Permission failure on button click

[nigelrivett]

We have an aspx and aspx.cs.

The aspx has
<asp:button id="btnCancel" onclick="btnCancelEvent" Runat="server" Text="Cancel" Font-Bold="True" Font-Size="8" Font-Name="verdana"></asp:button></TD>

and the aspx.cs
public void btnCancelEvent(Object source, System.EventArgs e)
{
//Handle the cancel button click event
ViewControls(false);
lblMsg.Text = "";

}

and

private void Page_Load(object sender, System.EventArgs e)
{
// Put user code to initialize the page here
if (!IsPostBack)
{
GetData();
ViewControls(false);
specialSecHeader.TitleText = "Special Security Pricing";

}
userName = User.Identity.Name;
if (userName.IndexOf("ENDEAVOUR") > -1)
{
string myString = userName.Substring(10);
userName = myString;
}
}

When the cancel is pressed it comes up with a connect window asking for user name and password to connect to websvr.xxxx.com).
The same thing happens with another button handled in the same way (save).

To display this page it has had to execute an addnew which looks like very similar functionality.

I am told this was all working on Friday but not now. No one owns up to changing anything but...
The code in question hasn't changed but anything else could have.

Anyone any idea about what to look at?


======================================
Cursors are useful if you don't know sql.
DTS can be used in a similar way.
Beer is not cold and it isn't fizzy.

 

[nigelrivett]

It is on our intranet and everyone looks like they have read, write, list, execute permissions on everything.

======================================
Cursors are useful if you don't know sql.
DTS can be used in a similar way.
Beer is not cold and it isn't fizzy.

 

[BoulderBum]

Check the authentication/ directory security stuff on IIS. It probably got fiddled with.

 

[nigelrivett]

Looked at that - doesn't seem to be anything out of place and everyone denies it.


======================================
Cursors are useful if you don't know sql.
DTS can be used in a similar way.
Beer is not cold and it isn't fizzy.

 

[nigelrivett]

Just remembered that today there was a windows critical update.
Setting the intranet security level to low rather than medium/low seems to allow the cancel to work.
I can't test the save which is the important thing.

So now the question becaomes how can I allow this to work wit the intranet security level set to the default of medium/low.

======================================
Cursors are useful if you don't know sql.
DTS can be used in a similar way.
Beer is not cold and it isn't fizzy.

 

[nigelrivett]

Doh - forget that - it seems to work on medium/low too.
The question becomes "what happened?".

======================================
Cursors are useful if you don't know sql.
DTS can be used in a similar way.
Beer is not cold and it isn't fizzy.

 

[BoulderBum]

Weird.

Sometimes I'm more afraid of those Microsoft patches than I am of the problems they're supposed to fix. I remember having to re-install Windows after SP1 because I had custom boot screens which ended up crashing on startup after the "fix".