Web site works in dev mode; when deployed on IIS causes Security Exception

StackOverflow https://stackoverflow.com/questions/3255733

Question

My ASP.NET web site works fine in development/debug mode, but when I publish it, I'm getting the following error:

Security Exception

Description: The application attempted to perform an operation not allowed by the security policy. To grant this application the required permission please contact your system administrator or change the application's trust level in the configuration file.

Exception Details: System.Security.SecurityException: Request for the permission of type 'System.Web.AspNetHostingPermission, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed.

I've googled for this error, and it comes up plenty, and ll the answers say the same thing: put

<trust level="Full" originUrl=""/>

in the web.config file.

Ya, ya, ya. Thing is, I've checked that this line is in every web.config file I could find - the app itself, plus the framework\version\config\web.config files, both 32- and 64-bit (I'm running Windows 7).

There must be another secret switch somewhere - but what?

EDIT

At the request of a commenter, let me clarify: the page that causes the crash has a control from the AJAX Control Toolkit. If I comment out the ToolkitScriptManager and CalendarExtender controls, the page works fine, even under IIS.

Error stack trace (in case it helps):

[SecurityException: Request for the permission of type 'System.Web.AspNetHostingPermission, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed.]
System.Reflection.Assembly._GetType(String name, Boolean throwOnError, Boolean ignoreCase) +0
System.Web.UI.NamespaceTagNameToTypeMapper.GetControlType(String tagName, IDictionary attribs, Boolean throwOnError) +209
System.Web.UI.TagPrefixTagNameToTypeMapper.System.Web.UI.ITagNameToTypeMapper.GetControlType(String tagName, IDictionary attribs) +210
System.Web.UI.MainTagNameToTypeMapper.GetControlType2(String tagName, IDictionary attribs, Boolean fAllowHtmlTags) +242
System.Web.UI.MainTagNameToTypeMapper.GetControlType(String tagName, IDictionary attribs, Boolean fAllowHtmlTags) +17
System.Web.UI.RootBuilder.GetChildControlType(String tagName, IDictionary attribs) +22
System.Web.UI.ControlBuilder.CreateChildBuilder(String filter, String tagName, IDictionary attribs, TemplateParser parser, ControlBuilder parentBuilder, String id, Int32 line, VirtualPath virtualPath, Type& childType, Boolean defaultProperty) +119
System.Web.UI.TemplateParser.ProcessBeginTag(Match match, String inputText) +605
System.Web.UI.TemplateParser.ParseStringInternal(String text, Encoding fileEncoding) +1334
Was it helpful?

Solution

Found the answer!

OTHER TIPS

I came here from a dark place with legacy code and when I clicked the answer link i got a 404.

Felt a bit like: https://imgs.xkcd.com/comics/wisdom_of_the_ancients.png

Anyways, Way back machine to the rescue:

https://web.archive.org/web/20100329104446/http://dbvt.com/blog/post/AspNetHostingPermission-Security-Exception-Fix-with-Ajax-in-IIS7.aspx

Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow
scroll top