asp.net - ReportViewer - Subreport processing impersonation context -


i have reportviewer report sub report. running locally report works fine, when deploy server sql access denied error local user on remote machine. eg

access denied servername\servername$

i have feeling due me firing sql command data required sub report , when deployed on server report viewer firing command , becuase of connection strings using integrated security (for security reasons) not got correct impersonation context.

my database access class in different assembly reporting assembly, both of these assemblies referenced web application

it seems report viewer calling sub report processing event when needs data sub report. web application impersonates user when runs sub report processing event not use specified user. instead perhaps local system account instead, , connection strings using integrated security local system account not have access database on server.

anyone else have problem?

here code report page

/// <summary>         /// page load         /// </summary>         /// <param name="sender"></param>         /// <param name="e"></param>         protected void page_load( object sender, eventargs e )         {             try             {                 if ( !page.ispostback )                 {                     reporting.common.setreportembeddedresource( this.reportviewer1, "xxx.web.wap.reporting.reports.approvalrouteheader.rdlc" );                      this.reportviewer1.localreport.datasources.add(                         new microsoft.reporting.webforms.reportdatasource(                             "costdept",                           reporting.repositories.approvalroute.getheaderapprovalroutelist() ) );                      this.reportviewer1.processingmode = microsoft.reporting.webforms.processingmode.local;                     this.reportviewer1.localreport.subreportprocessing += new microsoft.reporting.webforms.subreportprocessingeventhandler( localreport_subreportprocessing );                      this.reportviewer1.localreport.refresh();                 }             }             catch ( exception ex )             {                 errorlogging.logerror( ex );             }         }          /// <summary>         /// loads sub report         /// </summary>         /// <param name="sender">object</param>         /// <param name="e">args</param>         protected void localreport_subreportprocessing( object sender, microsoft.reporting.webforms.subreportprocessingeventargs e )         {             try             {                 e.datasources.add(                     new microsoft.reporting.webforms.reportdatasource(                         "costdept",                         reporting.repositories.approvalroute.getdetailapprovalroutelist(                         convert.toint32( e.parameters[ "accountnumberid" ].values[ 0 ] ),                          convert.toint32( e.parameters[ "sagedatabaseid" ].values[ 0 ] ),                        convert.toint32( e.parameters[ "requestinguserid" ].values[ 0 ] ),                         convert.toint32( e.parameters[ "projectid" ].values[ 0 ] ),                           convert.toint32( e.parameters[ "projectitemid" ].values[ 0 ] ),                         e.parameters[ "documenttype" ].values[ 0 ].tostring() ) ) );             }             catch ( exception ex )             {                 errorlogging.logerror( ex );             }         }

i think have got bottom of this. sql server on seperate box web application 'double hop' caused when sub report processed looses identity context.

there 2 work arounds came with.

1) use uid , pwd in sql connection strings integrated security not used

2) change identity of application pool , anonymous user access in iis same account has permissions on database. when sub report processed identity of application pool have access , load correctly.

i posted mored detailed explanation on blog: wraithnath


Comments

Post a Comment

Popular posts from this blog

apache - Add omitted ? to URLs -

i working on website cms reads page name of query string, e.g. http://exmaple.com/?pagename . trying create rewrite rule rewrite ? . so, user types in /pagename , taken /?pagename try this: rewriteengine on rewritecond %{request_filename} !-d rewritecond %{request_filename} !-f rewriterule ^/?(.*) index.php?$1 [l]
Read more

redirect - bbPress Forum - rewrite to wwww.mysite prohibits login -

i using bbpress installation without wordpress integration. the redirect of rewriteengine @ forum site works: rewriteengine on rewritecond %{http_host} ^forum.mysite.com$ rewriterule (.*)$ http://www.forum.mysite.com/$1 [r=301,l] the problem login pppress. bbpress login not recognize: http://www.forum.mysite/bb-login.php . it redirects to: http://forum.mysite.com/bb-login.php . i tried permalink settings none , name based, same issue. does uses redirect in bbpress or how can eliminate "double" content , redirect permanently www.? i redirected www.forum.mysite.com forum.mysite.com , achieved eliminate "double" content.
Read more

php - How can I stop spam on my custom forum/blog? -

so have custom built forum & blog system of late has been dealing lot of spam. if wordpress use akismet, if different common platform i'm sure i'd find plugin. there kind of static class can download this? using php. i'd still go akismet, if it. uses outside of wordpress, may have pay fee it, depending on use -- check terms , conditions -- it's option , easy implement in php using api. use api key wordpress. com account access. basically, grab whichever php client library takes fancy -- use alex potsides' php5 library -- plug in key, , it's handful of lines of code. here's bare bones of validation straight 1 of live sites: ... if ($akismet) { $akismet->setcommentauthor($name); $akismet->setcommentauthoremail($session->userinfo["email"]); $akismet->setcommentauthorurl(""); $akismet->setcommentcontent($sentence);...
Read more