dashCommerce

I've been trying to set up dashCommerce on servers at http://www.1and1.com.  Here's what 1and1 told me: http://faq.1and1.com/scripting_languages_supported/asp_net/14.html.  Would this prevent dashCommerce from running on their servers?

Stack trace:

[SecurityException: Request failed.]
   MettleSystems.Licensing.Web.MasterPage.Render(HtmlTextWriter writer) +0
   System.Web.UI.Control.RenderControlInternal(HtmlTextWriter writer, ControlAdapter adapter) +25
   System.Web.UI.Control.RenderControl(HtmlTextWriter writer, ControlAdapter adapter) +121
   System.Web.UI.Control.RenderControl(HtmlTextWriter writer) +22
   System.Web.UI.Control.RenderChildrenInternal(HtmlTextWriter writer, ICollection children) +199
   System.Web.UI.Control.RenderChildren(HtmlTextWriter writer) +20
   System.Web.UI.Page.Render(HtmlTextWriter writer) +26
   System.Web.UI.Control.RenderControlInternal(HtmlTextWriter writer, ControlAdapter adapter) +25
   System.Web.UI.Control.RenderControl(HtmlTextWriter writer, ControlAdapter adapter) +121
   System.Web.UI.Control.RenderControl(HtmlTextWriter writer) +22
   System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +7350
   System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +213
   System.Web.UI.Page.ProcessRequest() +86
   System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context) +18
   System.Web.UI.Page.ProcessRequest(HttpContext context) +49
   ASP.default_aspx.ProcessRequest(HttpContext context) in App_Web_ibiqn5ct.10.cs:0
   System.Web.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() +358
   System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) +64

Thanks for the help,

Alan

Hi Alan,

It looks like their trust policies may not allow it to run. You can check the Technology page for some details on this. What version of dashCommerce are you using?

Version 3.0.1.33775

Ok, so the 3.0.1 release. So, yeah, it looks like they may have some restrictions on their trust policies that may not allow you to run the product there.

Could you tell me which restrictions listed here, http://faq.1and1.com/scripting_languages_supported/asp_net/14.html, prevent dashConnerce from running?

I really appriciate your time,

Alan

 Not based on what they provide. are you getting this all the time or just on certain pages?

I get errors on every page I've tried.  Login.aspx and Admin/default.aspx give me:

[SecurityException: Request for the permission of type 'System.Security.Permissions.FileIOPermission, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed.]
   System.Security.CodeAccessSecurityEngine.Check(Object demand, StackCrawlMark& stackMark, Boolean isPermSet) +0
   System.Security.CodeAccessPermission.Demand() +59
   System.Reflection.Assembly.VerifyCodeBaseDiscovery(String codeBase) +118
   System.Reflection.Assembly.get_CodeBase() +32
   System.Web.Handlers.ScriptResourceHandler.GetCodeBaseWithAssert(Assembly assembly) +31
   System.Web.Handlers.ScriptResourceHandler.GetLastWriteTime(Assembly assembly) +36
   System.Web.Handlers.ScriptResourceHandler.GetAssemblyInfoInternal(Assembly assembly) +58
   System.Web.Handlers.ScriptResourceHandler.GetAssemblyInfo(Assembly assembly) +59
   System.Web.Handlers.RuntimeScriptResourceHandler.System.Web.Handlers.IScriptResourceHandler.GetScriptResourceUrl(Assembly assembly, String resourceName, CultureInfo culture, Boolean zip, Boolean notifyScriptLoaded) +336
   System.Web.UI.ScriptManager.GetScriptResourceUrl(String resourceName, Assembly assembly) +114
   System.Web.UI.ScriptRegistrationManager.RegisterClientScriptResource(Control control, Type type, String resourceName) +115
   System.Web.UI.ScriptManager.RegisterClientScriptResource(Control control, Type type, String resourceName) +9

 Ok, give me the weekend to look into it and I'll see if I can replicate it and what solution(s), if any, I can come up with. I should add that 1on1 is a pretty big hosting company, so their restictions may be pretty strict. You should ask them for a copy of their web.config to test against, then you can use it on your machine to test against.

web.config or machine.config?

web.config, then you'll need to modify your machine level web.config to use the one they give you. BUT, I think I've got it licked. I'll send you a PM.

Can you please post what your findings were? I am having the same problem when trying to run DashCommerce in GoDaddy

We didn't come up with a solution.  I decided to use http://www.ixwebhosting.com but you could also check out http://www.dashcommerce.com/Product-dashCommerce-Basic-Hosting_4.aspx.

DC should of been coded to run in partially trusted hosting.

I have never built an assembly using only the permissions neccessary, but I read a book and it seemed easy enough.

The issue boils down to inside of MettleSystems.Licensing.Web.MasterPage -  there's a call to get the executing assembly that attempts to read an executing assembly that's outside of the path of the site - specifically, \Temporary ASP.NET Files\ path.

GoDaddy only provides FileIOPermission for the path of your hosting account and NOT outside of it.

It would be great if the Licensing call in that code could find another way to provide the FileVersion. 

 Below is the offending call - which is contained in MettleSystems.Licensing.dll assembly

 string fileVersion = FileVersionInfo.GetVersionInfo(Assembly.GetExecutingAssembly().Location).FileVersion;