代码之家  ›  专栏  ›  技术社区  ›  Germstorm Pierre-Alain Vigeant

Web服务不接受输入

validation web-services .net
  •  3
  • Germstorm Pierre-Alain Vigeant  · 技术社区  · 15 年前 

    System.Web.HttpRequestValidationException: A potentially dangerous Request.Form value was detected from the client (xmlData="<?xml version="1.0" ...").
   at System.Web.HttpRequest.ValidateString(String value, String collectionKey, RequestValidationSource requestCollection)
   at System.Web.HttpRequest.ValidateNameValueCollection(NameValueCollection nvc, RequestValidationSource requestCollection)
   at System.Web.HttpRequest.get_Form()
   at System.Web.Services.Protocols.HtmlFormParameterReader.Read(HttpRequest request)
   at System.Web.Services.Protocols.HttpServerProtocol.ReadParameters()
   at System.Web.Services.Protocols.WebServiceHandler.CoreProcessRequest()

    我试着添加 

     <pages validateRequest="false" />

    转到web.config。它不起作用。

    我能做什么?

    1 回复  |  直到 15 年前
        1
  •  7
  •   Germstorm Pierre-Alain Vigeant    15 年前

    我找到了解决办法:

    在.Net 4中,必须在<system.web>: 

     <httpRuntime requestValidationType="MyService.CustomRequestValidator" />

    CustomRequestValidator类是您必须自己添加的验证。然后简单地重写bool IsValidRequestString()方法并返回 要消除验证: 

    /// <summary>
/// Validates the input based on some custom rules
/// </summary>
public class CustomRequestValidator : RequestValidator
{
    /// <summary>
    /// Validates a string that contains HTTP request data.
    /// </summary>
    /// <param name="context">The context of the current request.</param>
    /// <param name="value">The HTTP request data to validate.</param>
    /// <param name="requestValidationSource">An enumeration that represents the source of request data that is being validated. The following are possible values for the enumeration:QueryStringForm CookiesFilesRawUrlPathPathInfoHeaders</param>
    /// <param name="collectionKey">The key in the request collection of the item to validate. This parameter is optional. This parameter is used if the data to validate is obtained from a collection. If the data to validate is not from a collection, <paramref name="collectionKey"/> can be null.</param>
    /// <param name="validationFailureIndex">When this method returns, indicates the zero-based starting point of the problematic or invalid text in the request collection. This parameter is passed uninitialized.</param>
    /// <returns>
    /// true if the string to be validated is valid; otherwise, false.
    /// </returns>
    protected override bool IsValidRequestString(HttpContext context, string value, RequestValidationSource requestValidationSource, string collectionKey, out int validationFailureIndex)
    {
        // Set a default value for the out parameter.
        validationFailureIndex = -1;

        return true;

        //    // All other HTTP input checks are left to the base ASP.NET implementation.
        //    return base.IsValidRequestString(
        //                                        context,
        //                                        value,
        //                                        requestValidationSource,
        //                                        collectionKey,
        //                                        out validationFailureIndex);            
    }
}

    }

    推荐文章
    A B  ·  C#Excel自动调整列避免长文本时出错
    4 月前
    Alireza Noori  ·  全局配置用于本地化的MudDontext验证消息?
    4 月前
    Martyn C  ·  自定义StringEnumConverter未拾取所有枚举
    4 月前
    Nwerx_user  ·  在C#中,如何在不使用static关键字的情况下使用类外的方法?
    5 月前
    pseudodev  ·  失败的测试仅显示堆栈跟踪,不显示完整日志
    5 月前
    user19291301  ·  平行。ForEachAsync不会更改IEnumerable项的属性
    5 月前
    CactusCake  ·  if语句中应有分号
    6 月前
    LemonPotion  ·  SaveChangesAsync期间EF Core中的DbUpdateConcurrenty异常
    6 月前
    Bin4ry  ·  子文件夹中的应用程序设置
    6 月前
    enflky  ·  如何修改Winforms TabControl中所有选项卡中的WebView2内容?
    6 月前
    关于   移动版
    代码之家 - 一站式码农服务社区
    沪ICP备11025650号