[Mono-list] Bug with non-secured resources in ASP.NET

Marek Habersack grendel at twistedcode.net
Thu Mar 11 07:51:09 EST 2010 

On Wed, 10 Mar 2010 19:11:50 -0500
Abe Gillespie <abe.gillespie at gmail.com> wrote:

Hello,

> I replaced my System.Web source directory with the latest.
> Unfortunately this did not fix the problem.  After being offline for
> four days I just decided to roll back to 2.4.  At least I'm working
> again.
> 
> I'll retry the next official 2.6 release.
File a bug and attach a standalone, self-contained test case which reproduces the issue.

best,

marek
> 
> Thanks.
> -Abe
> 
> On Tue, Mar 9, 2010 at 11:46 AM, Abe Gillespie <abe.gillespie at gmail.com> wrote:
> > Cool. Thanks, Marek.  I'll get the new System.Web source and recompile.
> >
> > I appreciate the help on this!
> >
> > -Abe
> >
> > On Tue, Mar 9, 2010 at 11:09 AM, Marek Habersack
> > <grendel at twistedcode.net> wrote:
> >> On Tue, 9 Mar 2010 09:40:42 -0500
> >> Abe Gillespie <abe.gillespie at gmail.com> wrote:
> >>
> >>> Any word on this?  It's really hurting my business right now.
> >> It should be fixed in trunk and the 2.6 branch, try System.Web from there
> >>
> >> marek
> >>>
> >>> Thanks!
> >>> -Abe
> >>>
> >>> On Fri, Mar 5, 2010 at 4:05 PM, Abe Gillespie <abe.gillespie at gmail.com> wrote:
> >>> > This seems to be new since somewhere around 2.4.x.  I my Web.config
> >>> > I've got resources protected and others globally available a la:
> >>> >
> >>> > <system.web>
> >>> >  <customErrors mode="Off"/>
> >>> >    <authorization>
> >>> >      <deny users="?"/>
> >>> >    </authorization>
> >>> >  <authentication mode="Forms">
> >>> >    <forms name=".ASPXAUTH" loginUrl="~/login.aspx"/>
> >>> >  </authentication>
> >>> > </system.web>
> >>> >
> >>> > <location path="callback.aspx">
> >>> >  <system.web>
> >>> >    <authorization>
> >>> >      <allow users="*"/>
> >>> >    </authorization>
> >>> >  </system.web>
> >>> > </location>
> >>> >
> >>> > <location path="common">
> >>> >  <system.web>
> >>> >    <authorization>
> >>> >      <allow users="*"/>
> >>> >    </authorization>
> >>> >  </system.web>
> >>> > </location>
> >>> >
> >>> > Mono grants public access to files (like images and css files) in the
> >>> > common directory as expected.  However, callback.aspx is forwarding
> >>> > the page to the login page which is not expected.  This one's critical
> >>> > for me in that the callback.aspx page is the end point for Google
> >>> > Checkout.  Now that it's erroneously forwarding to the login page
> >>> > Google Checkout is unable to send checkout events to my system thus
> >>> > preventing online sales.
> >>> >
> >>> > I'll be happy to file a bug but was hoping there was a quick
> >>> > work-around in the mean time just so that I can get functioning again.
> >>> >  Again, this has been working all along in Mono up until at least
> >>> > 2.4.x.
> >>> >
> >>> > Thanks.
> >>> > -Abe
> >>> >
> >>> _______________________________________________
> >>> Mono-list maillist  -  Mono-list at lists.ximian.com
> >>> http://lists.ximian.com/mailman/listinfo/mono-list
> >>
> >>
> >

More information about the Mono-list mailing list