ASP.NET Validation

ASP.NET Validation

Validation is pretty essential for a web page with form submission. But even with all the help from Microsoft’s wonderful validation controls, at times some petty details becomes quite annoying problems to solve. This post is to list out some useful resources… Validating ASP.NET Server Controls http://msdn.microsoft.com/en-us/library/aa479013.aspx User Input Validation in ASP.NET http://msdn.microsoft.com/en-us/library/ms972961.aspx ASP.NET Validation […]

CheckBox Validation

ASP.NET provides all the wonderful validation controls and perform both client-side and server-side validation. However, to validate a CheckBox, only the Custom Validation Control can be used. Assume you have the following… <span><asp:CheckBox ID="MyCheckBox" runat="server" onClick="if (this.checked) CheckBoxChecked(); else CheckBoxUnchecked();" />Yes, your website is awesome! =) </span> <asp:CustomValidator ID="MyCheckBoxValidator" runat="server" ErrorMessage="Custom Validator" ClientValidationFunction="ClientValidateMyCheckBox" ValidationGroup="MyValidationGroup" OnServerValidate="MyCheckBoxValidator_ServerValidate">Required.</asp:CustomValidator> […]

Random Password Generation

Pretty cool, can be used for many purposes, like generating the decryption and validation machine keys, etc… https://www.grc.com/passwords.htm By Bryan Xu

Server.HttpEncode vs. HttpUtility.HttpEncode

Just use HttpUtility.Encode because Server.HttpEncode simply calls HttpUtility.Encode. Basically if you are trying to display text back to the user and these text are either straight from database, or from databound objects, or from current page textbox entered by user, etc, use HttpUtility.Encode, mainly to prevent script-injection and handle specials characters such as blanks and […]

Injection Attacks

Understanding Script Injection Attacks MSDN – How To: Protect From Injection Attacks in ASP.NET ASP.NET includes a feature designed to automatically combat script injection attacks, known as request validation. Two ways to disable request validation: Disable for individual page <%@ Page ValidateRequest="false" Language="C#" AutoEventWireup="true" CodeFile="Default.aspx.cs" Inherits="_Default" %> Disable the entire web application by modifying the […]