Allow Requests to App_Data

c# asp.net iis web-config
13,994

Solution 1

Its not possible to access App_Data folder directly as it is used as data-storage for web application, for security reasons of the stored data you can access database from it only using connectionstring.

web.config

<connectionStrings>
    <add name="AddressBookConnectionString" connectionString="Data Source=.\SQLEXPRESS;AttachDbFilename=|DataDirectory|\myDB.mdf;Integrated Security=True;User Instance=True" providerName="System.Data.SqlClient"/>
</connectionStrings>

check this http://www.codeproject.com/Articles/31557/A-Beginner-s-Guide-to-ASP-NET-Application-Folders#h

UPDATE
Programatically we can access any file in web application and write it to response:

public class FileAccessHandler:IHttpHandler
{
    public FileAccessHandler()
    {
        //
        // TODO: Add constructor logic here
        //
    }

    public bool IsReusable
    {
        get { return false; }
    }

    public void ProcessRequest(HttpContext context)
    {
        String FileName = Path.GetFileName(context.Request.PhysicalPath);
        String AssetName = HttpContext.Current.Request.MapPath(Path.Combine(HttpContext.Current.Request.ApplicationPath, "App_Data/" + FileName));

        if (File.Exists(AssetName))
        {
            context.Response.ContentType = "image/jpeg";
            context.Response.BinaryWrite(File.ReadAllBytes(AssetName));
            context.Response.End();
        }
    }
}


Download: App_Data access sample

Solution 2

This is not recommended as app data is meant for application files but this can be done by adding the following line to the config 

  <system.webServer>
    <security>
      <requestFiltering>
        <hiddenSegments>
          <remove segment="app_data" />
        </hiddenSegments>
      </requestFiltering>
    </security>
  </system.webServer>
Share:
13,994
levi
Author by

levi

brain is not for storing information, it is for thinking. be aware of skeptical regression... you follow the standards and everything goes nice and smooth give me the gist

Updated on June 12, 2022

Comments

  • levi
    levi about 2 years

    I want to allow users to request files located in App_Data Folder. This is the error:

    Error Summary

    HTTP Error 404.8 - Not Found

    The request filtering module is configured to deny a path in the URL that contains a hiddenSegment section.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How can I secure passwords stored inside web.config?
How to force HTTPS using a web.config file
How to make home page as default page in asp.net
Is Application_Start of Global.asax is called by iis on wcf application when the iis is the host ?
How to set a default page on Azure Web App
Increasing QueryString max length
Retrieving the COM class factory for component with CLSID {688EEEE5-6A7E-422F-B2E1-6AF00DC944A6} failed
Disable x-frame-options in MVC3 or IIS 7.5
Publishing a c# console application on IIS Server
Configuring an ASP.NET application in IIS