Possible to auto allow active x on local site? - javascript

I've got an html file on my desktop that runs some javascript and activex within IE, so naturally when it opens it prompts to allow activex. My question is, is there anyway to auto allow activex for this specific local site/file? Allowing all ActiveX from all sites is obviously a security issue, so I'm attempting to see if I can allow for JUST this local site.

Add the URL to intranet zone and modify the settings for intranet zone only
Hope this helps.

Related

Force a link to open in a different browser (Intranet)

We have an old .asp page application that runs only in IE. The problem is, most of the users are using Chrome or Firefox. Is there anyway possible to force a specific link to open in a different browser? I read that it is possible with URI SCHEME, but I wasn't able to find any good explanation.
As I mentioned, this is ONLY for intranet purposes. I know that it's impossible for users outside of the network.
Thanks

window.clipboardData permissions

I'm creating web application on ASP.NET WebForms, and one of my tasks is copy/paste data to excel from web page. I/m using window.clipboardData, and it works for my user (local admin). But for other users it doesn't work. How can I fix it? Thank you.
This is a browser level permission, that need to be set depending of the browser.
In the documentation of your application you need to specify where and how to enable it on the browser.
I recommend you to explore each browser options, for your documentation.
For Internet Explorer you can go to Internet Options>Security>Add the Website/link to the trusted sites (Make sure https checkbox is checked, if your website is not using https). After adding it, go to Custom Level in the same window. It will pop another window, you can explore all the options for any other think you may need. The option to allow access to clipboard show be "Allow Programmatic clipboard access" and set it to enabled.
It may be a ActiveX Control that can make it automatically, but will work only for Internet Explorer.

Using Javascript to modify user in about:config Firefox

In our site, we are using Windows authenticated to identify users (via intranet). IE works perfectly. However, we have to set the network.automatic-ntlm-auth value to our INTRANET website via about:config in Firefox.
My question would be: Is it possible to change that value of "network.automatic-ntlm-auth.trusted-uris" using Javascript?
Thanks
For security reasons, it will never be possible to change browser configuration from a webpage.

Enable and Popup blocker in IE

I wrote a scripting logic in using ActiveX. When the application runs it is blocked by popup blocker. When I enabled it works fine, but I want to enable the popupblocker using JavaScript (especially in IE).
Obviously a website cannot modify the popup blocker settings. And that's a good thing.
You should avoid using ActiveX Controls because it is only supported by IE. Trying running your page on Firefox and it won't work.
Now the actual problem -
Firstly you need to understand what ActiveX Objects are used for? They basically allow a web application to interact with the client machine. For example it can use resources on my local hard drive. This is a security risk. So IE gives a warning for the same. You may disable it in your browser by going to Tools-> Internet Options -> Security Tab. Click "Custom Level" and change all the boxes with ActiveX text in it to "Enable".
But it will still show up in your client browsers.
So the point is try finding an alternative for it.
Hope this helps!
You cant. What you could do is have a message on screen which requests the user to turn off the popup blocker .

How to tell IE a HTML file on my disk is not a security risk?

Our build script creates a HTML log with some embedded javascript. When I open that in Internet Explorer, I get the yellow warning bar that IE has blocked running "scripts or activex controls".
Since it is a local file, I cannot add it to trusted sites (IE expects a domain here).
I do not want to change security settings for the default zone.
Any idea how to permanently unblock it?
IE version is 7.0.5730.13 on XP Pro.
Embed the Mark of the Web:
<!-- saved from url=(0016)http://localhost -->
You could add The Mark of the Web to the document so that IE will act as if it's from a certain security zone.
Probably not what you want to hear but I'm not sure you can. Does Firefox/Opera/Safari complain when you run it in any of those? If it works then that seems like the simplest solution to me.
You can add Local Machine Zone and configure security for it:
http://www.microsoft.com/windows/IE/community/columns/improvements.mspx
You can always enable ActiveX. I've tested this on Internet Explorer 11, but should work on earlier version of IE:
Tools > Internet Options > Advanced > Security :
(✓) Allow active content from CDs to run on My Computer
(✓) Allow active content to run in files on My Computer
You could set up a local server and save such files in a domain you can now add to the trusted sites, but opening the file in any other browser than IE is easier.
Another option, if it's only IE you need to view it in is to save it as a .hta file.
This makes it a HTML application.
It's as simple as changing the suffix to .hta. Although there are other options you can specify.
For more info:
http://msdn.microsoft.com/en-us/library/ms536496(VS.85).aspx

Categories