c# asp.net website manipulating user file on desktop

Hi Guys,

I have created a website which will grab a specific excel file on the users desktop and manipulate contents.  The catch is I have only done this on my local machine in microsoft visual web developer 2010 express, and have not put on web host yet.  So I have not tested it on the actual internet as of yet.

It obviously works local.. but my question is there has to be some type of security to allow a website to read a users pc and manipulate a file.  What strategy to I go about confronting this issue?  Will it just fail in a live environment, or will it ask user to allow manipulation?  Or do I need to write some type of code to ask user to allow?

Thank in advance
solarissfAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Paul JacksonSoftware EngineerCommented:
Unfortunately this will fail in a live environment, it is working now as you machine is acting as the Server when running so it is allowed to manipulate files on the 'server'.
However in a live environment it will be breaking security to try and access a local users file system through the browser.
0
solarissfAuthor Commented:
how do I go about fixing this?
0
Paul JacksonSoftware EngineerCommented:
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
OWASP: Avoiding Hacker Tricks

Learn to build secure applications from the mindset of the hacker and avoid being exploited.

solarissfAuthor Commented:
instead up having the user upload the file.  Someone recommended something about creating an activeX object, downloading it to the user, and manipulating that object.... this is above my head at the moment but I might have to learn... can you explain this process?
0
Paul JacksonSoftware EngineerCommented:
Sorry that is beyond my knowledge, don't use ActiveX objects as they can only be used by Internet Explorer generally.
0
solarissfAuthor Commented:
thanks jacko, appreciate you input... I may have to do the upload but hopefully I can figure out this activex idea.  

Does anyone have any input on activex?
0
solarissfAuthor Commented:
Or even if its not activeX, are there any more suggestions for my website to manipulate a specific excel file on the users desktop.  I'm doing some google searches and finding things like Web Deploy, but not sure if I'm on the right track.

Thanks
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
ASP.NET

From novice to tech pro — start learning today.