Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

ActiveX error

Status
Not open for further replies.
LanceSilk

LanceSilk

Programmer
Oct 8, 2001
2
US
I am using the following text on my web page. The first time it is invoked, I get the error message "An ActiveX control on this page might be unsafe to interact with other parts of the page. Do you want to allow this interaction?"

How do I get rid of that message??? I understand that generally you do not want to run a web application that accesses local files but what I am building will not run on the internet. Its only job is to read this text file and then use the text for something.

function dialog()
{

var fso, ts, s;
var ForReading = 1;
fso = new ActiveXObject("Scripting.FileSystemObject");

// Read the contents of the file.
ts = fso_OpenTextFile("c:\\greeting.txt", ForReading);
s = ts.ReadLine();



var userInput = document.Form1.input.value
LifeFXPlayer.PlayText(s);
ts.Close();
return false; // Don't reload the Player control
}
 
Sort by date Sort by votes
There are a couple possibilities.

First off, Scripting.FileSystemObject is unsafe - that's the point of warning the user. If you mark the FSO "safe" you potentially unleash any page abusing it without even giving the user a chance to kill the page.

What you are supposed to do in this case create an ActiveX control of your own (possibly based upon the FSO) that does just what you need the FSO for. In other words you create a new ActiveX control that is safe for scripting but does what you need to do with local files - one that nobody can pervert to nefarious ends - and then mark it "safe for scripting." Of course you may have to sign it using a digital cetificate, and even then users may still see a "do you want to install and run" ActiveX prompt.

Then use your specialized control in your web pages.

So, if this is as clear as mud let me try again. In you example, this code:

var fso, ts, s;
var ForReading = 1;
fso = new ActiveXObject("Scripting.FileSystemObject");

// Read the contents of the file.
ts = fso_OpenTextFile("c:\\greeting.txt", ForReading);
s = ts.ReadLine();

... would become logic within your new ActiveX control instead of script code in your web page. The web page script would invoke this object instead of messing with local files via FSO.

This is considered "safe" because your new Control can only perform a proscribed set of "safe" functions. For example the script invoking the new Control would have no way to specify the name of the file to be read.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

MitGandhi
  • Locked
  • Question
WebGL Error
Replies
3
Views
650
spamjim
spamjim
waubain
  • Locked
  • Question
Prevent user from getting a 404 error if click on a hover text displaying a hidden image. 1
Replies
5
Views
214
jjgupta915
jjgupta915
Everton1Blue
  • Locked
  • Question
How to display user error in form field
Replies
2
Views
150
Everton1Blue
Everton1Blue
Blueie
  • Locked
  • Question
Displaying Errors
Replies
16
Views
291
1DMF
1DMF
dartmoortom
  • Locked
  • Question
xhtml validation - attributes construct error
Replies
6
Views
159
johnwm
johnwm

Part and Inventory Search

Sponsor

Back
Top