunately, their examples do not work at all!
On Netscape 7, the file "pretends" to download (after changing the file extension), but only an empty file is created.
On IE 6, I simply get an Internal Server Error (when calling the
TransferFile method of my object). Code:
I need to secure my web page, when it is reading a file from the
physical folder.
Say for eg.. I have a page Page1.aspx, which displays a list of links
that corresponds to
the available text files in one of the files. All the other pages are
secured except this
page. So when I click the link, it redirects it to for eg..
http://localhost/folder1/one.txt.
But this should not happen. As the user can type this without even
logging into the website.
So I need to know how to stream this file and display it in another
page, rather than just showing it.
Iīve made a loginpage in asp, and a page that receives
the data from the form and logs you in.
But how do i make the loginpage secure?
Do i have to use https, and if so, how do i change from
http to https when the loginpage is included in another
asp-file?I donīt know if i have explained myself correctly
do know how can i prevent my page from cross side
like using <marquee></marquee>
We have a need to allow our users to enter Credit Card #'s on a web page, so we need a secure page (have the little lock at the bottom of the browser) in order to do this.
1) What is this called? (I've heard the term SSL (Secure Socket Layer)tossed around, I don't know if this is the same or something different).
2) If I need a certificate of some sort for our server, how do I get it?
I dont have a secure page for I got this page when after logging in I could still login after using the back button.
View Replies View RelatedHow can I secure the pages for login users in a "professional way"? I could set a global variable to true when a user successfully sign in but that's not how the experts do it right?
View Replies View RelatedI am working on automating a workflow process for my company. Part of the process requires the user to send a snapshot of their benefits from a secure web site to their manager. I am trying to extract the web page using Microsoft.XMLHTTP but am having problems due to user validation which is required to access the benefits web page. There are 2 layers.
First, user is required to login with user name and password, then user is redirected to another page that asks for PIN. Only if both authentications pass, the user is considered validated and is redirected to the benefits page. I am not able to through any of the validation pages. What can I do?
Any idea's on how to make a PDF secure? I don't want anybody to be able to type in the location to the pdf file in the browser and download it. Suggestions please!!!???
View Replies View RelatedI work for a large chain coporation. My schedule is posted on their secure web site which I have a user name and a password for. I want to create a URL string that can be sent (using VBA inside of Outlook) which contain my username and passsword and allow me access to my schedule information.
I tried: ....
After a number of wrong turns and experiments I need advice on login management system to secure our web pages without inconveniencing our visitors or our internal staff.
i need A system whereby the user only has to register ONCE and he will have automatic entry to ANY page without havinto to RE-LOGIN even if he comes in two weeks later or comes directly to that page via an email link. This scenario seems built on the Amazon model of the 'gold box' which automatically remembers you through cookies.
If the user does not have cookies he has to re-login. help me identify a 3rd party product that does this or a route to achieve this in my code.
I have been working with ASP classic on this current project im involved in. Well the problem im facing now is there is a page where a flash movie should play in a particular section on the page but it wont play on the secure pages, on the unsecure pages it plays fine. I had added an Active X work in accordance with the Lawsuit issue but it still wont play.
View Replies View RelatedI have an .asp page to relay data to an MS SQL DB. The page runs fine on some machines but attempts to auto download itself with a "file download security warning" dialog.
Some of the machines are configured identically but problem occurs on one and not the other. IE settings on two machines are identical and it happens on one but not the other.
i m having a problem with an asp page attempting to download rather than run its contents. The page is designed to relay data to a secondery server and populate a MS SQL database. I have run the site with this page on a number of machines and it works on some but attempts to download the file on others; bringing up "file download security warning" dialog.
Additional weirdness comes from the fact that I can have two identically configured machines and yet one will work fine and the other will attempt to download the asp file. When I say identical i mean all the IE security settings are exactly the same.
I developed a login page and use Access as the database. When I test it using http://localhost, it works perfectly. When I upload it to the web server and click on the link, a file download box pops up asking me if I want to save or open the login.asp file. Why doesn't it work now?
View Replies View RelatedI received a "friendly" message of fellow webmaster saying that I had a security issue whereas it was possible to download my original ASP code.
As a proof he emailed a copy of one ASP page of a website I have been working on.
I have to continuously download the same web page on our IIS server. It is
important to always download a fresh page from the server including not only
the .asp page itself but all the .gif and .jpg files associated with that
page. We need to measure statistical info on how long it takes to download.
If the page is stored in the client machines internet cache that would be a
problem.
Now I know how to add the following to the main .asp page to insure a fresh
copy is always downloaded of this page itself.
<% Response.Expires = -2000 %>
When I look at the client machines cache folder it does show that the main
..asp page has expired an hour ago. However all the .gifs and .jpgs , etc downloaded with the main .aps page show the value Expire: None which I conclude means that these pieces are not redownload each time we get the main .asp page.
