tags:

views:

91

answers:

3
+2  Q: 

How can I get my ASP.NET website to allow the pipe character in the URL?

This website http://www.donateblood.com.au does not accept the pipe character | in the URL

This works http://www.donateblood.com.au/news-events.aspx?IDDataTreeMenu=33

but this doesn't

http://www.donateblood.com.au/news-events.aspx?IDDataTreeMenu=33&y=|

It looks like the pipe is an issue as

http://www.donateblood.com.au/news-events.aspx?IDDataTreeMenu=33&y=

works.

I need to stop this because a third party called Omniture needs to access this website automatically with the | in the URL. I cannot ask them to encode the | as they are a big company. They say there is some way to allow the | but I am not sure how.

I only have access to web.config, not the server, as it is hosted on a shared server at a big hosting company.

Answer:

Infact, it was our own code blocking the pipe | Very hard to track down, but that was it. This could have been more easily found by searching for the page name where redirection was occurring.

How embarassing!

+1  A: 

pipe characters (and many others!) are not permitted by the URL standard; see http://www.faqs.org/rfcs/rfc1738.html

if they know of a way to make it work, they should be happy to tell you!

Steven A. Lowe  2010-02-01 06:01:28
No, you're wrong. They are permitted, they are just named as 'unsafe' and must be encoded. They are allowed though. But it will probably be fairly difficult to get a real resource on any system named `|`; you'll need to handle that type of URL specifically.
Noon Silk  2010-02-02 02:42:58
@silky: see section 2.1 of RFC1738; pipe characters (and many others) are not allowed in URLs. Yes, encoding them is the only option.
Steven A. Lowe  2010-02-02 04:35:15
+1  A: 

The pipe character should be allow in the URL.

Somehow, your code or some underlying system is acting differently, when it notices the pipe. Find what that system is, and stop it.

-- Edit:

FWIW, I suspect it's some sort of underlying logging system that wishes to check for characters it considers "invalid". Check what type of services are installed, and figure out how to reconfigure them (and what result this will have for the overall security/etc).

AFAIK, it's not a default behaviour of ASP.NET or IIS to reject this type of character.

Noon Silk  2010-02-02 02:48:49
+1  A: 

Infact, it was our own code blocking the pipe | Very hard to track down, but that was it.

How embarassing!

Petras  2010-02-02 23:42:20

related questions

Is it better to create Model classes, or just stick with generic database utility class?
What are effective options for embedding video in an ASP.NET web site?
Visual Studio 2008 debugger already attached work-around
Tracking state using ASP.NET AJAX / ICallbackEventHandler
ASP.NET Display SVN Revision Number
ASP.NET URL Rewriting
How can I change the background of a masterpage from the code behind of a content page?
Easy way to AJAX WebControls
How do I define custom web.config sections with potential child elements and attributes for the properties?
ASP.NET MVC "CRUD" Database Sample
Are Multiple DataContext classes ever appropriate?
How to RedirectToAction in ASP.NET MVC without losing request data
Triple Quotes? How do I delimit a databound Javascript string parameter in ASP.NET?
ASP.NET built in user profile, Vs old stile user class/tables
What's a good book for learning ASP?
Bandwith throttling in IIS 6 by IP Address
ASP .Net Custom Client-Side Validation
How to get the value of built, encoded ViewState?
Decent, simple, GIS/mapping component for ASP.NET?
Checklist for IIS 6/ASP.NET Windows Authentication?
How to write to Web.Config in Medium Trust ?
ASP.NET, Visual Studio and Subversion - how to integrate?
Floating Point Number parsing: Is there a Catch All algorithm?
How do I sync the SVN revision number with my ASP.NET web site?
ASP.NET Site Maps