代码之家  ›  专栏  ›  技术社区  ›  Germstorm Pierre-Alain Vigeant

Web服务不接受输入

validation web-services .net
  •  3
  • Germstorm Pierre-Alain Vigeant  · 技术社区  · 14 年前 

    System.Web.HttpRequestValidationException: A potentially dangerous Request.Form value was detected from the client (xmlData="<?xml version="1.0" ...").
   at System.Web.HttpRequest.ValidateString(String value, String collectionKey, RequestValidationSource requestCollection)
   at System.Web.HttpRequest.ValidateNameValueCollection(NameValueCollection nvc, RequestValidationSource requestCollection)
   at System.Web.HttpRequest.get_Form()
   at System.Web.Services.Protocols.HtmlFormParameterReader.Read(HttpRequest request)
   at System.Web.Services.Protocols.HttpServerProtocol.ReadParameters()
   at System.Web.Services.Protocols.WebServiceHandler.CoreProcessRequest()

    我试着添加 

     <pages validateRequest="false" />

    转到web.config。它不起作用。

    我能做什么?

    1 回复  |  直到 14 年前
        1
  •  7
  •   Germstorm Pierre-Alain Vigeant    14 年前

    我找到了解决办法:

    在.Net 4中,必须在<system.web>: 

     <httpRuntime requestValidationType="MyService.CustomRequestValidator" />

    CustomRequestValidator类是您必须自己添加的验证。然后简单地重写bool IsValidRequestString()方法并返回 要消除验证: 

    /// <summary>
/// Validates the input based on some custom rules
/// </summary>
public class CustomRequestValidator : RequestValidator
{
    /// <summary>
    /// Validates a string that contains HTTP request data.
    /// </summary>
    /// <param name="context">The context of the current request.</param>
    /// <param name="value">The HTTP request data to validate.</param>
    /// <param name="requestValidationSource">An enumeration that represents the source of request data that is being validated. The following are possible values for the enumeration:QueryStringForm CookiesFilesRawUrlPathPathInfoHeaders</param>
    /// <param name="collectionKey">The key in the request collection of the item to validate. This parameter is optional. This parameter is used if the data to validate is obtained from a collection. If the data to validate is not from a collection, <paramref name="collectionKey"/> can be null.</param>
    /// <param name="validationFailureIndex">When this method returns, indicates the zero-based starting point of the problematic or invalid text in the request collection. This parameter is passed uninitialized.</param>
    /// <returns>
    /// true if the string to be validated is valid; otherwise, false.
    /// </returns>
    protected override bool IsValidRequestString(HttpContext context, string value, RequestValidationSource requestValidationSource, string collectionKey, out int validationFailureIndex)
    {
        // Set a default value for the out parameter.
        validationFailureIndex = -1;

        return true;

        //    // All other HTTP input checks are left to the base ASP.NET implementation.
        //    return base.IsValidRequestString(
        //                                        context,
        //                                        value,
        //                                        requestValidationSource,
        //                                        collectionKey,
        //                                        out validationFailureIndex);            
    }
}

    }

    推荐文章
    Emopusta  ·  从后端到前端的图像路径不工作
    2 年前
    Simon Worth  ·  是否可以使用SqlClient自动获取查询字符串中定义的参数列表
    2 年前
    Asdrubal Hernandez  ·  Linq查询特定数组索引出错
    2 年前
    Jet813  ·  当类型为字符串时,来自Webhook的JSON帖子为null
    2 年前
    asdhkjahjsdjkhjklasdhjhasDKJhl  ·  有没有办法检测c#中的鼠标侧键按下?
    2 年前
    Niyazi Babayev  ·  如何在表达式中动态应用表达式?
    2 年前
    Dansih  ·  .Net核心自定义身份验证方案
    2 年前
    qqqqqqq NValchev  ·  我怎样才能经营一家公司。容器中的NET Web API?
    2 年前
    lolorekkk  ·  面板插入。NET WinForm
    2 年前
    enguy007  ·  StreamWriter在文件末尾的新行添加额外字符
    2 年前
    关于  
    代码之家 - 一站式码农服务社区
    沪ICP备11025650号