OK. I am trying to embed a control in a webpage that will allow local
access to the TAPI system to make and query phone calls. In a
nutshell.
Anyway, I am aware that there are many security issues around this and
have some mitigation of them in that the site is a 'private internet
site' - IPs locked to the users offices.
I have tried many options in terms of zones, but all throw
(unsurprisingly) security issues.
I have tried running the code from a local .hta but this still seems
to trhow the security permissions problem - Is this becuase I have
navigated away from the local html page to a remote one within
the .hta application?
Anyway, can anyone suggest a way of getting either
1) a remote hosted web page to communicate with a local machine hosted
app
or
2) an activeX or .NET UserControl object within an internet zone
application to be able to talk to the TAPI source.
or should I just give up and write a local server app to field AJAX
calls from the hosted app?
Actually, coming to think of it, that may be a much neater solution.
TIA,
M.
7  1130 
I'd be inclined to go with the latter (a separate app) - in particular,
I would probably use a COM server (exe) to host the actual TAPI
interface code, and a COM library (dll) to host the control (OCX or just
COM via CreateInstance; this acts purely as a shim/facade, forwarding
methods to the COM server) - that way, the COM server can stay alive as
you navigate between pages, minimising the load overhead per page;
likewise, the COM work that jscript does is minimal.
We've used the above to provide access to both telecomms and scanning
systems within web pages for a known site (i.e. not the public website).
Another option is to host the entire app in a WebBrowser (in a .NET exe)
rather than IE - and use ObjectForScripting to provide access.
Marc
On 13 May, 10:20, Marc Gravell <marc.grav...@gmail.comwrote:
I'd be inclined to go with the latter (a separate app) - in particular,
I would probably use a COM server (exe) to host the actual TAPI
interface code, and a COM library (dll) to host the control (OCX or just
COM via CreateInstance; this acts purely as a shim/facade, forwarding
methods to the COM server) - that way, the COM server can stay alive as
you navigate between pages, minimising the load overhead per page;
likewise, the COM work that jscript does is minimal.
By the latter do you mean the #2 option?
What security issues have you come accross doing this?
>
We've used the above to provide access to both telecomms and scanning
systems within web pages for a known site (i.e. not the public website).
Cool.
By the latter do you mean the #2 option?
Yes
What security issues have you come accross doing this?
Getting the control to load is always fun - and indeed I try not to go
near html <---COM unless I can help it [needs must, though...].
As I recall, we had a signed cab installer (might have been msi - I
can't say for sure) for the COM that set the safe for scripting /
initialisation flags. Something like: http://msdn.microsoft.com/en-us/libr...77(VS.85).aspx
Marc
On 13 May, 11:50, Marc Gravell <marc.grav...@gmail.comwrote:
By the latter do you mean the #2 option?
Yes
What security issues have you come accross doing this?
Getting the control to load is always fun - and indeed I try not to go
near html <---COM unless I can help it [needs must, though...].
As I recall, we had a signed cab installer (might have been msi - I
can't say for sure) for the COM that set the safe for scripting /
initialisation flags. Something like:http://msdn.microsoft.com/en-us/libr...77(VS.85).aspx
Marc
Erk! Are we talking nasty nasty mfc activex level here, or is there a
nicer way of doing this stuff?
Ho hum.
I think we just used VB6 and a couple of registry fragments in the
installer...
On 13 May, 13:15, Marc Gravell <marc.grav...@gmail.comwrote:
I think we just used VB6 and a couple of registry fragments in the
installer...
DAng, going to have to scrabble around for Old School Studio.... :)
Thanks.
DAng, going to have to scrabble around for Old School Studio.... :)
Yup; a fair ache going back to VB6, but AFAIK .NET can't write COM
servers...
You *might* be able to use .NET to create a serviced component, but I
have very little experience there, so can't advise.
Marc
This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: Phil Coen |
last post by:
I have never tried to build a web site to restrict users. Before, I always
wanted everyone to be able to get to everything that I put on one of my
sites. So now I am trying to write (actually...
|
by: Noozer |
last post by:
I've got a WebBrowser control (AxBrowse - VCMAXB.DLL) and I'm having a few
difficulties with it. Just looking for a few pointers, not whole solutions
here. I've tried looking at the MSDN help files...
|
by: sinister |
last post by:
I have a site hosted by a commercial webhosting service. As such, I don't
have any real control over the webserver (in this case, Apache).
What are the most basic, essential elements of security...
|
by: Marina |
last post by:
Hi,
I am trying to find the minimum security settings to allow a windows control
embedded in IE have full trust.
If I give the entire Intranet zone full trust, this works. However, this is...
|
by: Joseph Geretz |
last post by:
I'm having a credentialing problem in my web application. Actually, I don't
think this is an IIS security issue, since I'm able to access the page I'm
requesting. However, the executing page itself...
|
by: androoo |
last post by:
Hi
I have a windows control I embed onto an aspx page which is grabbing a
dataset from the client and sending it to the server through a
webservice.
This works fine in a windows app. However...
|
by: Norsoft |
last post by:
I have a .Net 1.1 application which is downloaded into an aspx page. It is a
dll which inherits from System.Windows.Forms.UserControl. It works fine on a
PC with only the 1.1 Framework. However,...
|
by: Filippo Bettinaglio |
last post by:
Security problem running unmanaged code (.ocx control) in a windows from
control hosted in IE6
Hi,
I have design a windows from control which contain a .OCX in one of its
forms....
|
by: Ken Fine |
last post by:
I want to add the security question and answer security feature to the
ChangePassword control. I am aware that this functionality is built into the
PasswordRecovery tool. I have implemented the...
|
by: Charles Arthur |
last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
|
by: ryjfgjl |
last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
|
by: emmanuelkatto |
last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud.
Please let me know.
Thanks!
Emmanuel
|
by: nemocccc |
last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
|
by: Sonnysonu |
last post by:
This is the data of csv file
1 2 3
1 2 3
1 2 3
1 2 3
2 3
2 3
3
the lengths should be different i have to store the data by column-wise with in the specific length.
suppose the i have to...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers,...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
| |
