开发者

Trying to write file to UNC from ASP.NET MVC

问答 作者:

I have some code running in an asp.mvc app inside IIS 7. The code is supposed to save a file to a UNC share. This function is called from some controller code, with the filePathname = "\MYSRV\sites\docs\10080003\egg.txt'

public void EnsureDocument(string filePathName ,string content,WindowsIdentity identity )
{
  System.Security.Principal.WindowsImpersonationContext impersonationContext = null;
  try
  {
    impersonationContext = ((System.Security.Principal.WindowsIdentity)identity).Impersonate();
    File.WriteAllText(filePathName, content);
  }
  finally
  {
    impersonationContext.Undo();
  }
}

The call from the asp.net mv开发者_如何转开发c controller looks like this ...

  // pass running identity
documentSvc.EnsureDocument(filePathname, content, WindowsIdentity.GetCurrent());
//documentSvc.EnsureCaseDocument(filePathname,content,System.Security.Principal.WindowsIdentity)User.Identity);

The call from an NUnit test looks like this ...

documentSvc.EnsureDocument(filePathname, content, WindowsIdentity.GetCurrent() );

The symptoms are that the NUnit code drops the file BUT the call from asp.net mvc does not drop the file.

**Test 1 : PASSES, DROPS FILE ** The Nunit code sends through an identity { AuthType=Keberos, ImpersonationLevel=none , Name="DOMAIN\Fred Blogs" } and this drops the file on the unc.

**test 2: FAILS, DOES NOT DROP FILE ** With impersonate="true" in the web.config, and making the call 

documentSvc.EnsureDocument(filePathname, content, WindowsIdentity.GetCurrent());

The asp.net mvc code sends through { AuthType=Keberos, ImpersonationLevel=Delegation, Name="DOMAIN\Fred Blogs" } and the file is not dropped.

**test 3: FAILS, DOES NOT DROP FILE ** Without impersonate="true" in the web.config and calling and making the call 

documentSvc.EnsureCaseDocument(filePathname,content,System.Security.Principal.WindowsIdentity)User.Identity);

The asp.net mvc code sends through { AuthType=Negotiate, ImpersonationLevel=Delegation, Name="DOMAIN\Fred Blogs" } and the file is not dropped.

?

NUnit's running identity is you, while MVC's running identiy is likely IUSR_... I think it's just a security problem.

继续阅读:asp.net-mvc-2identityiis-7impersonationunc

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9