Up till now we have been using a perl script to try and erase the cache
before each download. This works sometimes but not all the time.
Is there any way to force the .gifs, .jpgs etc. to have to download fresh
each time just like I was able to get the main .asp page to redownload with
<% Response.Expires = -2000 %>
I want to write a ASP page to open/download a file In fileview.jsp, I have the file browse, and when user click submit button, fileview2.asp should open the file.
fileview.asp
============
<FORM ACTION="fileview2.asp" method="POST">
<P><input type="FILE" name="filename">
<P><input type="submit">
fileview2.asp
============
<%
String filename = Request.Form("filename")
Response.Redirect = filename
%>
However, this is not working. any ideas?
I'm looking to display a page and then initiate the downloading of a file.
Basically trying to display a page that says the download will begin
shortly, and if it doesn't, click here. Like what you see at a number
sites.
I found code to initiate the download in a previous posting ("Force Download
fails when I select "Open" but works when I select "Save"", posted Jan 25,
2005). The code works fine in terms of initiating the download. The
problem I've encountered is that the download begins before the page itself
is displayed.
The ASP application uses the "File" active-x control. On windows 2003
IIS(6.0), the download the file fails with the Error: Request object error
'ASP 0104 : 80004005'
The above error is retuned by my asp code: lnBytes =
Request.BinaryRead(lnByteCount)
I did not see this error on windows 2000 server. Is there any solution/workaround available on Windows 2003 IIS(6.0) for this issue.
i have an ecommerce site that is split across two domains, a secure space that retains cc details and the main site where contact information and order details are held. I need to be able to produce a report that displays both sets of info in a printable document. aside from using iframes is there a better way of doing this?
View Replies View RelatedWhen one of my users are navigating my ASP website, and click on submit type
button to move from Page1.asp to another ASP page, Page2.asp, they are
getting message like
"Internet explorer cannot download <asp pagefrom <server>. Internet
Explorer was not able to open this Internet site. The requested site is
either unavailable or cannot be found. Please try again later."
But other users are not experiencing this.
I also have seen http://support.microsoft.com/kb/316431/ but it doesnot help
me.
Can you please tell me what should be done to avoid this error. Do I need
to check any web browser settings?
I am having trouble downloading an excel report generated from our AS
pages. We presumed it was something to do with the SSL certificate w
just installed, so loaded the ForceSSL.inc script from Microsoft an
changed the cache settings by changing this code in our globals.as
file:
Response.AddHeader "pragma","cache"
Response.AddHeader "cache-control","private"
Response.CacheControl = "private"
Now we are having trouble with downloading about ten of the twent
five reports that we have. Does anyone have any ideas?
How do I stop pages being active in the history.
I have tried this,
<% Response.Expires = -1 %>
But the pages are still active in the history and are being cached somewhere on the machine win2k.
If I create a simple login page and then store the UserId is a session and check its validity in the subsequent pages, How secure will the site be. I know the same question has been asked in the PHP forum
Code:
http://www.sitepoint.com/forums/showthread.php?t=233118
But how can I make my site secure enough in asp
I may be in over my head on this one... VERY new to ASP. I have a potential client which is a marine loan broker. He wants an online credit application for the boat dealers he works with (20 different ones). He wants the credit app to be co-branded. Dealer/LoanCompany logos at the top would be sufficent. The dealer would have a link on there own site to the loan company's site but wants it to look like they are "Partners" and not just being shullde from one site to the next.
Is there a way to display different dealer logos based on the referrer URL? I would rather have one creditapp.asp that displays the proper logos depending on the referrer over building 20 creditapp.asp's. He doesn't need the form data written to a database. He just wants the form data emailed to him. (this I can do) How secure is that emailed data?
Right now, I'm trying to use WSH to run PSCP (command-line version of
PuTTY). I've tested the command I'm using by opening a DOS box
manually on the server, and the test file is successfully transferred.
I've run Filemon and Regmon while running my sample ASP page, and see
no permissions problems. I've tried running cmd.exe and passing PSCP
as the parameter.
I've tried running PSCP.exe directly. I've even
tried using ASPexec to run it instead of WSH. None of these have
worked. I always get the same thing -- error code 0 (success) returned
from WSH or ASPexec, but when I look at the second server the file
never got there, and when I look at terminal services on the Web server
PSCP is still running.
I'd like to create a secure login from an ASP page to a specific SQL Server
2000 Db. Is there an accepted methodology for doing this? Are there any
resourses that show how this can be done?
Here's what I/m doing to sanitize/validate/secure my input.
1. The front end checks what kind of data is entered.
2. I am using parameterized query instead of concatenated strings (Against XSS)
3. I am replacing symbols like <,>,# etc with their appropriate entity number eg. & #32; without the space. (Agains SQL Injection)
Can someone please explain to me the basics of creating a secure connection (we're looking at using Authorize.net) and possibly point me in the direction of other resources for getting some info?
View Replies View Related