A potentially dangerous Request.Path value was detected from the client 异常
来源:互联网 发布:程序员输入法 编辑:程序博客网 时间:2024/05/22 07:48
我们在ASP.net 4.0 中使用URL导向后, 我们在访问类似如下的地址时 http://wz.csdn.net/yanjinde77/一个面试题!********/,就会报错误:
A potentially dangerous Request.Path value was detected from the client
at System.Web.HttpRequest.ValidateInputIfRequiredByConfig()
at System.Web.HttpApplication.ValidateRequestExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
这是因为上述地址中有*这个特殊字符存在。
如果你想不让ASP.net 替你拦截这些特殊字符,你需要设置如下Web.config的节:
<?xml version="1.0"?><configuration xmlns="http://schemas.microsoft.com/.NetConfiguration/v2.0"><system.web><httpRuntime requestPathInvalidCharacters="" /></system.web></configuration>
注意其中的requestPathInvalidCharacters 它是一个以逗号分隔的无效字符列表。不设置它时,它默认的无效字符集(以,分割)是后面7个:<,>,*,%,&,:,/
即,不设置这个属性,默认就是如下设置:
<?xml version="1.0"?><configuration xmlns="http://schemas.microsoft.com/.NetConfiguration/v2.0"><system.web><httpRuntime requestPathInvalidCharacters="<,>,*,%,:,&,/" /></system.web></configuration>
如果你想这些字符全部不受限制,就应该设置 requestPathInvalidCharacters="" , 如果是部分字符受限制,部分字符不受限制,就需要在 requestPathInvalidCharacters 中设置需要受限制的字符,不受限制的不用设置。
参考资料:
Experiments in Wackiness: Allowing percents, angle-brackets, and other naughty things in the ASP.NET/IIS Request URL
http://www.budoou.com/article/981320/
转载自:http://blog.csdn.net/ghj1976/article/details/5701277
- A potentially dangerous Request.Path value was detected from the client 异常
- A potentially dangerous Request.Path value was detected from the client 异常
- A potentially dangerous Request.Path value was detected from the client 异常
- A potentially dangerous Request.Path value was detected from the client 异常
- A potentially dangerous Request.Path value was detected from the client 异常
- A potentially dangerous Request.Path value was detected from the client 异常
- 错误提示: A potentially dangerous Request.Form value was detected from the client ....
- A potentially dangerous Request.Form value was detected from the client
- A potentially dangerous Request.Form value was detected from the client
- A potentially dangerous Request.Form value was detected from the client
- A potentially dangerous Request.QueryString value was detected from the client 的解决办法
- A potentially dangerous Request.Form value was detected from the client
- A potentially dangerous Request.Form value was detected from the client
- A potentially dangerous Request.Form value was detected from the client (txtTest="").
- 解决A potentially dangerous Request.Form value was detected from the client
- A potentially dangerous Request.Form value was detected from the client
- .net 4.0 A potentially dangerous Request.Form value was detected from the client 的解决方案
- A potentially dangerous Request.Form value was detected from the client
- 烂泥:Server-U FTP与AD完美集成方案详解
- android 自定义View(一、基础认识)
- chef client注册为node
- 写一个只能C编译通过,而C++不能编译通过的函数。
- Java环境搭建(Windows环境)
- A potentially dangerous Request.Path value was detected from the client 异常
- 常用的数据库语法
- 查看可执行程序的依赖库
- Linux输入子系统
- Java JVM(八):Lambda 简介
- 移动开发测试工具——Bugtags的集成
- svn and maven 自动部署shell脚本
- Spark 执行过程以及相应概念解释
- 设计模式C++实现3——适配器模式