Activex unsafe warning - COM C# component

I have a simple C# object(class) that I reference in a <OBJECT clsid="...> tag of an HTML page. I've putted this object into the GAC with gacutil and registered it as COM object with the regasm utility program. The <object> references the clsid in the registry.

Is there an easy way of bypassing the Activex warning in Internet Explorer whithout modifying the security level in the browser?

In an old COM-ATL object, I was using the IObjectSafetyImpl<CMyCtrl, INTERFACESAFE_FOR_UNTRUSTED_CALLER|INTERFACESAFE_FOR_UNTRUSTED_DATA> derivation to avoid this type of message. Is there a way of doing the same thing in C#?

My component will be used in an intranet solution only whithout needs to be visible in the client application.

Is that the better way I use to make a component in Dot Net for referencing in the browser? What are the other solutions?
LVL 1
mhebertAsked:
Who is Participating?
 
CJ_SConnect With a Mentor Commented:
I was hoping it was not the case. For client side .Net components you can do two things.

1) Change the client ActiveX settings
2) Sign the ActiveX control or object.

Signing ActiveX can be done by a company like VeriSign. They can mark your component to be safe for initialization and scripting. But even then, if the client does not allow components marked safe for initialization or scripting it just won't run.

CJ
0
 
CJ_SCommented:
Sure there is a way. I just forgot how it was implemented :-(
0
 
nico5038Commented:

No comment has been added lately, so it's time to clean up this TA.
I will leave a recommendation in the Cleanup topic area that this question is:
 - To be deleted and points refunded
Please leave any comments here within the
next seven days.

PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER !

Nic;o)
0
Cloud Class® Course: SQL Server Core 2016

This course will introduce you to SQL Server Core 2016, as well as teach you about SSMS, data tools, installation, server configuration, using Management Studio, and writing and executing queries.

 
CJ_SCommented:
mhebert, is this still an issue?

nico5038,
I can help this person if he still needs this. Can we keep this one open unless mhebert does not reply?
0
 
nico5038Commented:
No problem with me, a mod will ignore my proposal because of your comment!

Nic;o)
0
 
mhebertAuthor Commented:
It's still an issue... ;-)
0
 
CJ_SCommented:
mhebert,
Where is the object registered? At the server or at the client? At the server you should use the http protocol:

classid="http:MyControl.dll#FULLY.QUALIFIED.NAME"

Place the file and the .dll in a virtual directory. Or place the .dll in the gac like you did. The virtual directory should only have script permissions. No other setting!!!

CJ
0
 
mhebertAuthor Commented:
The object is registered on the client. It acts like an activex.
0
 
Computer101Commented:
Listening

Computer101
E-E Admin
0
 
peterchen092700Commented:
So folks, what to do?

No comment has been added lately.
To cleanup this TA, I will recommend to moderators that this question is:

*** Answered by: CJ_S ***

Please leave any comments here within the next seven days, or finalize the question if you own it
 
PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER!
 
peterchen
EE Volunteer
0
 
Computer101Commented:
A request for deletion has been made.  If no response or you feel this is in error, comment.  If no objection, I will delete in three days.

Computer101
E-E Admin
0
 
ChmodCommented:
No response from mhebert to CJ_Ss comment on 12/03/2002 05:44AM PST or to Computer101 in http://www.experts-exchange.com/Community_Support/Q_20531246.html. Hence closed as recommended by peterchen

Chmod
Community Support Moderator @Experts Exchange

0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.