|
|
Rank: Member
Groups: Member
Joined: 4/23/2009
Posts: 23
|
Downloader suddenly requires authentication??
Have to enter webmaster credentials to do download? Made no changes (that I know of). Is there a temporary path?
|
|
Rank: Administration
Groups: Administration
Joined: 5/27/2007
Posts: 24,194
|
Hi,
That got to be some changes on your website. The downloader itself does not do anything at all about authentication.
Thanks!
|
|
Rank: Member
Groups: Member
Joined: 4/23/2009
Posts: 23
|
Get message:
To view this page, you must log in to area “auxsig.sslcert14.com” on auxsig.sslcert14.com:443.
What page is exposed during download?
|
|
Rank: Administration
Groups: Administration
Joined: 5/27/2007
Posts: 24,194
|
Hi,
It depends on the configuration. It could be the Url property you set or eo_web.ashx. In either case you can just log in as requested, then your browser should tell you exactly which Url it is pulling the file from.
Thanks!
|
|
Rank: Member
Groups: Member
Joined: 4/23/2009
Posts: 23
|
the file that is being opened is eo_web.ashx, which is in the root.
|
|
Rank: Administration
Groups: Administration
Joined: 5/27/2007
Posts: 24,194
|
Hi,
That makes sense. However as already explained in our initial reply, the downloader does not do anything about authentication (In fact none of our controls deal with authentication), so any authentication issue will still be a site configuration issue, which we do not consider as issues directly related to our product thus outside of the scope of our support.
Thanks!
|
|
Rank: Member
Groups: Member
Joined: 4/23/2009
Posts: 23
|
I understand your position. Here is a little more info:
The problem started with the 2010 upgrade.
It only happens with Chrome, Safari & FireFox.
IE is fine.
I would like to understand the process, what runs on the server and what runs in the client.
Your thoughts?
Thanks,
Jon
|
|
Rank: Administration
Groups: Administration
Joined: 5/27/2007
Posts: 24,194
|
Hi,
The process is quite straight forward: Your browser requests a file and your server decided that it must ask for credential before severing that file. There is really nothing else to this. So basically you need to find out:
1. Which file/url your browser is requesting;
2. Then figure out why your server doesn't want to serve that file/url without a credential;
#1 has to do with us as you see it is requesting eo_web.ashx, but we have already told you this so there is nothing left in this part. #2 has nothing to do with us because if your server does need credential, then there is no way for any user code to by pass that without a valid credential. Otherwise it would be a serious security hole that everyone would be exploiting. Client side code doesn't matter for authentication because authentication is always server authenticating the client.
Hope this clears up. This issue is now closed.
Thanks
|
|
Rank: Member
Groups: Member
Joined: 4/23/2009
Posts: 23
|
Found the issue. I had a "holding place" filename set in SaveFileNameAs. Then I was setting the file name in the code behind SetFileName. I set SaveFileNameAs="" and the problem went away.
Thanks for you help.
Again, only seemed to be an issue with FF,S & C
|
|
Rank: Member
Groups: Member
Joined: 4/23/2009
Posts: 23
|
Well I thought I had found the issue. In some instances ok, but other uses of the dynamic downloader request a password. I have spent two days working on this. I have put eo_web.ashx and the scripts in a “eo” directory with permissions to read and write. What I would like to know is where, if any, is a temporary file is built while the dynamic process is building the download?
|
|
Rank: Administration
Groups: Administration
Joined: 5/27/2007
Posts: 24,194
|
Hi,
The downloader does not use temporary files for dynamic download output.
Thanks
|
|
Rank: Member
Groups: Member
Joined: 4/23/2009
Posts: 23
|
I find a copy of my last download available here:
[REMOVED BY ADMIN]
Is this in the "eo" directory? Where is the data stored?
If you click on the url, you will get a request for password...
If you supply the correct one, you will get the download???
|
|
Rank: Administration
Groups: Administration
Joined: 5/27/2007
Posts: 24,194
|
Hi,
This is quite normal and the data is not stored anywhere. When you click that link, the downloader calls your code to generate the output on the fly based on the arguments encoded in the request Url. The process is quite the same as if you request a regular .aspx page.
We have been telling you all along that downloader does not do anything special about authentication. Your browser requests a Url from the server and if the server decides it wants a user name and password for that Url, your browser will have to get them from you or from its saved username/password list. It is as simple as that. This is very normal and standard HTTP flow. The only thing that has to do with us is the Url your browser is requesting. So once you have the Url, I would recommend you to focus on finding out why your server wants user name and password for that Url.
Hope this clarifies the issue.
Thanks
|
|
Rank: Administration
Groups: Administration
Joined: 5/27/2007
Posts: 24,194
|
Hi,
Please see your private message for further clarifications on this issue.
Thanks!
|
|